Virus infecté par trojan horst gen

bagot1 -  
green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   -
bjrs je suis infecté par un trojan horst gen sous Windows XP
Internet Explorer 6.0 je ne sais pas comment faire pour m'en debarasser si quelqu'un connait la solution ? merci d'avance
Configuration: Windows XP
Internet Explorer 6.0

21 réponses

  • 1
  • 2
Résumé de la discussion

Un Trojan Horst est signalé sur une installation Windows XP avec Internet Explorer 6, provoquant ralentissements et analyses multiformes et rendant nécessaire une désinfection complète. Parmi les mesures, désactiver les services suspectés (LiveUpdate et son planificateur) et installer un pare-feu robuste, puis lancer un nettoyage avec des outils antivirus et antispyware et examiner les entrées O23. D'autres conseils évoquent l'utilisation d'outils comme HijackThis et des utilitaires de suppression, tout en mettant en garde contre des manipulations risquées et une réinitialisation système en dernier recours. Notamment, des rapports d'analyse affichent des composants publicitaires et outils résidents (adware et cookies), ce qui peut impliquer une remise à plat du système ou des restaurations pour assurer une désinfection durable.

Généré automatiquement par IA
sur la base des meilleures réponses
  1. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    Télécharge ceci :

    Lien : hijackthis

    Démo : http://pageperso.aol.fr/balltrap34/demohijack.htm

    Choisir l'option "do a scan and a logfile", et faire un copier/coller du rapport ainsi générer sur le forum.

    ++
    0
    1. bagot1
       
      je te remercie pour ton aide j'ai fait se que tu m'a dit voila se qui m'est sortie dans le bloc note


      Logfile of HijackThis v1.99.1
      Scan saved at 21:29:13, on 28/12/2006
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
      C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
      C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
      C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
      C:\Program Files\Norton AntiVirus\navapsvc.exe
      C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\svchost.exe
      C:\windows\system\hpsysdrv.exe
      C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      C:\Program Files\iTunes\iTunesHelper.exe
      C:\WINDOWS\ALCXMNTR.EXE
      C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
      C:\WINDOWS\VM303_STI.EXE
      C:\Program Files\QuickTime\qttask.exe
      C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
      C:\Program Files\MessengerPlus! 3\MsgPlus.exe
      C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
      C:\HP\KBD\KBD.EXE
      C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
      C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\eMule\emule.exe
      C:\Program Files\MSN Messenger\msnmsgr.exe
      C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
      C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
      C:\Program Files\iPod\bin\iPodService.exe
      C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
      C:\WINDOWS\system32\wuauclt.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32Info.exe
      C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
      O2 - BHO: RXResultTracker Class - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - C:\Program Files\RXToolBar\sfcont.dll (file missing)
      O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
      O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
      O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
      O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
      O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
      O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
      O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
      O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
      O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
      O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
      O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
      O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
      O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
      O4 - HKLM\..\Run: [.nvsvc] C:\WINDOWS\system\smss.exe /w
      O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
      O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
      O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
      O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
      O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
      O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
      O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
      O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
      O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
      O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
      O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
      O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
      O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
      O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
      O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
      O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
      O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
      O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
      O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
      O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
      O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
      O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
      O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
      O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~2.EXE
      O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
      O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
      O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
      O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
      O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
      O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
      0
  2. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    ok,

    Télécharge SDFix sur ton bureau

    http://downloads.andymanchesta.com/RemovalTools/SDFix.exe

    Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau.
    Redémarre ton ordinateur en mode sans échec
    Ouvre le dossier SDFix qui vient d'être créé sur le Bureau et double clique sur RunThis.bat pour lancer le script.
    Appuie sur Y pour commencer le processus de nettoyage.
    Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
    Appuie sur une touche pour redémarrer le PC.
    Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
    Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
    Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
    Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
    Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum, avec un nouveau log Hijackthis !

    ++
    0
    1. bagot1
       
      ok j'ai telechargé sur le bureau quand je clic dessu il me demande de l'executer je le fait et il me sort sa dans le bloc note



      The SDFix Folder has been extracted to %systemdrive% - Please run from that location.

      (%systemdrive% = drive that contains the Windows directory - typically 'C:\SDFix')

      Please open the SDFix folder in Safe Mode then double click the RunThis.bat
      file to start the fixtool. If run in Normal Mode, options to download and
      run Anti-Virus command line scanners (Sophos & asquared) are displayed.

      est ce normal
      0
  3. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    as tu decompressé le fichier ???

    ++
    0
    1. bagot1
       
      j'a mis sdfix dans winrar et je l'ai extré sur le bureau . dans le dossier j'ai maintenant 2 sous dossier :1) runthis et sdfix readme est ce que c'est bon ? je te remercie pour ton aide. des que je rentre du travail je m'en occupe bonne journée. peu tu me dire aussi comment on redemare sans echec?
      0
  4. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    ok,

    # Démarre en mode sans échec :
    Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
    Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
    Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
    (Si F8 ne marche pas utilise la touche F5).

    ++
    0
    1. bagot1
       
      j'ai fais comme tu m'as dit voila le rapport mais quand je ralume le pc j'ai toujours une detection du meme virus?



      SDFix: Version 1.52
      ****************

      29/12/2006 - 16:17:42,67

      Microsoft Windows XP [version 5.1.2600]

      Running From: C:\DOCUME~1\COMPAQ~1\Bureau\SDFix

      Stage One - Safe Mode

      Checking Services...

      Service Name:


      File Path:



      Starting Registry Repairs...

      Restoring Default Hosts File...

      Stage One Complete

      Rebooting...

      Stage Two - Normal Mode

      Checking For Malware:
      --------------------

      C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMP\74EXMO~2.EXE
      C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMP\87EXMO~1.EXE

      Backing Up and Removing any Files Found...

      Alternate Stream Check:

      C:\WINDOWS\system32
      No streams found.
      Final Check:

      Remaining Services:
      ------------------


      Authorized Application Key Export:

      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
      "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
      "C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
      "C:\\Program Files\\AOL 9.0\\waol.exe"="C:\\Program Files\\AOL 9.0\\waol.exe:*:Enabled:AOL France"
      "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL"
      "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL"
      "C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
      "C:\\Documents and Settings\\Compaq_Propriétaire\\Local Settings\\Temp\\ImInstaller\\IncrediMail\\incredimail_install[1].exe"="C:\\Documents and Settings\\Compaq_Propriétaire\\Local Settings\\Temp\\ImInstaller\\IncrediMail\\incredimail_install[1].exe:*:Enabled:IncrediMail Installer"
      "C:\\Program Files\\Kazaa\\kazaa.exe"="C:\\Program Files\\Kazaa\\kazaa.exe:*:Enabled:Kazaa Media Desktop"
      "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:MSN Messenger 7.5"
      "C:\\WINDOWS\\system32\\svchost.exe"="C:\\WINDOWS\\system32\\svchost.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\5exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\5exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\47exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\47exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\56exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\56exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\35exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\35exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\86exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\86exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\13exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\13exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\18exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\18exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\97exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\97exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\93exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\93exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\68exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\68exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\0exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\0exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\24exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\24exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\81exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\81exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\75exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\75exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\67exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\67exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\98exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\98exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\51exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\51exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\62exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\62exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\57exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\57exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\63exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\63exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\34exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\34exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\3exinjs.p.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\3exinjs.p.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exmodul32f.a.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exmodul32f.a.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\20exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\20exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\49exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\49exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\54exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\54exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\11exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\11exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\45exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\45exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\9exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\9exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\1exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\1exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\21exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\21exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\61exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\61exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\68exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\68exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\50exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\50exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\94exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\94exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\41exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\41exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\67exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\67exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\30exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\30exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\14exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\14exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\32exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\32exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\6exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\6exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\42exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\42exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\82exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\82exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\3exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\3exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\18exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\18exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\37exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\37exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\73exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\73exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\24exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\24exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\95exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\95exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\97exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\97exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\0exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\0exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\15exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\15exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\79exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\79exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\58exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\58exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\83exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\83exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\25exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\25exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\64exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\64exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\59exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\59exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\35exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\35exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\44exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\44exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\23exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\23exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\4exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\4exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\56exinjs.q.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\56exinjs.q.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\90exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\90exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\77exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\77exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\92exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\92exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\56exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\56exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\18exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\18exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\76exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\76exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\21exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\21exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\13exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\13exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\9exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\9exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\79exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\79exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\40exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\40exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\44exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\44exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\6exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\6exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\87exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\87exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\10exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\10exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\29exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\29exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\99exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\99exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\2exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\2exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\37exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\37exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\66exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\66exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\72exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\72exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\5exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\5exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exinjs.r.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exinjs.r.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\43exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\43exinjs.s.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\97exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\97exinjs.s.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.s.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\30exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\30exinjs.s.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\59exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\59exinjs.s.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\85exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\85exinjs.s.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\28exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\28exinjs.s.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\25exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\25exinjs.s.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exinjs.s.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exinjs.s.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exinjs.s.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\94exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\94exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\2exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\2exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exmodul32f.i.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\74exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\74exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\62exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\62exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\10exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\10exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\58exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\58exmodul32f.i.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\0exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\0exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\10exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\10exmodul32f.i.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\86exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\86exmodul32f.i.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exmodul32f.i.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\4exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\4exmodul32f.i.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\82exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\82exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\91exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\91exmodul32f.i.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\34exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\34exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\52exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\89exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\89exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\20exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\20exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\5exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\5exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\53exmodul32f.i.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\61exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\61exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\71exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\71exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\65exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\65exmodul32f.i.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\58exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\58exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\78exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\78exmodul32f.i.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\16exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\16exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\28exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\28exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\15exmodul32f.i.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\15exmodul32f.i.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\11exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\11exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\17exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\17exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\51exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\51exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\68exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\68exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\36exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\36exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\69exinjs.t.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\69exinjs.t.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\65exinjs.u.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\65exinjs.u.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\41exinjs.u.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\41exinjs.u.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exinjs.u.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exinjs.u.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\21exinjs.u.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\21exinjs.u.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\61exmodul32f.k.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\61exmodul32f.k.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.u.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\38exinjs.u.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\17exinjs.u.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\17exinjs.u.exe:*:Enabled:Microsoft Update"
      "C:\\WINDOWS\\system32\\dpvsetup.exe"="C:\\WINDOWS\\system32\\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
      "C:\\WINDOWS\\system32\\rundll32.exe"="C:\\WINDOWS\\system32\\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\64exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\64exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\3exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\3exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\14exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\14exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\47exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\47exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\16exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\16exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\91exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\91exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\2exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\2exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\48exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\48exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\4exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\4exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\24exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\24exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\75exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\75exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\26exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exinjs.v.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\8exinjs.v.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\96exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\27exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\57exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\57exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\80exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\80exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\87exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\87exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\79exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\79exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\41exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\41exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\88exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\19exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\65exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\65exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\11exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\11exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.v.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\7exinjs.v.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\22exmodul32f.m.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\22exmodul32f.m.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\60exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\55exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\83exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\83exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\9exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\9exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\51exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\51exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\39exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\42exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\42exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\43exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\43exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\47exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\47exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\80exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\80exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\84exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\34exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\34exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\85exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\85exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\71exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\71exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\81exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\81exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\32exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\32exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\13exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\13exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\12exmodul32f.n.exe:*:Enabled:Microsoft Update"
      "C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\95exmodul32f.n.exe"="C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\95exmodul32f.n.exe:*:Enabled:Microsoft Update"


