Internet explorer bug encore et toujours..
Résolu
mat37
-
plouf plouf Messages postés 4562 Date d'inscription Statut Contributeur Dernière intervention -
plouf plouf Messages postés 4562 Date d'inscription Statut Contributeur Dernière intervention -
bonjour,
depuis peu et sans aucune raison valable firefox ne bloque plus les popup. et oui j'ai tout le temps des fenetres qui s'ouvrent sur des pub pour des casinos en ligne, des chat, des telechargements d'anti-spywares, de drivers etc.... bizarrement, depuis le meme jour (il y a à peu pres une semaine), internet explorer m'affiche ca::: Internet Explorer a rencontré un problème et doit fermer. Nous vous prions de nous excuser pour le désagrément encouru.::: mais le pire c'est que je n'utilise pas IE7 et que ca s'affiche meme si je ne suis pas sur internet (je rapelle au passage que j'utilise firefox et pas IE7)
voila, voila,
si quelqu'un a la reponse a mon probleme je suis preneur
merci d'avance a ceux qui me repondront
mat37
depuis peu et sans aucune raison valable firefox ne bloque plus les popup. et oui j'ai tout le temps des fenetres qui s'ouvrent sur des pub pour des casinos en ligne, des chat, des telechargements d'anti-spywares, de drivers etc.... bizarrement, depuis le meme jour (il y a à peu pres une semaine), internet explorer m'affiche ca::: Internet Explorer a rencontré un problème et doit fermer. Nous vous prions de nous excuser pour le désagrément encouru.::: mais le pire c'est que je n'utilise pas IE7 et que ca s'affiche meme si je ne suis pas sur internet (je rapelle au passage que j'utilise firefox et pas IE7)
voila, voila,
si quelqu'un a la reponse a mon probleme je suis preneur
merci d'avance a ceux qui me repondront
mat37
A voir également:
- Internet explorer bug encore et toujours..
- Internet explorer 11 - Télécharger - Navigateurs
- Internet explorer 8 - Télécharger - Navigateurs
- Internet explorer 10 - Télécharger - Navigateurs
- Internet explorer - Guide
- Explorer patcher - Télécharger - Personnalisation
8 réponses
Bonjour ,
Peux tu faire dans l'ordre stp , la la méthode préliminaire jusqu'au .3 inclus et poste , les rapports que tu obtiendras
Ensuite :
2)Télécharge HijackThis ici:
http://telechargement.zebulon.fr/138-hijackthis-1991.html
Dézippe le dans un dossier prévu à cet effet.
Par exemple C:\hijackthis < Enregistre le bien dans c : !
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/Hijenr.gif
Lance le puis:
clique sur "do a system scan and save logfile" (cf démo)
faire un copier coller du log entier sur le forum
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htm
Bon courage
a+
Plouf Plouf
Peux tu faire dans l'ordre stp , la la méthode préliminaire jusqu'au .3 inclus et poste , les rapports que tu obtiendras
Ensuite :
2)Télécharge HijackThis ici:
http://telechargement.zebulon.fr/138-hijackthis-1991.html
Dézippe le dans un dossier prévu à cet effet.
Par exemple C:\hijackthis < Enregistre le bien dans c : !
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/Hijenr.gif
Lance le puis:
clique sur "do a system scan and save logfile" (cf démo)
faire un copier coller du log entier sur le forum
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htm
Bon courage
a+
Plouf Plouf
ok::voila les resultats::
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 11:31:49 16/04/2007
+ Résultat de l'analyse:
:mozilla.6:C:\Documents and Settings\MATHIEU\Application Data\Mozilla\Firefox\Profiles\u0qcjr8p.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\JULIEN\Cookies\julien@atdmt[2].txt -> TrackingCookie.Atdmt : Aucune action entreprise.
C:\Documents and Settings\JULIEN\Cookies\julien@bluestreak[2].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\JULIEN\Cookies\julien@doubleclick[1].txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.10:C:\Documents and Settings\JULIEN\Application Data\Mozilla\Firefox\Profiles\mmo0kq2g.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.8:C:\Documents and Settings\JULIEN\Application Data\Mozilla\Firefox\Profiles\mmo0kq2g.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.9:C:\Documents and Settings\JULIEN\Application Data\Mozilla\Firefox\Profiles\mmo0kq2g.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
C:\Documents and Settings\JULIEN\Cookies\julien@weborama[1].txt -> TrackingCookie.Weborama : Aucune action entreprise.
Fin du rapport
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 11:31:49 16/04/2007
+ Résultat de l'analyse:
:mozilla.6:C:\Documents and Settings\MATHIEU\Application Data\Mozilla\Firefox\Profiles\u0qcjr8p.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\JULIEN\Cookies\julien@atdmt[2].txt -> TrackingCookie.Atdmt : Aucune action entreprise.
C:\Documents and Settings\JULIEN\Cookies\julien@bluestreak[2].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\JULIEN\Cookies\julien@doubleclick[1].txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.10:C:\Documents and Settings\JULIEN\Application Data\Mozilla\Firefox\Profiles\mmo0kq2g.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.8:C:\Documents and Settings\JULIEN\Application Data\Mozilla\Firefox\Profiles\mmo0kq2g.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.9:C:\Documents and Settings\JULIEN\Application Data\Mozilla\Firefox\Profiles\mmo0kq2g.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
C:\Documents and Settings\JULIEN\Cookies\julien@weborama[1].txt -> TrackingCookie.Weborama : Aucune action entreprise.
Fin du rapport
analyse de BitDefender:::
<HTML>
<HEAD>
<TITLE>BitDefender Online Scanner -Scan Report</TITLE>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<meta name="generator" content="Namo WebEditor v5.0(Trial)">
</HEAD>
<BODY BGCOLOR=#FFFFFF leftmargin="10" marginwidth="0" topmargin="20" marginheight="0" >
<table align="center" border="0" cellpadding="0" cellspacing="0" width="90%">
<tr>
<td width="458">
<p><font face="Arial" color=red><span style="font-size:14pt;"><b>BitDefender
Online Scanner</b></span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td colspan="3" width="912">
<p><font face="Arial"><span style="font-size:11pt;"><B>Scan report generated
at: Mon, Apr 16, 2007 - 13:02:25</b></span></font></p>
</td>
</tr>
<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B> </b></span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B>Scan
path: </b></span><span style="font-size:10pt;">A:\;C:\;D:\;E:\;</span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B> </b></span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Statistics</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Time</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">00:56:00</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">362328</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Folders</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">5732</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Boot Sectors</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">2</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Archives</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">7389</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Packed Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">14937</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Results</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Identified Viruses </font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">5</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Infected Files </font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">10</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Suspect Files </font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Warnings</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Disinfected</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Deleted Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">10</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Engines Info</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Virus Definitions</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">486117</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Engine build</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">AVCORE v1.0 (build 2397) (i386) (Feb 8 2007 14:24:08)</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">14</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Archive plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">38</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Unpack plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">6</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">E-mail plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">6</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">System plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">1</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Scan Settings</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">First Action</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Disinfect</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Second Action</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Delete</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Heuristics</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Enable Warnings</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scanned Extensions</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">*;</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Exclude Extensions</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2"> </font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Emails</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Archives</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Packed</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Boot</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td colspan=2>
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="252" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Scanned File</b></font></p>
</td>
<td width="195" bgcolor="#CCCCCC" align="right">
<p align="left"><b><font size="2" face="Arial"> Status</font></b></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Backdoor.Skinymes.Agent.A</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\WINDOWS\pack.epk=>(NSIS 2g)</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Update failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\LocalService\Application Data\OpenBold\amok flag.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Trojan.FatObfus.Gen</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\LocalService\Application Data\OpenBold\amok flag.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\LocalService\Application Data\OpenBold\amok flag.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st17.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st18.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st19.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st20.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st21.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st22.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st23.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st24.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st25.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st26.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st27.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playingm.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing2.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing3.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing4.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing5.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing6.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing7.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing8.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing9.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr2.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr3.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr4.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr5.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr6.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr7.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr8.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr9.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr10.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr11.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr12.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/bullet/dot.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/feature_article.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_1.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_2.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_3.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_4.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_5.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_6.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_7.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_bg_1.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_bg_2.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_bg_3.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_bg_4.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hot_news.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hot_titles.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/about_us.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/left_1.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/left_2.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/left_3.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/left_4.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/left_5.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/left_6.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/left_7.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/powerdvd_skins.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/subscribe_newsletter.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/support_center.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/update_ipower.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/upgrade_software.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/blank.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/language.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/right_1.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/right_2.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/right_3.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/right_4.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/right_5.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/right_6.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/right_7.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/top_dvd_titles.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/top_skins.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/articles.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/articles_1.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/bg.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/contact.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/contact_1.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/downloads.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/downloads_1.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/dvd_db.gif</font></p>
</td>
<td width="43%"
<HTML>
<HEAD>
<TITLE>BitDefender Online Scanner -Scan Report</TITLE>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<meta name="generator" content="Namo WebEditor v5.0(Trial)">
</HEAD>
<BODY BGCOLOR=#FFFFFF leftmargin="10" marginwidth="0" topmargin="20" marginheight="0" >
<table align="center" border="0" cellpadding="0" cellspacing="0" width="90%">
<tr>
<td width="458">
<p><font face="Arial" color=red><span style="font-size:14pt;"><b>BitDefender
Online Scanner</b></span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td colspan="3" width="912">
<p><font face="Arial"><span style="font-size:11pt;"><B>Scan report generated
at: Mon, Apr 16, 2007 - 13:02:25</b></span></font></p>
</td>
</tr>
<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B> </b></span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B>Scan
path: </b></span><span style="font-size:10pt;">A:\;C:\;D:\;E:\;</span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B> </b></span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Statistics</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Time</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">00:56:00</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">362328</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Folders</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">5732</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Boot Sectors</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">2</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Archives</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">7389</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Packed Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">14937</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Results</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Identified Viruses </font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">5</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Infected Files </font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">10</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Suspect Files </font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Warnings</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Disinfected</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Deleted Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">10</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Engines Info</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Virus Definitions</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">486117</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Engine build</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">AVCORE v1.0 (build 2397) (i386) (Feb 8 2007 14:24:08)</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">14</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Archive plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">38</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Unpack plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">6</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">E-mail plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">6</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">System plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">1</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Scan Settings</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">First Action</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Disinfect</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Second Action</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Delete</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Heuristics</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Enable Warnings</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scanned Extensions</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">*;</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Exclude Extensions</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2"> </font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Emails</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Archives</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Packed</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Boot</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td colspan=2>
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="252" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Scanned File</b></font></p>
</td>
<td width="195" bgcolor="#CCCCCC" align="right">
<p align="left"><b><font size="2" face="Arial"> Status</font></b></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Backdoor.Skinymes.Agent.A</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\WINDOWS\pack.epk=>(NSIS 2g)</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Update failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\LocalService\Application Data\OpenBold\amok flag.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Trojan.FatObfus.Gen</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\LocalService\Application Data\OpenBold\amok flag.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\LocalService\Application Data\OpenBold\amok flag.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st17.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st18.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st19.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st20.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st21.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st22.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st23.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st24.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st25.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st26.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/get_st27.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playingm.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing2.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing3.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing4.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing5.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing6.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing7.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing8.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/playing9.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr2.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr3.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr4.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr5.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr6.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr7.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr8.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr9.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr10.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr11.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/data2.cab=>(IShield Module 30)=>/vr12.htm</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/bullet/dot.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/feature_article.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_1.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_2.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_3.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_4.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_5.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_6.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_7.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_bg_1.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_bg_2.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_bg_3.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hd_bg_4.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hot_news.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/hd/hot_titles.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/about_us.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/left_1.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/left_2.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/left_3.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/left_4.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/left_5.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/left_6.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/left_7.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/powerdvd_skins.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/subscribe_newsletter.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/support_center.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/update_ipower.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/left/upgrade_software.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/blank.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/language.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/right_1.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/right_2.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/right_3.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/right_4.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/right_5.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/right_6.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/right_7.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/top_dvd_titles.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/right/top_skins.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/articles.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/articles_1.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/bg.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/contact.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/contact_1.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/downloads.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/downloads_1.gif</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Clean</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\A JEAN-PIERRE\Local Settings\Temp\IMAGE.img=>PowerDVD/HTML/cht/tw/images/top/dvd_db.gif</font></p>
</td>
<td width="43%"
et voici le logFile de HijackThis::
Logfile of HijackThis v1.99.1
Scan saved at 13:17:30, on 16/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Browser MOUSE\mouse32a.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\MultiMedia Keyboard\MultiMedia Keyboard\1.1\KbdAp32A.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Browser MOUSE\mouse32a.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [LWBKEYBOARD] C:\Program Files\MultiMedia Keyboard\MultiMedia Keyboard\1.1\KbdAp32A.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2007 Pro Evaluation\VirusKeeper.exe
O4 - HKLM\..\RunServices: [SchedulingAgent] C:\WINDOWS\system32\mstask.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {3AF4DACE-36ED-42EF-9DFC-ADC34DA30CFF} (PatchInstaller.Installer) - file://E:\content\include\XPPatchInstaller.CAB
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8B1BC605-C593-4865-8F5B-05517F0CD0BB} (MSSecurityAdvisorCD Class) - file://E:\Content\include\msSecUcd.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
merci :)
Logfile of HijackThis v1.99.1
Scan saved at 13:17:30, on 16/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Browser MOUSE\mouse32a.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\MultiMedia Keyboard\MultiMedia Keyboard\1.1\KbdAp32A.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Browser MOUSE\mouse32a.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [LWBKEYBOARD] C:\Program Files\MultiMedia Keyboard\MultiMedia Keyboard\1.1\KbdAp32A.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2007 Pro Evaluation\VirusKeeper.exe
O4 - HKLM\..\RunServices: [SchedulingAgent] C:\WINDOWS\system32\mstask.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {3AF4DACE-36ED-42EF-9DFC-ADC34DA30CFF} (PatchInstaller.Installer) - file://E:\content\include\XPPatchInstaller.CAB
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8B1BC605-C593-4865-8F5B-05517F0CD0BB} (MSSecurityAdvisorCD Class) - file://E:\Content\include\msSecUcd.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
merci :)
Bonjour ,
Tu devrais ,recommencer la manipulation ,avec avg antispyware car aucune action n a été entreprise.