      [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
      "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
      "%ProgramFiles%\\iTunes\\iTunes.exe"="%ProgramFiles%\\iTunes\\iTunes.exe:*:enabled:iTunes"
      "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL"
      "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL"
      "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:MSN Messenger 7.5"


      Remaining Files:
      ---------------

      Backups Folder: - C:\DOCUME~1\COMPAQ~1\Bureau\SDFix\backups\backups.zip

      Checking for files with Hidden Attributes:

      C:\Documents and Settings\Compaq_Propri‚taire\Local Settings\Temp\~rnsetup\pncrt.dll
      C:\WINDOWS\system32\cdplayer.exe.manifest
      C:\WINDOWS\system32\logonui.exe.manifest
      C:\hiberfil.sys
      C:\IO.SYS
      C:\MSDOS.SYS
      C:\pagefile.sys
      C:\Program Files\InterActual\InterActual Player\iti4.tmp

      FINISHED!
      0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    où est ce qu'il te le detecte ???

    poste un nouveau hiack stp

    ++
    0
    1. bagot1
       
      bjrs green day je te remercie pour ton aide je pense qu'il me le detecte dans c:windows et autre fichier et quand je les suprimes et ke je redemarre le pc ils reviennent

      voila le nv hiack

      A+

      Logfile of HijackThis v1.99.1
      Scan saved at 07:45:05, on 30/12/2006
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
      C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
      C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\Explorer.EXE
      C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
      C:\Program Files\Norton AntiVirus\navapsvc.exe
      C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\wscntfy.exe
      C:\windows\system\hpsysdrv.exe
      C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      C:\Program Files\iTunes\iTunesHelper.exe
      C:\WINDOWS\ALCXMNTR.EXE
      C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
      C:\WINDOWS\VM303_STI.EXE
      C:\Program Files\iPod\bin\iPodService.exe
      C:\WINDOWS\system32\wuauclt.exe
      C:\Program Files\QuickTime\qttask.exe
      C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
      C:\Program Files\MessengerPlus! 3\MsgPlus.exe
      C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
      C:\HP\KBD\KBD.EXE
      C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
      C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\eMule\emule.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
      C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
      C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\Répertoire temporaire 2 pour hijackthis.zip\HijackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
      O2 - BHO: RXResultTracker Class - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - C:\Program Files\RXToolBar\sfcont.dll (file missing)
      O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
      O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
      O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
      O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
      O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
      O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
      O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
      O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
      O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
      O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
      O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
      O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
      O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
      O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
      O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
      O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
      O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
      O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
      O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
      O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
      O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
      O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
      O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
      O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
      O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
      O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
      O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
      O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
      O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
      O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
      O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
      O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
      O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
      O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
      O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
      O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
      O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~2.EXE
      O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
      O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
      O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
      O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
      O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
      O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
      0
    2. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280 > bagot1
       
      SAlut

      ça c'est le sponsor de msn plus (adware) :
      O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart

      Tu vas dans ajout/supp des programmes, tu fais ""réparer"" sur msn+ et tu refuses les sponsors===> que des merdouilles

      Dis toi bien qu'avec LaMule==> tu chopes des merdouilles aussi..........

      Tu l'as acheté Norton ??? car il est lourd et passoire....
      0
    3. bagot1 > ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention  
       
      bjrs marie

      merci pour ton aide
      qd je vais ds ajout et sup des ^programe, il ne me propose pas de reparer msn+, je n'ai pu qu'enlever les sponsors et ce que c'est sa qui me donne des virus?

      pour ta reponse non je ne l'ai pas acheté norton et en plus c'est une grosse ........
      pour les anti virus je ne sais pas le quel prendre il y en a tellement

      merci a+
      0
    4. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280 > bagot1
       
      Re,

      OUi, MSN+ est une grosse merde avec les sponsors......

      Pour Norton vire le, il est assez pénible à désinstaller
      https://forum.zebulon.fr/index.php?act=ST&f=38&t=57795


      =============


      antivirus gratuits

      télécharger la version gratuite de Avast
      Vous pouvez télécharger Avast sur le site suivant
      https://www.avast.com/free-antivirus-download
      Tuto ->
      http://forum.telecharger.01net.com/forum/high-tech/PRODUITS/Questions-techniques/questions-avast-sujet_176199_1.htm

      et tu rajoutes un pare-feu

      télécharger la version gratuite de Kerio (avec Avast => moins de conflits)
      https://www.clubic.com/telecharger-fiche11071-sunbelt-personal-firewall-ex-kerio.html

      Tuto =>

      https://www.vulgarisation-informatique.com/kerio.php
      Site de Kerio
      https://kerio.probb.fr/


      ========================

      Une fois que tu as fait tout ça
      Fais ce qui suit pour vérifier s'il ne reste pas des traces de Norton
      F - Hijackthis - Outil de diagnostic et réparation
      lire démo
      http://pageperso.aol.fr/balltrap34/Hijenr.gif
      http://pageperso.aol.fr/balltrap34/demohijack.htm
      Télécharge version française ici
      http://telechargement.zebulon.fr/160-patch-francais-pour-hijackthis-1991.html
      Copie/colle le rapport

      Bon courage

      A++

      0
    5. babot1 > ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention  
       
      salut.

      voilà le dernier rapport avec avast j'ai réussi facilement a sup norton

      Logfile of HijackThis v1.99.1
      Scan saved at 10:07:17, on 31/12/2006
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\WINDOWS\Explorer.EXE
      C:\windows\system\hpsysdrv.exe
      C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      C:\Program Files\iTunes\iTunesHelper.exe
      C:\WINDOWS\ALCXMNTR.EXE
      C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
      C:\WINDOWS\VM303_STI.EXE
      C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
      C:\Program Files\MessengerPlus! 3\MsgPlus.exe
      C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
      C:\HP\KBD\KBD.EXE
      C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
      C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\eMule\emule.exe
      C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
      C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
      C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\iPod\bin\iPodService.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\wuauclt.exe
      C:\WINDOWS\system32\wscntfy.exe
      C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\Répertoire temporaire 3 pour hijackthis.zip\HijackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
      O2 - BHO: RXResultTracker Class - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - C:\Program Files\RXToolBar\sfcont.dll (file missing)
      O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
      O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
      O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
      O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
      O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
      O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
      O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
      O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
      O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
      O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
      O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
      O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
      O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
      O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
      O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
      O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
      O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
      O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
      O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
      O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
      O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
      O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
      O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
      O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
      O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
      O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
      O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
      O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
      O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
      O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
      O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~2.EXE
      O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe

      merci a+
      0
  7. bagot1
     
    SmitFraudFix v2.132

    Rapport fait à 20:44:49,62, 01/01/2007
    Executé à partir de C:\Documents and Settings\Compaq_Propri‚taire\Bureau\SmitfraudFix
    OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
    Le type du système de fichiers est NTFS
    Fix executé en mode normal

    »»»»»»»»»»»»»»»»»»»»»»»» C:\

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles

    »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Compaq_Propri‚taire

    »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Compaq_Propri‚taire\Application Data

    »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

    »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\COMPAQ~1\Favoris

    »»»»»»»»»»»»»»»»»»»»»»»» Bureau

    »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

    »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues

    »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
    "Source"="About:Home"
    "SubscribedURL"="About:Home"
    "FriendlyName"="Ma page d'accueil"

    »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    SrchSTS.exe by S!Ri
    Search SharedTaskScheduler's .dll

    »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLs"=""

    »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
    "System"=""

    »»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32

    »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll

    »»»»»»»»»»»»»»»»»»»»»»»» Fin
    0
  8. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    si tu ne le trouve pas, c'est que ça doit être ok je pense

    poste un nouveau hijackthis stp

    ++
    0
    1. bagot1
       
      voila le nv hijackthis
      et je viens de faire le mode ss echeque avec smithfraudfix