Ensuite tu n'a pas fait toutes les manipulations demandées.. dans le post>2<
Pour finir pourquio créer des doublons ..popup et ie7 ie7 bug et les popup s ouvrent
a+
Plouf Plouf
Tu devrais ,recommencer la manipulation ,avec avg antispyware car aucune action n a été entreprise.
Ensuite tu n'a pas fait toutes les manipulations demandées.. dans le post>2<
Pour finir pourquio créer des doublons ..popup et ie7 ie7 bug et les popup s ouvrent
a+
Plouf Plouf
tout d'abord je vuex m'excuser pour avoir créer 2 sujets: j'ai cru que le premier n'était pas passé car au moment ou je l'ai envoyé ma connexion s'est bloquée... voila toute l'histoire.
(j'ai 4 sessions: A JEAN-PIERRE, MATHIEU, MAMAN, JULIEN)
Donc voici mes raport:
------------------------------------------------------------
1/CCleanerNettoyage
NETTOYAGE COMPLET - (8,943 secs)
------------------------------------------------------------------------------------------
3,46MB supprimés.
------------------------------------------------------------------------------------------
Détails des fichiers effacés
------------------------------------------------------------------------------------------
Fichiers Temporaires d'Internet Explorer (fichiers 246) 1,54MB
Cookie:mathieu@xiti.com/(&H100001) 106 bytes
Cookie:mathieu@live.com/(&H100001) 351 bytes
Cookie:mathieu@messenger.msn.com/(&H100001) 95 bytes
Cookie:mathieu@247realmedia.com/(&H100001) 92 bytes
Cookie:mathieu@rad.msn.com/(&H100001) 690 bytes
Cookie:mathieu@login.live.com/(&H100001) 181 bytes
Cookie:mathieu@edt02.net/(&H100001) 312 bytes
Cookie:mathieu@h.msn.com/(&H100001) 68 bytes
Cookie:mathieu@sdv.fr/(&H100001) 83 bytes
Cookie:mathieu@hotmail.msn.com/(&H100001) 71 bytes
Cookie:mathieu@msn.com/(&H100001) 332 bytes
Cookie:mathieu@www.commentcamarche.net/(&H100001) 115 bytes
Poubelle vidée (5 fichiers) 0,24MB
Cache Internet de Firefox/Mozilla (18 fichiers) 1,65MB
C:\Documents and Settings\MATHIEU\Application Data\Mozilla\Firefox\profiles\u0qcjr8p.default\history.dat 22,96KB
Cookie supprimé: xiti.com
Cookie supprimé: www.commentcamarche.net
Cookie supprimé: 247realmedia.com
Cookie supprimé: google.com
Cookie supprimé: estat.com
Cookie supprimé: weborama.fr
Cookie supprimé: google.fr
Cookie supprimé: sdv.fr
C:\Documents and Settings\MATHIEU\Application Data\Mozilla\Firefox\profiles\u0qcjr8p.default\formhistory.dat 233 bytes
C:\Documents and Settings\MATHIEU\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol 348 bytes
------------------------------------------------------------------------------------------
----------------------------------------------------
aucune erreur trouvée dans le registre
----------------------------------------------------
2/AVG ANTISPY
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 15:25:32 16/04/2007
+ Résultat de l'analyse:
:mozilla.6:C:\Documents and Settings\MATHIEU\Application Data\Mozilla\Firefox\Profiles\u0qcjr8p.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\JULIEN\Cookies\julien@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\JULIEN\Cookies\julien@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\JULIEN\Cookies\julien@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.10:C:\Documents and Settings\JULIEN\Application Data\Mozilla\Firefox\Profiles\mmo0kq2g.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.8:C:\Documents and Settings\JULIEN\Application Data\Mozilla\Firefox\Profiles\mmo0kq2g.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.9:C:\Documents and Settings\JULIEN\Application Data\Mozilla\Firefox\Profiles\mmo0kq2g.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\JULIEN\Cookies\julien@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
Fin du rapport
---------------------------------------------------------------------
3/BitDefender Online
BitDefender Online Scanner
Scan report generated at: Mon, Apr 16, 2007 - 16:29:17
Scan path: A:\;C:\;D:\;E:\;
Statistics
Time
00:51:15
Files
361719
Folders
5726
Boot Sectors
2
Archives
7393
Packed Files
14925
Results
Identified Viruses
1
Infected Files
1
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
1
Engines Info
Virus Definitions
486169
Engine build
AVCORE v1.0 (build 2397) (i386) (Feb 8 2007 14:24:08)
Scan plugins
14
Archive plugins
38
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009
Infected with: Backdoor.Skinymes.Agent.A
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009
Disinfection failed
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009
Deleted
C:\WINDOWS\pack.epk=>(NSIS 2g)
Update failed
------------------------------------------------
4/HijackThisFR logFile
Logfile of HijackThis v1.99.1
Scan saved at 13:17:30, on 16/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Browser MOUSE\mouse32a.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\MultiMedia Keyboard\MultiMedia Keyboard\1.1\KbdAp32A.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Browser MOUSE\mouse32a.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [LWBKEYBOARD] C:\Program Files\MultiMedia Keyboard\MultiMedia Keyboard\1.1\KbdAp32A.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2007 Pro Evaluation\VirusKeeper.exe
O4 - HKLM\..\RunServices: [SchedulingAgent] C:\WINDOWS\system32\mstask.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {3AF4DACE-36ED-42EF-9DFC-ADC34DA30CFF} (PatchInstaller.Installer) - file://E:\content\include\XPPatchInstaller.CAB
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8B1BC605-C593-4865-8F5B-05517F0CD0BB} (MSSecurityAdvisorCD Class) - file://E:\Content\include\msSecUcd.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
voila::merci a tous
(j'ai 4 sessions: A JEAN-PIERRE, MATHIEU, MAMAN, JULIEN)
Donc voici mes raport:
------------------------------------------------------------
1/CCleanerNettoyage
NETTOYAGE COMPLET - (8,943 secs)
------------------------------------------------------------------------------------------
3,46MB supprimés.
------------------------------------------------------------------------------------------
Détails des fichiers effacés
------------------------------------------------------------------------------------------
Fichiers Temporaires d'Internet Explorer (fichiers 246) 1,54MB
Cookie:mathieu@xiti.com/(&H100001) 106 bytes
Cookie:mathieu@live.com/(&H100001) 351 bytes
Cookie:mathieu@messenger.msn.com/(&H100001) 95 bytes
Cookie:mathieu@247realmedia.com/(&H100001) 92 bytes
Cookie:mathieu@rad.msn.com/(&H100001) 690 bytes
Cookie:mathieu@login.live.com/(&H100001) 181 bytes
Cookie:mathieu@edt02.net/(&H100001) 312 bytes
Cookie:mathieu@h.msn.com/(&H100001) 68 bytes
Cookie:mathieu@sdv.fr/(&H100001) 83 bytes
Cookie:mathieu@hotmail.msn.com/(&H100001) 71 bytes
Cookie:mathieu@msn.com/(&H100001) 332 bytes
Cookie:mathieu@www.commentcamarche.net/(&H100001) 115 bytes
Poubelle vidée (5 fichiers) 0,24MB
Cache Internet de Firefox/Mozilla (18 fichiers) 1,65MB
C:\Documents and Settings\MATHIEU\Application Data\Mozilla\Firefox\profiles\u0qcjr8p.default\history.dat 22,96KB
Cookie supprimé: xiti.com
Cookie supprimé: www.commentcamarche.net
Cookie supprimé: 247realmedia.com
Cookie supprimé: google.com
Cookie supprimé: estat.com
Cookie supprimé: weborama.fr
Cookie supprimé: google.fr
Cookie supprimé: sdv.fr
C:\Documents and Settings\MATHIEU\Application Data\Mozilla\Firefox\profiles\u0qcjr8p.default\formhistory.dat 233 bytes
C:\Documents and Settings\MATHIEU\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol 348 bytes
------------------------------------------------------------------------------------------
----------------------------------------------------
aucune erreur trouvée dans le registre
----------------------------------------------------
2/AVG ANTISPY
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 15:25:32 16/04/2007
+ Résultat de l'analyse:
:mozilla.6:C:\Documents and Settings\MATHIEU\Application Data\Mozilla\Firefox\Profiles\u0qcjr8p.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\JULIEN\Cookies\julien@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\JULIEN\Cookies\julien@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\JULIEN\Cookies\julien@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.10:C:\Documents and Settings\JULIEN\Application Data\Mozilla\Firefox\Profiles\mmo0kq2g.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.8:C:\Documents and Settings\JULIEN\Application Data\Mozilla\Firefox\Profiles\mmo0kq2g.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.9:C:\Documents and Settings\JULIEN\Application Data\Mozilla\Firefox\Profiles\mmo0kq2g.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\JULIEN\Cookies\julien@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
Fin du rapport
---------------------------------------------------------------------
3/BitDefender Online
BitDefender Online Scanner
Scan report generated at: Mon, Apr 16, 2007 - 16:29:17
Scan path: A:\;C:\;D:\;E:\;
Statistics
Time
00:51:15
Files
361719
Folders
5726
Boot Sectors
2
Archives
7393
Packed Files
14925
Results
Identified Viruses
1
Infected Files
1
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
1
Engines Info
Virus Definitions
486169
Engine build
AVCORE v1.0 (build 2397) (i386) (Feb 8 2007 14:24:08)
Scan plugins
14
Archive plugins
38
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009
Infected with: Backdoor.Skinymes.Agent.A
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009
Disinfection failed
C:\WINDOWS\pack.epk=>(NSIS 2g)=>lzma_solid_nsis0009
Deleted
C:\WINDOWS\pack.epk=>(NSIS 2g)
Update failed
------------------------------------------------
4/HijackThisFR logFile
Logfile of HijackThis v1.99.1
Scan saved at 13:17:30, on 16/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Browser MOUSE\mouse32a.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\MultiMedia Keyboard\MultiMedia Keyboard\1.1\KbdAp32A.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Browser MOUSE\mouse32a.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [LWBKEYBOARD] C:\Program Files\MultiMedia Keyboard\MultiMedia Keyboard\1.1\KbdAp32A.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2007 Pro Evaluation\VirusKeeper.exe
O4 - HKLM\..\RunServices: [SchedulingAgent] C:\WINDOWS\system32\mstask.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {3AF4DACE-36ED-42EF-9DFC-ADC34DA30CFF} (PatchInstaller.Installer) - file://E:\content\include\XPPatchInstaller.CAB
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8B1BC605-C593-4865-8F5B-05517F0CD0BB} (MSSecurityAdvisorCD Class) - file://E:\Content\include\msSecUcd.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
voila::merci a tous
Coucou ,
Prends connaissance du contenu le lien suivant:
http://www.f-secure.com/products/license-terms/eult_fra.pdf
Tu as donc pris connaissance et accepté les conditions d'utilisations du programme blacklight qui est inclus dans le dossier compressé navilog1.zip que tu vas télécharger.
Maintenant fais un clic droit sur ce lien :
http://perso.orange.fr/il.mafioso/Navifix/navilog1.zip
Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Fais un clic droit sur navilog1.zip et choisis "tout extraire"
Ensuite double clique sur navilog1.bat
Laisses-toi guider. Au menu principal, choisis 1 et valides.
(ne fais pas le choix 2 sans notre avis/accord)
Patientes jusqu'au message :
*** Analyse Termine le ..... ***
Appuies sur une touche comme demandé, le blocnote va s'ouvrir.
Copies-colles l'intégralité dans une réponse. Refermes le blocnote.