      Logfile of HijackThis v1.99.1
      Scan saved at 21:29:57, on 01/01/2007
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\Explorer.EXE
      C:\windows\system\hpsysdrv.exe
      C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      C:\Program Files\iTunes\iTunesHelper.exe
      C:\WINDOWS\ALCXMNTR.EXE
      C:\WINDOWS\VM303_STI.EXE
      C:\Program Files\QuickTime\qttask.exe
      C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
      C:\Program Files\MessengerPlus! 3\MsgPlus.exe
      C:\HP\KBD\KBD.EXE
      C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
      C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\eMule\emule.exe
      C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
      C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
      C:\Program Files\MSN Messenger\msnmsgr.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
      C:\Program Files\iPod\bin\iPodService.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
      C:\WINDOWS\system32\wuauclt.exe
      C:\WINDOWS\system32\wuauclt.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\Répertoire temporaire 5 pour hijackthis.zip\HijackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      O2 - BHO: RXResultTracker Class - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - C:\Program Files\RXToolBar\sfcont.dll (file missing)
      O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
      O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
      O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
      O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
      O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
      O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
      O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
      O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
      O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
      O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
      O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
      O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
      O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
      O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
      O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
      O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
      O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
      O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
      O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT
      O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
      O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
      O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
      O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
      O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
      O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
      O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
      O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
      O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
      O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe


      merci a de suite j'espere
      0
  9. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    ok,

    as tu installeé bitdefender ???

    cherche et supprime le fichier en gras :

    C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe

    ainsi que le programme du même nom !

    ensuite fais le 1/ et 2/ de ce lien stp :

    virus methode preliminaire de desinfection version fr

    @+

    On peut aussi bâtir quelque chose de beau avec les pierres qui entravent le chemin (J.W.VON GOETHE
    )
    0
    1. bagot1
       
      j'ai sup rxtoolbar ds demarrer, poste de travail et presario c: et la j'ai sup le fichier mais il y a aussi google toolbar il faut ke je le sup aussi ?

      non je n'ai pas bitdefender mais avast ke l'on m'a conseillé
      0
  10. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    laisse google tolbar ...

    pour l'autre : tu vas dans

    demarrer < poste de travail < disque local (C:/) < dossier pogram files < et la tu supprime le dossier : RXToolBar

    ++
    0
    1. bagot1
       
      voila le rapport de bitdefender est ce que je suis tjr infecté? que dois je faire maintenant merci

      BitDefender Online Scanner



      Scan report generated at: Tue, Jan 02, 2007 - 16:57:10





      Scan path: C:\;D:\;E:\;F:\;G:\;H:\;I:\;







      Statistics

      Time
      00:48:32

      Files
      307134

      Folders
      4732

      Boot Sectors
      3

      Archives
      14079

      Packed Files
      26614




      Results

      Identified Viruses
      20

      Infected Files
      363

      Suspect Files
      0

      Warnings
      0

      Disinfected
      0

      Deleted Files
      725




      Engines Info

      Virus Definitions
      363631

      Engine build
      AVCORE v1.0 (build 2371) (i386) (Dec 13 2006 11:16:42)

      Scan plugins
      14

      Archive plugins
      38

      Unpack plugins
      6

      E-mail plugins
      6

      System plugins
      1




      Scan Settings

      First Action
      Disinfect

      Second Action
      Delete

      Heuristics
      Yes

      Enable Warnings
      Yes

      Scanned Extensions
      *;

      Exclude Extensions


      Scan Emails
      Yes

      Scan Archives
      Yes

      Scan Packed
      Yes

      Scan Files
      Yes

      Scan Boot
      Yes




      Scanned File
      Status

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP280\A0053661.exe
      Infected with: DeepScan:Generic.Horst.C6BC0AD7

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP280\A0053661.exe
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP280\A0053661.exe
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059749.exe=>(Quarantine-2)
      Infected with: Trojan.FirewallBypass.C

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059749.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059749.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059750.exe=>(Quarantine-2)
      Infected with: Trojan.Medbod.B

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059750.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059750.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059751.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.PZ

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059751.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059752.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EK

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059752.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059752.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059753.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059753.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059753.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059754.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.01A1559E

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059754.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059754.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059755.exe=>(Quarantine-2)
      Infected with: DeepScan:Generic.Horst.C6BC0AD7

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059755.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059755.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059756.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.DC9B7131

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059756.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059756.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059757.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Horst.DZ

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059757.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059757.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059758.exe=>(Quarantine-2)
      Infected with: Trojan.Medbod.B

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059758.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059758.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059759.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EK

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059759.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059759.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059760.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059760.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059760.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059761.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Horst.DZ

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059761.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059761.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059762.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.1BB9BB43

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059762.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059762.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059763.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Horst.DZ

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059763.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059763.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059764.exe=>(Quarantine-2)
      Infected with: Trojan.FirewallBypass.C

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059764.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059764.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059765.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EK

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059765.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059765.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059766.exe=>(Quarantine-2)
      Infected with: Trojan.Medbod.B

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059766.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059766.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059767.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Inj.A

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059767.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059767.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059768.exe=>(Quarantine-2)
      Infected with: Trojan.Medbod.B

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059768.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059768.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059769.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059769.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059769.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059770.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059770.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059770.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059771.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.DC9B7131

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059771.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059771.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059772.exe=>(Quarantine-2)
      Infected with: Trojan.Medbod.B

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059772.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059772.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059773.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.AF

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059773.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059773.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059774.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Inj.A

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059774.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059774.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059775.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EH

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059775.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059775.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059776.exe=>(Quarantine-2)
      Infected with: Trojan.FirewallBypass.C

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059776.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059776.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059777.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.AF

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059777.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059777.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059778.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059778.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059778.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059779.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059779.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059779.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059780.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Horst.DZ

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059780.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059780.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059781.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.1BB9BB43

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059781.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059781.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059782.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Inj.A

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059782.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059782.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059783.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.DC9B7131

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059783.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059783.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059784.exe=>(Quarantine-2)
      Infected with: Trojan.FirewallBypass.C

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059784.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059784.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059785.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Horst.DZ

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059785.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059785.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059786.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.4B3F2287

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059786.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059786.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059787.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059787.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059787.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059788.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.DC9B7131

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059788.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059788.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059789.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.DC9B7131

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059789.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059789.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059790.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Inj.A

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059790.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059790.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059791.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.4B3F2287

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059791.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059791.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059792.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059792.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059792.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059793.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Horst.DZ

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059793.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059793.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059794.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059794.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059794.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059795.exe=>(Quarantine-2)
      Infected with: Trojan.Medbod.B

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059795.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059795.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059796.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059796.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059796.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059797.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.CW

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059797.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059797.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059798.exe=>(Quarantine-2)
      Infected with: Trojan.Medbod.B

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059798.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059798.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059799.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059799.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059799.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059800.exe=>(Quarantine-2)
      Infected with: Trojan.FirewallBypass.C

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059800.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059800.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059801.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EH

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059801.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059801.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059802.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EK

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059802.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059802.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059803.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059803.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059803.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059804.exe=>(Quarantine-2)
      Infected with: Trojan.Horst.JE

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059804.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059804.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059805.exe=>(Quarantine-2)
      Infected with: Trojan.FirewallBypass.C

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059805.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059805.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059806.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.DC9B7131

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059806.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059806.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059807.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.AF

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059807.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059807.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059808.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EK

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059808.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059808.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059809.exe=>(Quarantine-2)
      Infected with: Trojan.Medbod.B

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059809.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059809.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059810.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.1BB9BB43

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059810.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059810.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059811.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.AF

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059811.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059811.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059812.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EH

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059812.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059812.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059813.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Inj.A

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059813.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059813.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059814.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Inj.A

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059814.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059814.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059815.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.CW

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059815.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059815.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059816.exe=>(Quarantine-2)
      Infected with: Trojan.Medbod.B

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059816.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059816.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059817.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.AF

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059817.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059817.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059818.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EK

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059818.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059818.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059819.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EH

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059819.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059819.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059820.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.CW

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059820.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059820.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059821.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Horst.DZ

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059821.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059821.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059822.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.199295AF

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059822.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059822.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059823.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.DC9B7131

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059823.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059823.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059824.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.PZ

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059824.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059825.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Inj.A

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059825.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059825.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059826.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.CW

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059826.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059826.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059827.exe=>(Quarantine-2)
      Infected with: Trojan.FirewallBypass.C

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059827.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059827.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059828.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059828.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059828.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059829.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Inj.A

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059829.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059829.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059830.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059830.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059830.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059831.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.CW

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059831.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059831.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059832.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.AF

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059832.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059832.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059833.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Inj.A

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059833.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059833.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059834.exe=>(Quarantine-2)
      Infected with: Trojan.FirewallBypass.C

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059834.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059834.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059835.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.CW

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059835.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059835.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059836.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059836.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059836.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059837.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.AF

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059837.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059837.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059838.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Inj.A

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059838.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059838.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059839.exe=>(Quarantine-2)
      Infected with: Trojan.FirewallBypass.C

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059839.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059839.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059840.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.CW

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059840.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059840.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059841.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059841.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059841.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059842.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.01A1559E

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059842.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059842.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059843.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.DC9B7131

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059843.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059843.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059844.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.AF

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059844.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059844.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059845.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EK

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059845.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059845.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059846.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059846.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059846.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059847.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059847.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059847.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059848.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Horst.DZ

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059848.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059848.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059849.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059849.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059849.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059850.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.AF

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059850.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059850.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059851.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.CW

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059851.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059851.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059852.exe=>(Quarantine-2)
      Infected with: Trojan.FirewallBypass.C

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059852.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059852.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059853.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.DC9B7131

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059853.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059853.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059854.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EH

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059854.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059854.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059855.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059855.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059855.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059856.exe=>(Quarantine-2)
      Infected with: Trojan.Horst.JE

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059856.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059856.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059857.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.1BB9BB43

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059857.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059857.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059858.exe=>(Quarantine-2)
      Infected with: Trojan.FirewallBypass.C

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059858.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059858.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059859.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.CW

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059859.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059859.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059860.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Inj.A

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059860.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059860.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059861.exe=>(Quarantine-2)
      Infected with: Trojan.FirewallBypass.C

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059861.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059861.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059862.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059862.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059862.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059863.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.AF

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059863.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059863.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059864.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Inj.A

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059864.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059864.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059865.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Inj.A

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059865.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059865.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059866.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EH

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059866.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059866.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059867.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059867.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059867.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059868.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.PZ

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059868.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059869.exe=>(Quarantine-2)
      Infected with: Trojan.FirewallBypass.C

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059869.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059869.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059870.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Horst.DZ

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059870.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059870.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059871.exe=>(Quarantine-2)
      Infected with: Trojan.Medbod.B

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059871.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059871.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059872.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.CW

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059872.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059872.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059873.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.CW

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059873.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059873.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059874.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Horst.DZ

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059874.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059874.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059875.exe=>(Quarantine-2)
      Infected with: Trojan.Medbod.B

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059875.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059875.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059876.exe=>(Quarantine-2)
      Infected with: Trojan.Medbod.B

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059876.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059876.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059877.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.DC9B7131

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059877.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059877.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059878.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.1BB9BB43

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059878.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059878.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059879.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059879.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059879.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059880.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059880.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059880.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059881.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.CW

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059881.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059881.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059882.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Horst.DZ

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059882.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059882.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059883.exe=>(Quarantine-2)
      Infected with: Trojan.Medbod.B

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059883.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059883.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059884.exe=>(Quarantine-2)
      Infected with: Generic.Spammer.DC9B7131

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059884.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059884.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059885.exe=>(Quarantine-2)
      Infected with: Trojan.Spammer.Inj.A

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059885.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059885.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059886.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059886.exe=>(Quarantine-2)
      Disinfection failed

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059886.exe=>(Quarantine-2)
      Deleted

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059887.exe=>(Quarantine-2)
      Infected with: Trojan.Proxy.Horst.EG

      C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP289\A0059887.exe=>(Quarantine-2)
      Disinfection f
      0
  11. bagot1
     
    et un nv hijackthis

    Logfile of HijackThis v1.99.1
    Scan saved at 17:24:58, on 02/01/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\windows\system\hpsysdrv.exe
    C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\WINDOWS\ALCXMNTR.EXE
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\VM303_STI.EXE
    C:\Program Files\QuickTime\qttask.exe
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
    C:\Program Files\MessengerPlus! 3\MsgPlus.exe
    C:\HP\KBD\KBD.EXE
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\eMule\emule.exe
    C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
    O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
    O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
    O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
    O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
    O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
    O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
    O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
    O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
    O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
    O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    0
  12. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Salut

    En passant

    L'infection se situe dans le système de restauration XP (System Volume Information\_restore)

    ¤Désactive ta restauration système (uniquement si tu es sous XP):
    Clic droit sur poste de travail puis,
    propriété, tu cliques sur onglet restauration système
    tu coches la case « désactiver la restauration » et applique.

    Puis,

    ¤Réactive ta restauration système (uniquement si tu es sous XP):
    Clic droit sur poste de travail puis,
    propriété, tu cliques sur onglet restauration système
    tu décoches la case « désactiver la restauration » et applique.

    A++
    0
    1. bagot1
       
      bjrs

      ok c'est fait merci

      voila un nouvel hijackthis

      Logfile of HijackThis v1.99.1
      Scan saved at 08:22:06, on 05/01/2007
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\Explorer.EXE
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
      C:\windows\system\hpsysdrv.exe
      C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      C:\Program Files\iTunes\iTunesHelper.exe
      C:\WINDOWS\ALCXMNTR.EXE
      C:\Program Files\iPod\bin\iPodService.exe
      C:\WINDOWS\VM303_STI.EXE
      C:\Program Files\QuickTime\qttask.exe
      C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
      C:\Program Files\MessengerPlus! 3\MsgPlus.exe
      C:\HP\KBD\KBD.EXE
      C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
      C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
      C:\Program Files\MSN Messenger\msnmsgr.exe
      C:\WINDOWS\system32\wuauclt.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\eMule\emule.exe
      C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
      C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
      O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
      O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
      O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
      O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
      O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
      O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
      O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
      O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
      O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
      O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
      O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
      O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
      O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
      O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
      O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
      O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
      O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
      O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT
      O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
      O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
      O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
      O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
      O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
      O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
      O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
      O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
      O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
      O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
      O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
      O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
      O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
      O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
      0
      1. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280 > bagot1
         
        Slt

        Où en sont tes soucis ??

        0
      2. bagot1 > ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention  
         
        mare mare mare l'ordi beug tt le temps, il rame rame rameeeeee je fais analyse sur analyse, sup tous les fichiers infecté et des que je refais une analyse elle me retrouve des virus et des cookies je ne sais plus quoi faire a par peu etre formater l'ordinateur???? jr suis perdu
        voila le dernier rapport d'analyse ainsi que le dernier hijckthis


        ---------------------------------------------------------
        AVG Anti-Spyware - Rapport d'analyse
        ---------------------------------------------------------

        + Créé à: 08:23:03 02/01/2007

        + Résultat de l'analyse:



        C:\Program Files\INSTAFINK -> Adware.404Search : Nettoyé.
        C:\Program Files\INSTAFINK\Uninstall.exe -> Adware.404Search : Nettoyé.
        C:\WINDOWS\Temp\Altnet -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\DMinfo3.cab -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\Setup.cab -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\Setup.exe -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\adm.exe -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\adm25.dll -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\adm4.dll -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\admdata.dll -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\admdloader.dll -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\admfdi.dll -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\admprog.dll -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\atl.dll -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\dmfiles.cab -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\dminstall7.cab -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\msvcirt.dll -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\pmexe.cab -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\pmfiles.cab -> Adware.Altnet : Nettoyé.
        C:\WINDOWS\Temp\Altnet\pminstall.cab -> Adware.Altnet : Nettoyé.
        HKLM\SOFTWARE\Classes\ADM25.ADM25 -> Adware.Altnet : Nettoyé.
        HKLM\SOFTWARE\Classes\ADM25.ADM25.1 -> Adware.Altnet : Nettoyé.
        HKLM\SOFTWARE\Classes\ADM25.ADM25\CurVer -> Adware.Altnet : Nettoyé.
        HKLM\SOFTWARE\Classes\ADM4.ADM4 -> Adware.Altnet : Nettoyé.
        HKLM\SOFTWARE\Classes\ADM4.ADM4.1 -> Adware.Altnet : Nettoyé.
        HKLM\SOFTWARE\Classes\ADM4.ADM4\CurVer -> Adware.Altnet : Nettoyé.
        HKLM\SOFTWARE\Classes\AppID\Altnet Signing Module.EXE -> Adware.Altnet : Nettoyé.
        HKLM\SOFTWARE\Classes\AppID\adm.EXE -> Adware.Altnet : Nettoyé.
        HKLM\SOFTWARE\Classes\TopSearch.TSLink -> Adware.Altnet : Nettoyé.
        HKLM\SOFTWARE\Classes\TopSearch.TSLink.1 -> Adware.Altnet : Nettoyé.
        HKLM\SOFTWARE\Classes\TopSearch.TSLink\CLSID -> Adware.Altnet : Nettoyé.
        HKLM\SOFTWARE\Classes\TopSearch.TSLink\CurVer -> Adware.Altnet : Nettoyé.
        C:\Program Files\Common Files\Companion Wizard\compwiz.exe -> Adware.Companion : Nettoyé.
        C:\WINDOWS\system32\AdCache -> Adware.Cydoor : Nettoyé.
        C:\WINDOWS\system32\cd_clint.dll -> Adware.Cydoor : Nettoyé.
        HKLM\SOFTWARE\Cydoor -> Adware.Cydoor : Nettoyé.
        HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor -> Adware.Cydoor : Nettoyé.
        HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329 -> Adware.Cydoor : Nettoyé.
        HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329\Loct_0 -> Adware.Cydoor : Nettoyé.
        HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329\Loct_1 -> Adware.Cydoor : Nettoyé.
        HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329\Loct_2 -> Adware.Cydoor : Nettoyé.
        HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329\Loct_3 -> Adware.Cydoor : Nettoyé.
        HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329\Loct_4 -> Adware.Cydoor : Nettoyé.
        HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329\Services -> Adware.Cydoor : Nettoyé.
        HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Cydoor\Adwr_329\Services\Queue -> Adware.Cydoor : Nettoyé.
        HKLM\SOFTWARE\Classes\instafink.INSTAFINK -> Adware.InstaFinder : Nettoyé.
        HKLM\SOFTWARE\Classes\instafink.INSTAFINK\Clsid -> Adware.InstaFinder : Nettoyé.
        HKLM\SOFTWARE\Classes\CLSID\{59879FA4-4790-461c-A1CC-4EC4DE4CA483} -> Adware.RXToolbar : Nettoyé.
        HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59879FA4-4790-461c-A1CC-4EC4DE4CA483} -> Adware.RXToolbar : Nettoyé.
        HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{59879FA4-4790-461C-A1CC-4EC4DE4CA483} -> Adware.RXToolbar : Nettoyé.
        HKLM\SYSTEM\CurrentControlSet\Services\vspf -> Adware.WinAntiVirus : Nettoyé.
        HKLM\SYSTEM\CurrentControlSet\Services\vspf\Enum -> Adware.WinAntiVirus : Nettoyé.
        HKLM\SYSTEM\CurrentControlSet\Services\vspf\Security -> Adware.WinAntiVirus : Nettoyé.
        HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk -> Adware.WinAntiVirus : Nettoyé.
        HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk\Enum -> Adware.WinAntiVirus : Nettoyé.
        HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk\Security -> Adware.WinAntiVirus : Nettoyé.
        HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2178F3FB-2560-458F-BDEE-631E2FE0DFE4} -> Adware.WinAntiVirus : Nettoyé.
        HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\WinAntiVirus Pro 2006 -> Adware.WinAntiVirus : Nettoyé.
        HKU\S-1-5-21-2007538873-2367509767-3470789634-1008\Software\WinAntiVirus Pro 2006\Settings -> Adware.WinAntiVirus : Nettoyé.
        C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP240\A0044394.exe -> Downloader.Agent.aii : Nettoyé.
        C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP285\A0057692.exe -> Proxy.Horst.pp : Nettoyé.
        :mozilla.445:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
        :mozilla.534:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
        :mozilla.536:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
        :mozilla.565:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
        :mozilla.859:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
        :mozilla.956:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@2o7[2].txt -> TrackingCookie.2o7 : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@aolfr.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@boonty.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@msnaccountservices.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@msnservices.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
        :mozilla.898:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
        :mozilla.899:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
        :mozilla.944:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
        :mozilla.945:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
        :mozilla.652:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
        :mozilla.884:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
        :mozilla.856:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyé.
        :mozilla.833:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Centrport : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@centrport[1].txt -> TrackingCookie.Centrport : Nettoyé.
        :mozilla.786:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
        :mozilla.788:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
        :mozilla.789:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
        :mozilla.790:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Nettoyé.
        :mozilla.759:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@doubleclick[2].txt -> TrackingCookie.Doubleclick : Nettoyé.
        :mozilla.203:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Epilot : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.epilot[1].txt -> TrackingCookie.Epilot : Nettoyé.
        :mozilla.739:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
        :mozilla.774:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@media.fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyé.
        :mozilla.791:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Findwhat : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@findwhat[1].txt -> TrackingCookie.Findwhat : Nettoyé.
        :mozilla.836:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Goclick : Nettoyé.
        :mozilla.837:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Goclick : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@c.goclick[2].txt -> TrackingCookie.Goclick : Nettoyé.
        :mozilla.583:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
        :mozilla.696:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
        :mozilla.705:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
        :mozilla.737:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
        :mozilla.772:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@ehg-avanquest.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@ehg-danieljouvance.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@ehg-osiris.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@ehg-telecomitalia.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
        :mozilla.863:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitslink : Nettoyé.
        :mozilla.864:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitslink : Nettoyé.
        :mozilla.865:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitslink : Nettoyé.
        :mozilla.866:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hitslink : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@counter.hitslink[2].txt -> TrackingCookie.Hitslink : Nettoyé.
        :mozilla.574:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Hotlog : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@hotlog[2].txt -> TrackingCookie.Hotlog : Nettoyé.
        :mozilla.549:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.myaffiliateprogram[1].txt -> TrackingCookie.Myaffiliateprogram : Nettoyé.
        :mozilla.547:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Need2find : Nettoyé.
        :mozilla.548:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Need2find : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@need2find[2].txt -> TrackingCookie.Need2find : Nettoyé.
        :mozilla.417:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
        :mozilla.475:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
        :mozilla.476:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@overture[2].txt -> TrackingCookie.Overture : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@perf.overture[1].txt -> TrackingCookie.Overture : Nettoyé.
        :mozilla.430:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
        :mozilla.432:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@questionmarket[2].txt -> TrackingCookie.Questionmarket : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Nettoyé.
        :mozilla.438:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Revenue : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@revenue[2].txt -> TrackingCookie.Revenue : Nettoyé.
        :mozilla.349:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
        :mozilla.350:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
        :mozilla.365:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
        :mozilla.373:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
        :mozilla.382:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
        :mozilla.853:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
        :mozilla.839:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
        :mozilla.840:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
        :mozilla.841:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
        :mozilla.842:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
        :mozilla.848:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
        :mozilla.850:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : Nettoyé.
        :mozilla.882:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
        :mozilla.107:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
        :mozilla.109:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
        :mozilla.110:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
        :mozilla.111:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
        :mozilla.364:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.smartadserver[3].txt -> TrackingCookie.Smartadserver : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.smartadserver[4].txt -> TrackingCookie.Smartadserver : Nettoyé.
        :mozilla.249:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
        :mozilla.250:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
        :mozilla.251:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyé.
        :mozilla.322:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
        :mozilla.323:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
        :mozilla.324:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
        :mozilla.325:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
        :mozilla.326:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyé.
        :mozilla.297:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Nettoyé.
        :mozilla.227:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@valueclick[1].txt -> TrackingCookie.Valueclick : Nettoyé.
        :mozilla.200:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
        :mozilla.214:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
        :mozilla.215:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
        :mozilla.216:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
        :mozilla.283:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Nettoyé.
        :mozilla.14:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
        :mozilla.30:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\om07w5fj.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@zedo[2].txt -> TrackingCookie.Zedo : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\NI.UWA6PV_0001_N69M2803\setup.exe -> Trojan.Fakealert : Nettoyé.
        C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\NI.UWA6PV_0001_N73M0604\setup.exe -> Trojan.Fakealert : Nettoyé.