Le rapport est en outre sauvegardé à la racine du disque (fixnavi.txt)
Bon courage
a+
Plouf Plouf
Prends connaissance du contenu le lien suivant:
http://www.f-secure.com/products/license-terms/eult_fra.pdf
Tu as donc pris connaissance et accepté les conditions d'utilisations du programme blacklight qui est inclus dans le dossier compressé navilog1.zip que tu vas télécharger.
Maintenant fais un clic droit sur ce lien :
http://perso.orange.fr/il.mafioso/Navifix/navilog1.zip
Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Fais un clic droit sur navilog1.zip et choisis "tout extraire"
Ensuite double clique sur navilog1.bat
Laisses-toi guider. Au menu principal, choisis 1 et valides.
(ne fais pas le choix 2 sans notre avis/accord)
Patientes jusqu'au message :
*** Analyse Termine le ..... ***
Appuies sur une touche comme demandé, le blocnote va s'ouvrir.
Copies-colles l'intégralité dans une réponse. Refermes le blocnote.
Le rapport est en outre sauvegardé à la racine du disque (fixnavi.txt)
Bon courage
a+
Plouf Plouf
merci pour ta reponse je fais sa ce soir ou demain
on m'a conseillé de télécharger zoneAlarme comme Firewall et il a detecté un fichier nommé jvyatikpx.exe qui voulait acceder a internet
je ne sais absolument pas ce que c'est et je n'ai rien trouvé sur google: aucune réponse pour ce mot-clé!!!! alors serai-ce un virus ou autre saleté?
merci
on m'a conseillé de télécharger zoneAlarme comme Firewall et il a detecté un fichier nommé jvyatikpx.exe qui voulait acceder a internet
je ne sais absolument pas ce que c'est et je n'ai rien trouvé sur google: aucune réponse pour ce mot-clé!!!! alors serai-ce un virus ou autre saleté?
merci
voici le raport naviLog::
Search Navipromo version 1.1.5 commencé le 17/04/2007 à 10:07:31,64
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Poster ce rapport sur le forum pour le faire analyser !!!
!!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!!
Fix lancé depuis C:\Documents and Settings\MATHIEU\Bureau\navilog1
Mise a jour le 13.04.2007 a 20h00 by IL-MAFIOSO
Executé en mode normal
*** Recherche Programmes installes ***
*** Recherche dossiers dans C:\WINDOWS ***
*** Recherche dossiers dans C:\Program Files ***
*** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***
*** Recherche dossiers dans C:\Documents and Settings\MATHIEU\Application Data ***
...\Application Data\MessengerSkinner trouvé !
*** Recherche avec BlackLight Engine/F-secure ***
BlackLight Engine est un produit de F-secure, pour + d'infos :
https://www.f-secure.com/en
Fichier(s) caché(s) dans C:\WINDOWS\system32 :
Processus caché(s) dans C:\WINDOWS\system32 :
C:\windows\system32\jvyatikpx.exe
*** Recherche fichiers ***
C:\WINDOWS\pack.epk trouvé !
C:\WINDOWS\system32\nvs2.inf trouvé !
*** Recherche cles registre ***
Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs]
Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage]
Recherche Clé Magic Control
HKEY_CURRENT_USER\Software\Lanconfig trouvé !
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche fichiers connus:
2)Recherche Heuristique :
*
C:\WINDOWS\system32\jvyatikpx.dat trouvé !
**
C:\WINDOWS\system32\jvyatikpx.dat trouvé !
***
****
C:\WINDOWS\system32\jvyatikpx_navps.dat trouvé !
*****
C:\WINDOWS\system32\jfbeyuqtpl_navtmp.dat trouvé !
******
*******
********
C:\WINDOWS\system32\otfojht.exe trouvé !
C:\WINDOWS\system32\gsrvswu.exe trouvé !
C:\WINDOWS\system32\jvyatikpx.exe trouvé !
C:\WINDOWS\system32\arntfjepf.exe trouvé !
*** Analyse Terminé le 17/04/2007 à 10:08:47,26 ***
@+
Search Navipromo version 1.1.5 commencé le 17/04/2007 à 10:07:31,64
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Poster ce rapport sur le forum pour le faire analyser !!!
!!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!!
Fix lancé depuis C:\Documents and Settings\MATHIEU\Bureau\navilog1
Mise a jour le 13.04.2007 a 20h00 by IL-MAFIOSO
Executé en mode normal
*** Recherche Programmes installes ***
*** Recherche dossiers dans C:\WINDOWS ***
*** Recherche dossiers dans C:\Program Files ***
*** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***
*** Recherche dossiers dans C:\Documents and Settings\MATHIEU\Application Data ***
...\Application Data\MessengerSkinner trouvé !
*** Recherche avec BlackLight Engine/F-secure ***
BlackLight Engine est un produit de F-secure, pour + d'infos :
https://www.f-secure.com/en
Fichier(s) caché(s) dans C:\WINDOWS\system32 :
Processus caché(s) dans C:\WINDOWS\system32 :
C:\windows\system32\jvyatikpx.exe
*** Recherche fichiers ***
C:\WINDOWS\pack.epk trouvé !
C:\WINDOWS\system32\nvs2.inf trouvé !
*** Recherche cles registre ***
Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs]
Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage]
Recherche Clé Magic Control
HKEY_CURRENT_USER\Software\Lanconfig trouvé !
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche fichiers connus:
2)Recherche Heuristique :
*
C:\WINDOWS\system32\jvyatikpx.dat trouvé !
**
C:\WINDOWS\system32\jvyatikpx.dat trouvé !
***
****
C:\WINDOWS\system32\jvyatikpx_navps.dat trouvé !
*****
C:\WINDOWS\system32\jfbeyuqtpl_navtmp.dat trouvé !
******
*******
********
C:\WINDOWS\system32\otfojht.exe trouvé !
C:\WINDOWS\system32\gsrvswu.exe trouvé !
C:\WINDOWS\system32\jvyatikpx.exe trouvé !
C:\WINDOWS\system32\arntfjepf.exe trouvé !
*** Analyse Terminé le 17/04/2007 à 10:08:47,26 ***
@+
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Bonjour
continuons :-)
Peux tu faire la suite stp .
=Démarres en mode sans échec =
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
Une fois sur le bureau s’il n’y a pas toutes les couleurs c’est normal !
(Si F8 ne marche pas utilise la touche F5).
Doubles- clique sur navilog1.bat
Laisses-toi guider. Au menu principal, choisis 2 et valides.