        Fin du rapport

        Logfile of HijackThis v1.99.1
        Scan saved at 19:14:49, on 06/01/2007
        Platform: Windows XP SP2 (WinNT 5.01.2600)
        MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

        Running processes:
        C:\WINDOWS\System32\smss.exe
        C:\WINDOWS\system32\winlogon.exe
        C:\WINDOWS\system32\services.exe
        C:\WINDOWS\system32\lsass.exe
        C:\WINDOWS\system32\Ati2evxx.exe
        C:\WINDOWS\system32\svchost.exe
        C:\WINDOWS\System32\svchost.exe
        C:\WINDOWS\system32\spoolsv.exe
        C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
        C:\Program Files\Alwil Software\Avast4\ashServ.exe
        C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
        C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
        C:\WINDOWS\system32\svchost.exe
        C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
        C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
        C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
        C:\WINDOWS\system32\Ati2evxx.exe
        C:\WINDOWS\Explorer.EXE
        C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
        C:\windows\system\hpsysdrv.exe
        C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
        C:\Program Files\iTunes\iTunesHelper.exe
        C:\WINDOWS\ALCXMNTR.EXE
        C:\Program Files\iPod\bin\iPodService.exe
        C:\WINDOWS\VM303_STI.EXE
        C:\Program Files\QuickTime\qttask.exe
        C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
        C:\Program Files\MessengerPlus! 3\MsgPlus.exe
        C:\HP\KBD\KBD.EXE
        C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
        C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
        C:\Program Files\Messenger\msmsgs.exe
        C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
        C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
        C:\WINDOWS\system32\wuauclt.exe
        C:\WINDOWS\System32\svchost.exe
        C:\Program Files\eMule\emule.exe
        C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
        C:\Program Files\MSN Messenger\msnmsgr.exe
        C:\Program Files\Internet Explorer\iexplore.exe
        C:\Program Files\Internet Explorer\iexplore.exe
        C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

        R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
        R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
        O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
        O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
        O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
        O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
        O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
        O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
        O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
        O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
        O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
        O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
        O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
        O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
        O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
        O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
        O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
        O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
        O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
        O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
        O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
        O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
        O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
        O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
        O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
        O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
        O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
        O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
        O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
        O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
        O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT
        O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
        O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
        O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
        O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
        O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
        O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
        O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
        O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
        O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
        O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
        O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
        O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll
        O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
        O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
        O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
        O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
        O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
        O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
        O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
        O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
        O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
        0
  13. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    les cookies, c'est normal d'en avoir tout le temps :)

    il faut vider les fichiers temp de temps en temps !

    as tu virer RXToolBar ???

    fais ceci stp :

    # Désactiver la Restauration du système

    * Cliquez sur le bouton Démarrer.
    * Cliquez avec le bouton droit de la souris sur Poste de travail puis cliquez sur Propriétés.
    * Dans l'onglet Restauration du système, sélectionnez l'option Désactiver la Restauration du système ou Désactiver la Restauration du système sur tous les lecteurs

    ( tu pourras la réactivé à la fin de la manip )

    # Relance HijackThis : choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked" :

    O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)

    O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
    O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
    O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

    O8 - Extra context menu item: &Search - http://kt.bar.need2find.com/KT/menusearch.html?p=KT

    O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx

    O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll

    # ensuite, télécharge et execute ceci :

    * CleanUp40 (qui élimine les fichiers temporaires + cookies : gratuit )
    http://pageperso.aol.fr/Balltrap34/CleanUp40.exe

    tuto : (merci à Balltrap) http://pageperso.aol.fr/balltrap34/democleanup.htm

    * Ccleaner : Telecharge et installe ceci, dans la colonne de gauche clique sur "erreurs" coche toute les cases, puis clique en bas sur "chercher des erreurs" une fois finit, clique sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs .

    *Relance Ccleaner ,vas dans l'onglet "nettoyeur" present sur la gauche, decoche la derniere case (Avancé si elle
    est cochée) puis clique sur "lancer le nettoyage"

    ccleaner

    tuto: https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php

    ensuite :

    HijackThis -> Open the misc tools sections -> open Uninstall manager -> clique sur "Save list" -> enregistre le fichier -> fais-en un copier/coller ici.