Indiques le mode de nettoyage "automatique"
Laisses toi guider et réponds aux questions éventuelles
Ton bureau va disparaitre, c'est normal.
Patientes jusqu'au message :
*** Nettoyage Termine le ..... ***
Appuies sur une touche comme demandé, le blocnote va s'ouvrir.
Sauvegardes le rapport de manière à le retrouver
Refermes le blocnote. Ton bureau va réapparaitre
Redémarres normalement et copies-colles l'intégralité dans une réponse.
Le rapport est en outre sauvegardé à la racine du disque (cleannavi.txt)
Pour le fw je ne peux rien dire sur ZA je préfère kério , aprés ça ces chaqu'un ces préférences
a+
bon courage
continuons :-)
Peux tu faire la suite stp .
=Démarres en mode sans échec =
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
Une fois sur le bureau s’il n’y a pas toutes les couleurs c’est normal !
(Si F8 ne marche pas utilise la touche F5).
Doubles- clique sur navilog1.bat
Laisses-toi guider. Au menu principal, choisis 2 et valides.
Indiques le mode de nettoyage "automatique"
Laisses toi guider et réponds aux questions éventuelles
Ton bureau va disparaitre, c'est normal.
Patientes jusqu'au message :
*** Nettoyage Termine le ..... ***
Appuies sur une touche comme demandé, le blocnote va s'ouvrir.
Sauvegardes le rapport de manière à le retrouver
Refermes le blocnote. Ton bureau va réapparaitre
Redémarres normalement et copies-colles l'intégralité dans une réponse.
Le rapport est en outre sauvegardé à la racine du disque (cleannavi.txt)
Pour le fw je ne peux rien dire sur ZA je préfère kério , aprés ça ces chaqu'un ces préférences
a+
bon courage
bonjour plouf plouf,
voila le rapport cleannavi::
Clean Navipromo version 1.1.5 commencé le 17/04/2007 à 10:42:58,39
Fix lancé depuis C:\Documents and Settings\MATHIEU\Bureau\navilog1
Mise a jour le 13.04.2007 a 20h00 by IL-MAFIOSO
Executé en mode sans echec
Mode suppression automatique avec prise en charge résultats Blacklight
*** Creation backups fichiers trouvés par Blacklight ***
Copie vers "C:\Documents and Settings\MATHIEU\Bureau\navilog1\Backupnavi"
*** Suppression des fichiers trouvés avec Blacklight ***
** 2ème passage **
C:\WINDOWS\system32\jvyatikpx_navup.dat absent !
C:\WINDOWS\system32\jvyatikpx_navtmp.dat absent !
C:\WINDOWS\system32\jvyatikpx_m2s.xml absent !
C:\WINDOWS\system32\jvyatikpx.dat trouvé !
Copie C:\WINDOWS\system32\jvyatikpx.dat realise avec succes !
C:\WINDOWS\system32\jvyatikpx.dat supprimé !
C:\WINDOWS\system32\jvyatikpx_nav.dat trouvé !
Copie C:\WINDOWS\system32\jvyatikpx_nav.dat realise avec succes !
C:\WINDOWS\system32\jvyatikpx_nav.dat supprimé !
C:\WINDOWS\system32\jvyatikpx_navps.dat trouvé !
Copie C:\WINDOWS\system32\jvyatikpx_navps.dat realise avec succes !
C:\WINDOWS\system32\jvyatikpx_navps.dat supprimé !
C:\WINDOWS\prefetch\jvyatikpx*.pf trouvé !
Copie C:\WINDOWS\prefetch\jvyatikpx*.pf realise avec succes !
C:\WINDOWS\prefetch\jvyatikpx*.pf supprimé !
C:\WINDOWS\system32\jvyatikpx.exe trouvé !
Copie C:\WINDOWS\system32\jvyatikpx.exe realise avec succes !
C:\WINDOWS\system32\jvyatikpx.exe supprimé !
*** Suppression dossiers dans C:\WINDOWS ***
*** Suppression dossiers dans C:\Program Files ***
*** Suppression dossiers dans C:\Documents and Settings\All Users\Application Data ***
*** Suppression dossiers dans C:\Documents and Settings\MATHIEU\Application Data ***
...\Application Data\MessengerSkinner ...suppression...
...\Application Data\MessengerSkinner supprimé !
*** Suppression fichiers ***
C:\WINDOWS\pack.epk supprimé !
C:\WINDOWS\system32\nvs2.inf supprimé !
*** Suppression fichiers temporaires ***
Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\MATHIEU\Local Settings\Temp effectué !
*** Sauvegarde du registre vers dossier Backupnavi***
sauvegarde du registre realise avec succes !
*** Nettoyage registre ***
Nettoyage registre Ok
*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche fichiers connus:
2)Recherche et Suppression Heuristique :
*
**
***
****
*****
C:\WINDOWS\System32\jfbeyuqtpl_navtmp.dat trouvé !
Copie C:\WINDOWS\system32\jfbeyuqtpl_navtmp.dat realise avec succes !
C:\WINDOWS\system32\jfbeyuqtpl_navtmp.dat supprimé !
******
*******
********
C:\WINDOWS\System32\otfojht.exe trouvé !
Copie C:\WINDOWS\system32\otfojht.exe realise avec succes !
C:\WINDOWS\system32\otfojht.exe supprimé !
C:\WINDOWS\System32\gsrvswu.exe trouvé !
Copie C:\WINDOWS\system32\gsrvswu.exe realise avec succes !
C:\WINDOWS\system32\gsrvswu.exe supprimé !
C:\WINDOWS\System32\arntfjepf.exe trouvé !
Copie C:\WINDOWS\system32\arntfjepf.exe realise avec succes !
C:\WINDOWS\system32\arntfjepf.exe supprimé !
*** Nettoyage termine le 17/04/2007 à 10:43:24,29 ***
voila le rapport cleannavi::
Clean Navipromo version 1.1.5 commencé le 17/04/2007 à 10:42:58,39
Fix lancé depuis C:\Documents and Settings\MATHIEU\Bureau\navilog1
Mise a jour le 13.04.2007 a 20h00 by IL-MAFIOSO
Executé en mode sans echec
Mode suppression automatique avec prise en charge résultats Blacklight
*** Creation backups fichiers trouvés par Blacklight ***
Copie vers "C:\Documents and Settings\MATHIEU\Bureau\navilog1\Backupnavi"
*** Suppression des fichiers trouvés avec Blacklight ***
** 2ème passage **
C:\WINDOWS\system32\jvyatikpx_navup.dat absent !
C:\WINDOWS\system32\jvyatikpx_navtmp.dat absent !