    @+

    On peut aussi bâtir quelque chose de beau avec les pierres qui entravent le chemin (J.W.VON GOETHE
    )
    0
    1. bagot1
       
      voila j'ai fais tout se que tu m'as dit. que dois je faire maintenant?
      encors merci pour ton aide

      Adobe Flash Player 9 ActiveX
      Adobe Reader 7.0.8 - Français
      Archiveur WinRAR
      ATI Control Panel
      ATI Display Driver
      avast! Antivirus
      AVG Anti-Spyware 7.5
      CCleaner (remove only)
      CleanUp!
      Codec Pack de ELISOFT v14.0
      Correctif Windows XP - KB873339
      Correctif Windows XP - KB883667
      Correctif Windows XP - KB885250
      Correctif Windows XP - KB885835
      Correctif Windows XP - KB885836
      Correctif Windows XP - KB886185
      Correctif Windows XP - KB887472
      Correctif Windows XP - KB887742
      Correctif Windows XP - KB888113
      Correctif Windows XP - KB888239
      Correctif Windows XP - KB888302
      Correctif Windows XP - KB890175
      Correctif Windows XP - KB890859
      Correctif Windows XP - KB891781
      Correctif Windows XP - KB893066
      eMule
      Enhanced Multimedia Keyboard Solution
      EPSON Attach To Email
      EPSON Copy Utility 3
      EPSON Easy Photo Print
      EPSON File Manager
      EPSON Image Clip Palette
      EPSON Logiciel imprimante
      EPSON Scan Assistant
      EPSON Web-To-Page
      ESDX4800_4200 Guide util.
      Gekko Mahjongg
      Google Toolbar for Internet Explorer
      High Definition Audio - KB888111
      HijackThis 1.99.1
      Hijackthis Version Française
      InterActual Player
      InterVideo WinDVD Player
      iTunes
      Kit de Connexion Alice ADSL
      Lecteur Windows Media 10
      Memory Stick Formatter
      Micro Application - Crazy Blocks
      Micro Application - Super Casse-Briques 4
      Microsoft .NET Framework 1.1
      Microsoft .NET Framework 1.1
      Microsoft .NET Framework 1.1 French Language Pack
      Microsoft .NET Framework 1.1 Hotfix (KB886903)
      Microsoft Office 2000 CD-ROM 2
      Microsoft Windows Media Video 9
      Microsoft Works
      Mise à jour de sécurité pour Lecteur Windows Media (KB911564)
      Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)
      Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)
      Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
      Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)
      Mise à jour de sécurité pour Windows XP (KB883939)
      Mise à jour de sécurité pour Windows XP (KB890046)
      Mise à jour de sécurité pour Windows XP (KB893756)
      Mise à jour de sécurité pour Windows XP (KB896358)
      Mise à jour de sécurité pour Windows XP (KB896422)
      Mise à jour de sécurité pour Windows XP (KB896423)
      Mise à jour de sécurité pour Windows XP (KB896424)
      Mise à jour de sécurité pour Windows XP (KB896428)
      Mise à jour de sécurité pour Windows XP (KB899587)
      Mise à jour de sécurité pour Windows XP (KB899591)
      Mise à jour de sécurité pour Windows XP (KB900725)
      Mise à jour de sécurité pour Windows XP (KB901017)
      Mise à jour de sécurité pour Windows XP (KB901190)
      Mise à jour de sécurité pour Windows XP (KB901214)
      Mise à jour de sécurité pour Windows XP (KB902400)
      Mise à jour de sécurité pour Windows XP (KB904706)
      Mise à jour de sécurité pour Windows XP (KB905414)
      Mise à jour de sécurité pour Windows XP (KB905749)
      Mise à jour de sécurité pour Windows XP (KB905915)
      Mise à jour de sécurité pour Windows XP (KB908519)
      Mise à jour de sécurité pour Windows XP (KB908531)
      Mise à jour de sécurité pour Windows XP (KB911280)
      Mise à jour de sécurité pour Windows XP (KB911562)
      Mise à jour de sécurité pour Windows XP (KB911567)
      Mise à jour de sécurité pour Windows XP (KB911927)
      Mise à jour de sécurité pour Windows XP (KB912812)
      Mise à jour de sécurité pour Windows XP (KB912919)
      Mise à jour de sécurité pour Windows XP (KB913446)
      Mise à jour de sécurité pour Windows XP (KB913580)
      Mise à jour de sécurité pour Windows XP (KB914388)
      Mise à jour de sécurité pour Windows XP (KB914389)
      Mise à jour de sécurité pour Windows XP (KB916281)
      Mise à jour de sécurité pour Windows XP (KB917159)
      Mise à jour de sécurité pour Windows XP (KB917344)
      Mise à jour de sécurité pour Windows XP (KB917422)
      Mise à jour de sécurité pour Windows XP (KB917953)
      Mise à jour de sécurité pour Windows XP (KB918439)
      Mise à jour de sécurité pour Windows XP (KB918899)
      Mise à jour de sécurité pour Windows XP (KB919007)
      Mise à jour de sécurité pour Windows XP (KB920213)
      Mise à jour de sécurité pour Windows XP (KB920214)
      Mise à jour de sécurité pour Windows XP (KB920670)
      Mise à jour de sécurité pour Windows XP (KB920683)
      Mise à jour de sécurité pour Windows XP (KB920685)
      Mise à jour de sécurité pour Windows XP (KB921398)
      Mise à jour de sécurité pour Windows XP (KB921883)
      Mise à jour de sécurité pour Windows XP (KB922616)
      Mise à jour de sécurité pour Windows XP (KB922760)
      Mise à jour de sécurité pour Windows XP (KB922819)
      Mise à jour de sécurité pour Windows XP (KB923191)
      Mise à jour de sécurité pour Windows XP (KB923414)
      Mise à jour de sécurité pour Windows XP (KB923689)
      Mise à jour de sécurité pour Windows XP (KB923694)
      Mise à jour de sécurité pour Windows XP (KB923980)
      Mise à jour de sécurité pour Windows XP (KB924191)
      Mise à jour de sécurité pour Windows XP (KB924270)
      Mise à jour de sécurité pour Windows XP (KB924496)
      Mise à jour de sécurité pour Windows XP (KB925454)
      Mise à jour de sécurité pour Windows XP (KB925486)
      Mise à jour de sécurité pour Windows XP (KB926255)
      Mise à jour pour Windows XP (KB894391)
      Mise à jour pour Windows XP (KB898461)
      Mise à jour pour Windows XP (KB900485)
      Mise à jour pour Windows XP (KB910437)
      Mise à jour pour Windows XP (KB916595)
      Mise à jour pour Windows XP (KB920872)
      Mise à jour pour Windows XP (KB922582)
      MSN
      MSN Messenger 7.5
      MSXML 4.0 SP2 (KB927978)
      Nero 6 Ultra Edition
      PC-Doctor 5 for Windows
      PIF DESIGNER
      Python 2.2 pywin32 extensions (build 203)
      Python 2.2.3
      QuickTime
      RealPlayer
      Samsung Digital Video Camera Capture Driver
      Sonic Express Labeler
      Sonic MyDVD Plus
      Sonic RecordNow Audio
      Sonic RecordNow Copy
      Sonic RecordNow Data
      Sonic Update Manager
      Sunbelt Kerio Personal Firewall
      Super Casse-briques 3
      Tous les jeux de Casino
      Ulead Photo Express 4.0 SE
      Vimicro USB PC Camera (ZC0301PLH)
      Windows Installer 3.1 (KB893803)
      Windows Media Format Runtime
      0
  14. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    re

    ok, fixe cette ligne

    O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"

    poste un nouveau hijackthis et precise tes soucis s'il en reste

    @+
    0
  15. bagot1
     
    fixe cette ligne je n'ai pas compris comment dois je faire ?
    0
  16. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    comme ça ;-)

    Relance HijackThis : choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked" :

    O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"

    ++
    0
    1. bagot1
       
      desolée, j'ai beau chercher je ne la trouve pas.
      0
  17. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    pas grave, poste un nouveau hijackthis stp

    et precise tes soucis s'il en reste !

    ++

    On peut aussi bâtir quelque chose de beau avec les pierres qui entravent le chemin (J.W.VON GOETHE
    )
    0
    1. bagot1
       
      Logfile of HijackThis v1.99.1
      Scan saved at 22:37:25, on 06/01/2007
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 (6.00.2900.2180)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
      C:\WINDOWS\Explorer.EXE
      C:\windows\system\hpsysdrv.exe
      C:\WINDOWS\VM303_STI.EXE
      C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
      C:\HP\KBD\KBD.EXE
      C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
      C:\Program Files\eMule\emule.exe
      C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
      C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
      C:\WINDOWS\system32\wuauclt.exe
      C:\Program Files\MSN Messenger\msnmsgr.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
      O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
      O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
      O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
      O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
      O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
      O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
      O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
      O4 - HKLM\..\RunOnce: [NoIE4StubProcessing] C:\WINDOWS\system32\reg.exe DELETE "HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" /v "NoIE4StubProcessing" /f
      O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
      O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
      O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
      O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
      O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
      O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
      O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
      O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O11 - Options group: [INTERNATIONAL] International*
      O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
      O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
      O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
      O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
      O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
      O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
      O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
      0
  18. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    comment se comporet l'ordi ???

    ++
    0
  19. bagot1
     
    je ne sais pas trop encore.
    est ce que j'ai encore des virus??

    il me met encore des message d'erreur et il redemarre

    j'aimerai qu'il aille plus vite car par moment c'est tres long est ce que sa peu venir des virus?

    en tout cas je te remercie beaucoup pour ton aide
    mille mille merci
    0
  20. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    ok,

    il me met encore des message d'erreur et il redemarre

    quel message, c'est à dire ???

    combien as tu de ram ???

    on verra par la suite !

    ++
    0
    1. bagot1
       
      salut

      je ne sais pas si sa va repondre a ta question car je ne sais pas comment on fait pour savoir combien de rame il y a sur un ordi sur le papier de" l'ordi j'ai:


      512MoSDRAM DDR
      200 Go disque dur sur data (7200 tours/min)dont 6 Go reservés au systeme de restauration. C'est tout se que je sais. Pour le message d'erreur, j'attend d'en avoir un pour mieux t'expliquer

      a+
      0
      1. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280 > bagot1
         
        Salut

        Avec ce logiciel tu (et nous) peux savoir au niveau matériel ce qu'il y a dans ton PC

        http://www.clubic.com/telecharger-fiche12281-everest.html
        0
      2. babot1 > ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention  
         
        salut

        ok j'ai telechargé le logiciel mais le souci c'est que je ni connais rien en informatique et encors moins les termes comment je fais pour savoir le rame de l'ordi

        merci
        0
      3. bagot1 > ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention  
         
        salut

        avec beaucoup de retard voilà le rapport

        --------[ EVEREST Home Edition (c) 2003-2005 Lavalys, Inc. ]------------------------------------------------------------

        Version EVEREST v2.20.405/fr
        Site web http://www.lavalys.com/
        Type de rapport Générateur de rapports
        Ordinateur SOPHIE (SOSO)
        Générateur Compaq_Propriétaire
        Système d'exploitation Microsoft Windows XP Home Edition 5.1.2600 (WinXP Retail)
        Date 2007-01-16
        Heure 19:54


        --------[ Résumé ]------------------------------------------------------------------------------------------------------

        Ordinateur:
        Système d'exploitation Microsoft Windows XP Home Edition
        Service Pack du système Service Pack 2
        DirectX 4.09.00.0904 (DirectX 9.0c)
        Nom du système SOPHIE (SOSO)
        Nom de l'utilisateur Compaq_Propriétaire