C:\WINDOWS\system32\jvyatikpx_m2s.xml absent !
C:\WINDOWS\system32\jvyatikpx.dat trouvé !
Copie C:\WINDOWS\system32\jvyatikpx.dat realise avec succes !
C:\WINDOWS\system32\jvyatikpx.dat supprimé !
C:\WINDOWS\system32\jvyatikpx_nav.dat trouvé !
Copie C:\WINDOWS\system32\jvyatikpx_nav.dat realise avec succes !
C:\WINDOWS\system32\jvyatikpx_nav.dat supprimé !
C:\WINDOWS\system32\jvyatikpx_navps.dat trouvé !
Copie C:\WINDOWS\system32\jvyatikpx_navps.dat realise avec succes !
C:\WINDOWS\system32\jvyatikpx_navps.dat supprimé !
C:\WINDOWS\prefetch\jvyatikpx*.pf trouvé !
Copie C:\WINDOWS\prefetch\jvyatikpx*.pf realise avec succes !
C:\WINDOWS\prefetch\jvyatikpx*.pf supprimé !
C:\WINDOWS\system32\jvyatikpx.exe trouvé !
Copie C:\WINDOWS\system32\jvyatikpx.exe realise avec succes !
C:\WINDOWS\system32\jvyatikpx.exe supprimé !
*** Suppression dossiers dans C:\WINDOWS ***
*** Suppression dossiers dans C:\Program Files ***
*** Suppression dossiers dans C:\Documents and Settings\All Users\Application Data ***
*** Suppression dossiers dans C:\Documents and Settings\MATHIEU\Application Data ***
...\Application Data\MessengerSkinner ...suppression...
...\Application Data\MessengerSkinner supprimé !
*** Suppression fichiers ***
C:\WINDOWS\pack.epk supprimé !
C:\WINDOWS\system32\nvs2.inf supprimé !
*** Suppression fichiers temporaires ***
Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\MATHIEU\Local Settings\Temp effectué !
*** Sauvegarde du registre vers dossier Backupnavi***
sauvegarde du registre realise avec succes !
*** Nettoyage registre ***
Nettoyage registre Ok
*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche fichiers connus:
2)Recherche et Suppression Heuristique :
*
**
***
****
*****
C:\WINDOWS\System32\jfbeyuqtpl_navtmp.dat trouvé !
Copie C:\WINDOWS\system32\jfbeyuqtpl_navtmp.dat realise avec succes !
C:\WINDOWS\system32\jfbeyuqtpl_navtmp.dat supprimé !
******
*******
********
C:\WINDOWS\System32\otfojht.exe trouvé !
Copie C:\WINDOWS\system32\otfojht.exe realise avec succes !
C:\WINDOWS\system32\otfojht.exe supprimé !
C:\WINDOWS\System32\gsrvswu.exe trouvé !
Copie C:\WINDOWS\system32\gsrvswu.exe realise avec succes !
C:\WINDOWS\system32\gsrvswu.exe supprimé !
C:\WINDOWS\System32\arntfjepf.exe trouvé !
Copie C:\WINDOWS\system32\arntfjepf.exe realise avec succes !
C:\WINDOWS\system32\arntfjepf.exe supprimé !
*** Nettoyage termine le 17/04/2007 à 10:43:24,29 ***
slt plouf plouf
enfaite, quand je t'ai parlé de ZA, je voulais surtout te parler du processus jvyatikpx.exe qui voulait se connecter a internet. comme je l(ai mentionné précédemment, je n'ai rien trouvé sur google concernant ce processus: il est apparemment inconnu??!
je voulais simplement l'avis d'un spécialiste :P
a+
enfaite, quand je t'ai parlé de ZA, je voulais surtout te parler du processus jvyatikpx.exe qui voulait se connecter a internet. comme je l(ai mentionné précédemment, je n'ai rien trouvé sur google concernant ce processus: il est apparemment inconnu??!
je voulais simplement l'avis d'un spécialiste :P
a+
Bonjour ,
Tu peux remettre une analyse hijacthis+ bidfender et me préciser où en sont tes soucis , stp !?
2) déinstaller messengerskinner si tu ne l as pas encore fait .
3)Rend toi http://www.virustotal.com/en/indexf.html clique / parcourir vas chercher jvyatikpx.exe une fois fait clique sur send et post le rapport .
A+
Plouf Plouf
Tu peux remettre une analyse hijacthis+ bidfender et me préciser où en sont tes soucis , stp !?
2) déinstaller messengerskinner si tu ne l as pas encore fait .
3)Rend toi http://www.virustotal.com/en/indexf.html clique / parcourir vas chercher jvyatikpx.exe une fois fait clique sur send et post le rapport .
A+
Plouf Plouf
salut plouf plouf,
j'ai laissé allumé mon PC depuis ce matin et internet explorer ne s'est pas manifesté, donc le probleme doit etre réglé.
En revanche j'ai toujours quelques popup qui ouvrent une nouvelle page de firefox (sur la mienne :( ce qui devient agacant a la longue....
BitDefender n'a rien trouvé
Voici le log hijackthis::
Logfile of HijackThis v1.99.1
Scan saved at 19:13:22, on 17/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\ZONELABS\vsmon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Browser MOUSE\mouse32a.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\MultiMedia Keyboard\MultiMedia Keyboard\1.1\KbdAp32A.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Browser MOUSE\mouse32a.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [LWBKEYBOARD] C:\Program Files\MultiMedia Keyboard\MultiMedia Keyboard\1.1\KbdAp32A.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\RunServices: [SchedulingAgent] C:\WINDOWS\system32\mstask.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {3AF4DACE-36ED-42EF-9DFC-ADC34DA30CFF} (PatchInstaller.Installer) - file://E:\content\include\XPPatchInstaller.CAB
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8B1BC605-C593-4865-8F5B-05517F0CD0BB} (MSSecurityAdvisorCD Class) - file://E:\Content\include\msSecUcd.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
-------------------------------
et le mistérieux processus jvyatikpx.exe qui a voulu se connecter a internet (il est stocké dans le dossier backup de navilog)::
-------------------------------
Complete scanning result of "jvyatikpx.exe", received in VirusTotal at 04.17.2007, 19:25:35 (CET).
Antivirus Version Update Result
AhnLab-V3 2007.4.18.0 04.17.2007 no virus found
AntiVir 7.3.1.53 04.17.2007 HEUR/Malware
Authentium 4.93.8 04.16.2007 no virus found
Avast 4.7.981.0 04.17.2007 no virus found
AVG 7.5.0.447 04.17.2007 no virus found
BitDefender 7.2 04.17.2007 no virus found
CAT-QuickHeal 9.00 04.17.2007 (Suspicious) - DNAScan
ClamAV devel-20070312 04.17.2007 no virus found
DrWeb 4.33 04.17.2007 no virus found
eSafe 7.0.15.0 04.17.2007 Suspicious Trojan/Worm
eTrust-Vet 30.7.3574 04.17.2007 no virus found
Ewido 4.0 04.17.2007 no virus found
FileAdvisor 1 04.17.2007 no virus found
Fortinet 2.85.0.0 04.17.2007 no virus found
F-Prot 4.3.2.48 04.17.2007 no virus found
F-Secure 6.70.13030.0 04.17.2007 no virus found
Ikarus T3.1.1.5 04.17.2007 not-a-virus:AdWare.Win32.NaviPromo
Kaspersky 4.0.2.24 04.17.2007 no virus found
McAfee 5010 04.16.2007 no virus found
Microsoft 1.2405 04.17.2007 no virus found
NOD32v2 2198 04.17.2007 no virus found
Norman 5.80.02 04.17.2007 no virus found
Panda 9.0.0.4 04.17.2007 Adware/NaviPromo
Prevx1 V2 04.17.2007 no virus found
Sophos 4.16.0 04.16.2007 no virus found
Sunbelt 2.2.907.0 04.14.2007 VIPRE.Suspicious
Symantec 10 04.17.2007 Trojan.Skintrim
TheHacker 6.1.6.095 04.15.2007 no virus found
VBA32 3.11.3 04.17.2007 no virus found
VirusBuster 4.3.7:9 04.17.2007 no virus found
Webwasher-Gateway 6.0.1 04.17.2007 Heuristic.Malware
Aditional Information
File size: 325632 bytes
MD5: c2179dc816e078ee8982bd1d9dadd6b3
SHA1: 7063b5a9ce506f2b5766534c6ea9726e2f1a42df
packers: PECOMPACT
packers: PecBundle, PECompact
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
merci a+
-mat37-
j'ai laissé allumé mon PC depuis ce matin et internet explorer ne s'est pas manifesté, donc le probleme doit etre réglé.
En revanche j'ai toujours quelques popup qui ouvrent une nouvelle page de firefox (sur la mienne :( ce qui devient agacant a la longue....
BitDefender n'a rien trouvé
Voici le log hijackthis::
Logfile of HijackThis v1.99.1
Scan saved at 19:13:22, on 17/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\ZONELABS\vsmon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Browser MOUSE\mouse32a.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\MultiMedia Keyboard\MultiMedia Keyboard\1.1\KbdAp32A.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Browser MOUSE\mouse32a.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [LWBKEYBOARD] C:\Program Files\MultiMedia Keyboard\MultiMedia Keyboard\1.1\KbdAp32A.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\RunServices: [SchedulingAgent] C:\WINDOWS\system32\mstask.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {3AF4DACE-36ED-42EF-9DFC-ADC34DA30CFF} (PatchInstaller.Installer) - file://E:\content\include\XPPatchInstaller.CAB
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8B1BC605-C593-4865-8F5B-05517F0CD0BB} (MSSecurityAdvisorCD Class) - file://E:\Content\include\msSecUcd.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
-------------------------------
et le mistérieux processus jvyatikpx.exe qui a voulu se connecter a internet (il est stocké dans le dossier backup de navilog)::
-------------------------------
Complete scanning result of "jvyatikpx.exe", received in VirusTotal at 04.17.2007, 19:25:35 (CET).
Antivirus Version Update Result
AhnLab-V3 2007.4.18.0 04.17.2007 no virus found
AntiVir 7.3.1.53 04.17.2007 HEUR/Malware
Authentium 4.93.8 04.16.2007 no virus found
Avast 4.7.981.0 04.17.2007 no virus found
AVG 7.5.0.447 04.17.2007 no virus found
BitDefender 7.2 04.17.2007 no virus found
CAT-QuickHeal 9.00 04.17.2007 (Suspicious) - DNAScan
ClamAV devel-20070312 04.17.2007 no virus found
DrWeb 4.33 04.17.2007 no virus found
eSafe 7.0.15.0 04.17.2007 Suspicious Trojan/Worm
eTrust-Vet 30.7.3574 04.17.2007 no virus found
Ewido 4.0 04.17.2007 no virus found
FileAdvisor 1 04.17.2007 no virus found
Fortinet 2.85.0.0 04.17.2007 no virus found
F-Prot 4.3.2.48 04.17.2007 no virus found
F-Secure 6.70.13030.0 04.17.2007 no virus found
Ikarus T3.1.1.5 04.17.2007 not-a-virus:AdWare.Win32.NaviPromo
Kaspersky 4.0.2.24 04.17.2007 no virus found
McAfee 5010 04.16.2007 no virus found
Microsoft 1.2405 04.17.2007 no virus found
NOD32v2 2198 04.17.2007 no virus found
Norman 5.80.02 04.17.2007 no virus found
Panda 9.0.0.4 04.17.2007 Adware/NaviPromo
Prevx1 V2 04.17.2007 no virus found
Sophos 4.16.0 04.16.2007 no virus found
Sunbelt 2.2.907.0 04.14.2007 VIPRE.Suspicious
Symantec 10 04.17.2007 Trojan.Skintrim
TheHacker 6.1.6.095 04.15.2007 no virus found
VBA32 3.11.3 04.17.2007 no virus found
VirusBuster 4.3.7:9 04.17.2007 no virus found
Webwasher-Gateway 6.0.1 04.17.2007 Heuristic.Malware
Aditional Information
File size: 325632 bytes
MD5: c2179dc816e078ee8982bd1d9dadd6b3
SHA1: 7063b5a9ce506f2b5766534c6ea9726e2f1a42df
packers: PECOMPACT
packers: PecBundle, PECompact
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
merci a+
-mat37-
Bonjour,
et le mistérieux processus jvyatikpx.exe
Tu peux supprimer ce processus .
(il est stocké dans le dossier backup de navilog)::
oui normal , navilog a bien fait sont travail
Pour firefox , je te conseil , d'installer cette extension https://www.hugedomains.com/domain_profile.cfm?d=geckozone&e=org
a+
Plouf Plouf
et le mistérieux processus jvyatikpx.exe
Tu peux supprimer ce processus .
(il est stocké dans le dossier backup de navilog)::
oui normal , navilog a bien fait sont travail
Pour firefox , je te conseil , d'installer cette extension https://www.hugedomains.com/domain_profile.cfm?d=geckozone&e=org
a+
Plouf Plouf