        Carte mère:
        Type de processeur AMD Sempron, 1800 MHz (9 x 200) 3200+
        Nom de la carte mère MSI RS480M2 (MS-7093) (3 PCI, 1 PCI-E x16, 4 DDR DIMM, Audio, Video, LAN, IEEE-1394)
        Chipset de la carte mère ATI Radeon Xpress 200, AMD Hammer
        Mémoire système 448 Mo (PC3200 DDR SDRAM)
        Type de BIOS Award (10/21/05)
        Port de communication Port imprimante ECP (LPT1)

        Moniteur:
        Carte vidéo ATI RADEON XPRESS 200 Series (256 Mo)
        Carte vidéo ATI RADEON XPRESS 200 Series (256 Mo)
        Accélérateur 3D ATI Radeon Xpress 200 (RS480)
        Moniteur HP VS17 [17" LCD] (CNC543P01B)

        Multimédia:
        Carte audio ATI SB400 - AC'97 Audio Controller

        Stockage:
        Contrôleur IDE Contrôleur IDE standard double canal PCI
        Contrôleur IDE Contrôleur IDE standard double canal PCI
        Disque dur Generic USB SD Reader USB Device
        Disque dur Generic USB CF Reader USB Device
        Disque dur Generic USB SM Reader USB Device
        Disque dur Generic USB MS Reader USB Device
        Disque dur ST3200826AS (200 Go, 7200 RPM, SATA)
        Lecteur optique TSSTcorp CD/DVDW TS-H552D (DVD+R9:2.4x, DVD+RW:16x/4x, DVD-RW:12x/4x, DVD-ROM:16x, CD:40x/32x/48x DVD+RW/DVD-RW)
        État des disques durs SMART OK

        Partitions:
        C: (NTFS) 184629 Mo (150229 Mo libre)
        D: (FAT32) 6130 Mo (2559 Mo libre)
        Taille totale 186.3 Go (149.2 Go libre)

        Entrée:
        Clavier Enhanced Mulmedia PS/2 Keyboard
        Souris Souris compatible PS/2

        Réseau:
        Carte réseau Realtek RTL8139/810x Family Fast Ethernet NIC (192.168.1.2)

        Périphériques:
        Imprimante EPSON Stylus DX4800 Series
        Imprimante Fax
        Imprimante HP DeskJet 710C
        Contrôleur USB1 ATI SB400 - USB Controller
        Contrôleur USB1 ATI SB400 - USB Controller
        Contrôleur USB2 ATI SB400 - USB 2.0 Controller
        Périphérique USB Périphérique de stockage de masse USB
        Périphérique USB Vimicro USB PC Camera (ZC0301PLH)


        --------[ Debug - PCI ]-------------------------------------------------------------------------------------------------

        B00 D00 F00: ATI Radeon Xpress 200 (RS480) Chipset - Host Bridge

        Offset 00: 02 10 50 59 06 00 20 22 10 00 00 06 00 40 00 00
        Offset 10: 00 00 00 00 00 00 00 00 01 41 00 00 04 00 00 E0
        Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
        Offset 30: 00 00 00 00 C4 00 00 00 00 00 00 00 00 00 00 00
        Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 42 20 06 00
        Offset 50: 3C 10 24 2A 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 60: 7F 00 00 00 00 00 00 00 00 00 00 00 28 00 73 06
        Offset 70: E0 08 00 00 00 00 00 00 20 4E 00 00 00 00 00 10
        Offset 80: 10 0B 00 02 94 10 00 03 20 00 00 00 02 21 00 00
        Offset 90: 00 00 00 1C 45 CB 45 EC 00 00 00 00 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset C0: 00 00 00 00 08 00 80 01 60 00 11 11 D0 00 00 00
        Offset D0: 25 05 65 00 02 00 00 00 00 00 00 00 00 00 00 00
        Offset E0: 00 00 00 00 FF FF FF FF 7F 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 80 80 00 03 00 00 00 00 00 48 01

        B00 D01 F00: ATI Radeon Xpress 200 Chipset - PCI Express Root Port

        Offset 00: 02 10 3F 5A 07 00 30 02 00 00 04 06 00 63 01 00
        Offset 10: 00 00 00 00 00 00 00 00 00 01 01 44 E1 E1 20 22
        Offset 20: D0 FD D0 FD 01 D8 F1 DF 00 00 00 00 00 00 00 00
        Offset 30: 00 00 00 00 44 00 00 00 00 00 00 00 FF 00 0A 00
        Offset 40: 00 00 00 00 08 B0 03 A8 00 00 00 00 3C 10 20 2A
        Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset B0: 0D 00 00 00 3C 10 20 2A 00 00 00 00 00 00 00 00
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B00 D12 F00: ATI SB400 - SATA Controller

        Offset 00: 02 10 79 43 07 00 B0 02 00 8F 01 01 08 40 00 00
        Offset 10: 01 FE 00 00 01 FD 00 00 01 FC 00 00 01 FB 00 00
        Offset 20: 01 FA 00 00 00 F0 02 FE 00 00 00 00 3C 10 24 2A
        Offset 30: 00 00 00 00 60 00 00 00 00 00 00 00 16 01 00 00
        Offset 40: 00 00 00 00 1C 24 03 78 00 00 00 00 00 00 00 00
        Offset 50: 05 00 00 00 00 00 00 00 00 00 00 00 0E 88 00 00
        Offset 60: 01 50 22 06 00 40 00 64 02 10 00 00 00 00 00 00
        Offset 70: 09 00 01 00 F8 8E 51 04 08 00 20 00 00 00 00 00
        Offset 80: 22 00 00 00 22 00 00 00 00 00 01 00 BE FB D4 DA
        Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset A0: 01 21 15 65 DD 62 DD 62 92 43 92 43 09 40 09 40
        Offset B0: 01 21 15 65 DD 62 DD 62 92 43 92 43 09 40 09 40
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B00 D13 F00: ATI SB400 - USB Controller

        Offset 00: 02 10 74 43 07 00 B0 02 00 10 03 0C 08 40 80 00
        Offset 10: 00 E0 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
        Offset 30: 00 00 00 00 D0 00 00 00 00 00 00 00 13 01 00 00
        Offset 40: 80 00 00 00 00 00 00 00 00 00 00 00 10 00 00 00
        Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 60: 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B00 D13 F01: ATI SB400 - USB Controller

        Offset 00: 02 10 75 43 07 00 B0 02 00 10 03 0C 08 40 00 00
        Offset 10: 00 D0 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
        Offset 30: 00 00 00 00 D0 00 00 00 00 00 00 00 13 01 00 00
        Offset 40: 80 00 00 00 00 00 00 00 00 00 00 00 10 00 00 00
        Offset 50: 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 60: 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B00 D13 F02: ATI SB400 - USB 2.0 Controller

        Offset 00: 02 10 73 43 07 00 B0 02 00 20 03 0C 08 40 00 00
        Offset 10: 00 C0 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
        Offset 30: 00 00 00 00 DC 00 00 00 00 00 00 00 13 01 00 00
        Offset 40: 80 00 00 00 00 00 00 00 00 00 00 00 10 00 00 00
        Offset 50: 00 28 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 60: 20 20 00 00 00 20 00 00 00 20 00 00 00 20 00 00
        Offset 70: 00 20 00 00 00 20 00 00 00 20 00 00 00 20 00 00
        Offset 80: 00 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset A0: 01 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00
        Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 05 00 00 00 00 00 00 00 00 00 00 00 01 D0 02 7E
        Offset E0: 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B00 D14 F00: ATI SB400 - SMBus Controller

        Offset 00: 02 10 72 43 03 00 30 02 11 00 05 0C 00 00 80 00
        Offset 10: 01 05 00 00 00 B0 02 FE 00 00 00 00 00 00 00 00
        Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
        Offset 30: 00 00 00 00 B0 00 00 00 00 00 00 00 00 00 00 00
        Offset 40: D0 A1 00 00 00 00 00 00 0F FF 00 00 00 00 00 00
        Offset 50: FF 03 00 00 FF 01 00 00 00 00 00 00 00 00 00 00
        Offset 60: 01 00 07 00 BF B9 9E 8F 00 90 00 00 20 00 00 00
        Offset 70: 00 00 00 00 08 00 C0 FE FF 4E 00 00 00 00 00 00
        Offset 80: 0F 0B 00 00 00 00 00 00 00 00 00 00 8C 00 00 80
        Offset 90: 01 05 00 00 F9 CE FF 00 00 00 00 00 00 00 00 00
        Offset A0: 00 00 FF FF FF FF 00 00 00 3F 03 00 C0 0B 00 F9
        Offset B0: 08 00 02 A8 00 00 00 00 00 00 00 00 F0 0F 00 00
        Offset C0: FF B7 E9 FF 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset E0: 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: D8 0C 00 00 00 41 00 00 00 00 00 00 00 00 00 00

        B00 D14 F01: ATI SB400 - IDE Controller

        Offset 00: 02 10 76 43 05 00 30 02 00 8A 01 01 00 40 00 00
        Offset 10: 01 00 00 00 01 00 00 00 01 00 00 00 01 00 00 00
        Offset 20: 01 F8 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
        Offset 30: 00 00 00 00 70 00 00 00 00 00 00 00 FF 01 00 00
        Offset 40: 99 99 99 20 FF FF FF FF 00 00 00 04 00 00 00 00
        Offset 50: 00 00 00 00 04 00 00 02 00 00 00 00 00 00 00 00
        Offset 60: 00 00 40 01 10 2C 46 18 01 00 00 00 FF FF 0F 00
        Offset 70: 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B00 D14 F03: ATI SB400 - PCI-ISA Bridge

        Offset 00: 02 10 77 43 0F 00 20 02 00 00 01 06 00 00 80 00
        Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
        Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 40: 04 00 00 00 41 00 00 FC BF FF 00 00 00 00 00 00
        Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 60: 00 00 00 00 00 08 00 00 0E 00 0F 00 F8 FF FF FF
        Offset 70: 67 45 23 01 00 00 00 00 01 00 00 00 00 00 00 00
        Offset 80: 08 00 03 A8 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B00 D14 F04: ATI SB400 - PCI-PCI Bridge

        Offset 00: 02 10 71 43 07 00 A0 02 00 01 04 06 00 40 81 00
        Offset 10: 00 00 00 00 00 00 00 00 00 02 02 20 D1 D1 80 22
        Offset 20: C0 FD C0 FD E0 FD E0 FD 00 00 00 00 00 00 00 00
        Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 02 00
        Offset 40: 26 00 3C FF 00 00 00 00 04 01 3F F1 00 00 00 00
        Offset 50: 01 00 00 00 08 00 03 A8 00 00 00 00 00 00 00 00
        Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 01 00 02 06
        Offset E0: 00 00 80 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B00 D14 F05: ATI SB400 - AC'97 Audio Controller

        Offset 00: 02 10 70 43 07 00 30 04 02 00 01 04 08 40 80 00
        Offset 10: 00 A0 02 FE 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 25 2A
        Offset 30: 00 00 00 00 40 00 00 00 00 00 00 00 11 02 02 00
        Offset 40: 05 00 00 00 00 00 00 00 00 00 00 00 04 00 00 00
        Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B00 D18 F00: AMD Hammer - HyperTransport Technology Configuration

        Offset 00: 22 10 00 11 00 00 10 00 00 00 00 06 00 00 80 00
        Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 30: 00 00 00 00 80 00 00 00 00 00 00 00 00 00 00 00
        Offset 40: 01 01 01 00 01 01 01 00 01 01 01 00 01 01 01 00
        Offset 50: 01 01 01 00 01 01 01 00 01 01 01 00 01 01 01 00
        Offset 60: 00 00 00 00 E4 00 00 00 0F CC 20 0F 0C 00 00 00
        Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 80: 08 00 01 21 20 00 11 11 22 05 35 80 02 00 00 00
        Offset 90: 78 01 70 01 00 00 02 00 07 00 00 00 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B00 D18 F01: AMD Hammer - Address Map

        Offset 00: 22 10 01 11 00 00 00 00 00 00 00 06 00 00 80 00
        Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 40: 03 00 00 00 00 00 1F 00 00 00 00 00 01 00 00 00
        Offset 50: 00 00 00 00 02 00 00 00 00 00 00 00 03 00 00 00
        Offset 60: 00 00 00 00 04 00 00 00 00 00 00 00 05 00 00 00
        Offset 70: 00 00 00 00 06 00 00 00 00 00 00 00 07 00 00 00
        Offset 80: 03 0A 00 00 00 0B 00 00 00 00 00 00 00 00 00 00
        Offset 90: 03 00 20 00 80 FF DF 00 00 00 00 00 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 03 00 F0 00 00 02 FE 00
        Offset B0: 03 00 E0 00 80 2F E0 00 00 00 00 00 00 00 00 00
        Offset C0: 13 D0 00 00 00 F0 00 00 00 00 00 00 00 00 00 00
        Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset E0: 03 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B00 D18 F02: AMD Hammer - DRAM Controller

        Offset 00: 22 10 02 11 00 00 00 00 00 00 00 06 00 00 80 00
        Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 40: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 60: 00 FE E0 01 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 80: 04 00 00 00 00 00 00 00 42 34 82 13 21 0B 00 00
        Offset 90: 80 CE 05 3E 07 07 7B 06 00 00 00 00 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset B0: 84 AF EB C9 90 00 00 00 F3 BB E8 08 0C C5 F5 9B
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: C8 68 4D 1F 19 A5 31 2D 23 2F 46 9F 35 F1 CD 64
        Offset E0: CE A0 E2 86 A4 E2 4A 2D D1 56 30 AD 94 38 6C 36
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B00 D18 F03: AMD Hammer - Miscellaneous Control

        Offset 00: 22 10 03 11 00 00 00 00 00 00 00 06 00 00 80 00
        Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 40: FF 3B 00 00 40 00 00 00 00 00 00 00 00 00 00 00
        Offset 50: 00 00 00 08 00 00 00 00 00 00 00 00 C0 FB FF 9F
        Offset 60: 4D 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 70: 11 01 32 51 21 40 70 50 00 2A 00 08 18 21 00 00
        Offset 80: 00 00 07 23 13 21 13 21 00 00 00 00 00 00 00 00
        Offset 90: 00 00 00 00 4F 10 00 00 80 40 44 6D 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset B0: 00 00 00 00 00 00 00 00 3E 00 00 00 00 00 00 00
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 00 00 00 00 01 A7 0D 00 00 00 40 00 25 00 00 00
        Offset E0: 00 00 00 00 20 06 55 14 19 05 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B01 D05 F00: ATI Radeon Xpress 200 (RS480) Chipset - Video Adapter

        Offset 00: 02 10 54 59 07 00 B0 02 00 00 00 03 08 FF 00 00
        Offset 10: 08 00 00 D8 01 EF 00 00 00 00 DF FD 00 00 00 00
        Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
        Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 11 01 08 00
        Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
        Offset 50: 01 00 02 06 00 00 00 00 02 50 20 00 30 02 00 4F
        Offset 60: 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 80: 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B02 D03 F00: Realtek RTL8139 PCI Fast Ethernet Adapter [A/B/C]

        Offset 00: EC 10 39 81 05 00 90 02 10 00 00 02 00 40 00 00
        Offset 10: 01 F9 00 00 00 F0 CF FD 00 00 00 00 00 00 00 00
        Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
        Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 14 01 20 40
        Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 50: 01 00 C2 F7 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        B02 D04 F00: VIA VT6307 Fire IIM IEEE1394 Host Controller

        Offset 00: 06 11 44 30 07 00 10 02 80 10 00 0C 08 40 00 00
        Offset 10: 00 E0 CF FD 01 DE 00 00 00 00 00 00 00 00 00 00
        Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 24 2A
        Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 15 01 00 20
        Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 50: 01 00 02 E4 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
        Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

        PCI-1002-5950: ATI RS4xx/RX4xx NBMCIND

        Offset 00: 00000300 00000322 10A10000 00000006
        Offset 04: 00000000 00000000 00000000 00000000
        Offset 08: 00000000 00000000 00000000 00000000
        Offset 0C: 00000000 00000000 00000000 00000001
        Offset 10: 08881018 0000F09A 9999AAAA 00000000
        Offset 14: FFFF0000 00000000 00000000 00000000
        Offset 18: 00001000 00000000 00000020 00000000
        Offset 1C: 00054204 00000000 1C000000 00000000
        Offset 20: 00000000 00000000 00000000 00000000
        Offset 24: 00000000 00000000 00000000 00000000
        Offset 28: 00000000 00000000 00000000 42040000
        Offset 2C: 00100000 00000010 00000000 00000000
        Offset 30: F9FF9DF3 D3FFBFFE D5F3DD5D F6FFA5F9
        Offset 34: 5FDD77BE FF7AF54F 9777A59D D2FBBFE6
        Offset 38: 00000009 01400000 00000000 00000000
        Offset 3C: 00000000 0009A09A 00000000 0000F0F0
        Offset 40: 00000000 00000000 00000000 00000000
        Offset 44: 00000000 52800000 00000000 81000000
        Offset 48: 00000000 50000000 00000000 00000000
        Offset 4C: 00000000 00000000 00000000 0009A09A
        Offset 50: 00000000 0000F0F0 9999AAAA 00000000
        Offset 54: FFFF0000 00000000 00000000 00000000
        Offset 58: 00000000 00000000 00000000 00000000
        Offset 5C: 00000000 00000000 00000000 02800000
        Offset 60: 00000000 00000000 00000000 00000001
        Offset 64: 00000000 00000000 00000000 00000000
        Offset 68: 00000000 00000000 00000000 01E0FE00
        Offset 6C: 00000000 00000000 00000000 00000000
        Offset 70: 00000000 00000000 00000000 80000004
        Offset 74: 80177000 1016000B 003000B0 000E0008
        Offset 78: 01E2EE2A 00000000 0000015F 00200020
        Offset 7C: 001FFFC7 00080808 00400004 00000000


        --------[ Debug - Video BIOS ]------------------------------------------------------------------------------------------

        C000:0000 U.h...........................IBM............... 761295520......
        C000:0040 ??..............2005/07/19 13:48.....p.............@..<.$*......
        C000:0080 ..RS482- BIOS 300/14 CRT/TV BR#14085...(C) 1988-2003, ATI Techno
        C000:00C0 logies Inc. BK-ATI VER008.043I.008.000. ytameth.hp v611 .RS48PCI
        C000:0100 EDGN1UN..OEM VER.000.000..t....+..t.q..V'.........(.....<.$*TY..
        C000:0140 .......r.i..$.....-...........=...q....y....7.................d.
        C000:0180 ......".....h...PCIR..TY........h.+.....ATI RADEON XPRESS 200 Se
        C000:01C0 ries.a$......,.......................a$......,..................
        C000:0200 ......!.................www............0 @...4 .....A.........X.
        C000:0240 ........A.........G.........@............`...CD..P ....P`.......
        C000:0280 .X ................X`........0A......p.M.......[. . ...`.......
        C000:02C0 ....T..D..................Z..@........dM........|B..............
        C000:0300 ............dM.............@.M.........D............w..M........
        C000:0340 ..LL. ..LL0 8...;.<N......;.(...............g.......`......5?...
        C000:0380 .....-..o.........~*.$...l...........L.....L...............H.<.B
        C000:03C0 ....U...._...._...._...B.....B....H.<..m...A...5..8.b...........


        ------------------------------------------------------------------------------------------------------------------------

        The names of actual companies and products mentioned herein may be the trademarks of their respective owners.
        0
  21. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    merci Marie !

    un petit nettoyage de printemps peut être ??? :)

    windows xp mon pc rame que faire

    tiens nous au courant,@+

    ;-))
    0
    1. babot1
       
      salut,

      le petit nettoyage de printemps c'est OK mais mon ordi ne veut pas demarrer sans echec et on me le conseil pour la defragmantation que dois je faire

      merci
      0
  • 1
  • 2