Bonjour, J'ai même p que kabuki59 (alerte sécurité windows qui fait que apparaitre) J'ai téléchargé Navilog. Voici le rapport Search Navipromo version 3.3.2 commencé le 27/10/2007 à 9:22:48,98 !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!! !!! Postez ce rapport sur le forum pour le faire analyser !!! !!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!! Outil exécuté depuis C:\Program Files\navilog1 Mise à jour le 22.10.2007 à 19h00 par IL-MAFIOSO Microsoft Windows XP [version 5.1.2600] Internet Explorer : 7.0.5730.11 *** Recherche Programmes installés *** *** Recherche dossiers dans C:\WINDOWS *** *** Recherche dossiers dans C:\Program Files *** *** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data *** *** Recherche dossiers dans C:\Documents and Settings\HP_Propri‚taire\Application Data *** *** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\MENUDÉ~1\PROGRA~1 *** *** Recherche avec Catchme-rootkit/stealth malware detector par gmer *** pour + d'infos : http://www.gmer.net Fichier(s) caché(s) : C:\WINDOWS\system32\qllkizoxh.dat C:\WINDOWS\system32\qllkizoxh.exe C:\WINDOWS\system32\qllkizoxh_nav.dat C:\WINDOWS\system32\qllkizoxh_navps.dat Processus caché(s) : C:\WINDOWS\system32\qllkizoxh.exe *** Recherche avec GenericNaviSearch *** !!! Tous ces résultats peuvent révéler des fichiers légitimes !!! !!! A vérifier impérativement avant toute suppression manuelle !!! * Recherche dans C:\WINDOWS\system32 * Fichiers suspects : * Recherche dans C:\DOCUME~1\HP_PRO~1\LOCALS~1\APPLIC~1 * *** Recherche fichiers *** *** Recherche clés spécifiques dans le Registre *** HKEY_CURRENT_USER\Software\Lanconfig trouvé ! *** Module de Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Recherche fichiers connus: 2)Recherche Heuristique : C:\WINDOWS\system32\cqkaxdverh.dat trouvé ! C:\WINDOWS\system32\qllkizoxh.dat trouvé ! C:\WINDOWS\system32\cqkaxdverh_nav.dat trouvé ! C:\WINDOWS\system32\qllkizoxh_nav.dat trouvé ! 3)Recherche Certificats : Certificat Egroup trouvé ! *** Analyse terminée le 27/10/2007 à 9:25:18,06 *** Puis j'ai téléchargé maleka. mais là impossible d'envoyer le fichier . Que faut-il faire ????

Alete securie windows,

Réponse 1 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
27 oct. 2007 à 10:33

Bonjour,

Double clique sur le raccourci Navilog1 présent sur le bureau et laisse-toi guider.
Au menu principal, choisis 2 et valide.

Le fix va t'informer qu'il va alors redémarrer ton PC
Ferme toutes les fenêtres ouvertes et enregistre tes documents personnels ouverts
Appuie sur une touche comme demandé.
(si ton Pc ne redémarre pas automatiquement, fais le toi même)
Au redémarrage de ton PC, choisis ta session habituelle.

Patiente jusqu'au message :
*** Nettoyage Termine le ..... ***
Le blocnote va s'ouvrir.
Sauvegarde le rapport de manière à le retrouver
Referme le blocnote. Ton bureau va réapparaitre

PS:Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "exécuter"
Tape explorer et valide. Celà te fera apparaitre ton bureau.

Clique sur ce lien
http://www.trendsecure.com/portal/en-US/threat_analytics/HJTInstall.exe
pour télécharger le fichier d'installation d'HijackThis.

Enregistre HJTInstall.exe sur ton bureau.

Double-clique sur HJTInstall.exe pour lancer le programme

Par défaut, il s'installera là :
C:\Program Files\Trend Micro\HijackThis

Accepte la license en cliquant sur le bouton "I Accept"

Choisis l'option "Do a system scan and save a log file"

Clique sur "Save log" pour enregistrer le rapport qui s'ouvrira avec le bloc-note

Clique sur "Edition -> Sélectionner tout", puis sur "Edition -> Copier" pour copier tout le contenu du rapport

Colle le rapport que tu viens de copier sur ce forum

Ne fixe encore AUCUNE ligne, cela pourrait empêcher ton PC de fonctionner correctement

Tutoriaux : http://pageperso.aol.fr/balltrap34/demohijack.htm (ne fixe rien pour le moment !!)
http://cybersecurite.xooit.com/t138-HijackThis-2-0-2.htm

les lands
27 oct. 2007 à 13:22

voilà le rapport de hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:21:01, on 27/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\FTRTSVC.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - C:\Program Files\GamesBar\oberontb.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll
O9 - Extra 'Tools' menuitem: GamesBar - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {084DAC27-6FA3-4F55-9005-033F2F102F5C} (ITPPDiagIE Class) - http://data.jeuxclassiques.com/npwwg.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {1D6E056F-D1BB-40F6-88E4-11EE98056FD2} (Oberon ActiveX Game Host) - http://jeuxmultijoueurs.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {5308E02B-4ABA-48E4-AA9E-8A7693661473} (GameCtl Class) - http://jeuxenligne.orange.fr/GisActiveX/Ax/GameAx.cab
O16 - DPF: {5392B545-31A5-4724-BEF3-4FED1D56FDAC} (CPlayFirstDinerDash2_frControl Object) - file:///C:/Documents%20and%20Settings/HP_Propriétaire/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/DinerDash2_fr.1.0.0.70.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://wanadoofr.oberon-media.com/online2/luxor_amun_rising/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {C9E17F58-564C-41C6-989F-AB0FE0D2C9D1} (PopcapLoader Object) - http://jeuxentelechargement.orange.fr/orange2.0/OnlineHSS/zuma/Popcap.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://wanadoofr.oberon-media.com/online2/diner_dash/DinerDash.1.0.0.58.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - file:///C:/Documents%20and%20Settings/HP_Propriétaire/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/popcaploader_v6.cab
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

Réponse 2 / 19

les lands
27 oct. 2007 à 12:49

voilà le rapport de hijackthis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:46:44, on 27/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\FTRTSVC.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Windows Live Toolbar\msn_sl.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - C:\Program Files\GamesBar\oberontb.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll
O9 - Extra 'Tools' menuitem: GamesBar - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {084DAC27-6FA3-4F55-9005-033F2F102F5C} (ITPPDiagIE Class) - http://data.jeuxclassiques.com/npwwg.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {1D6E056F-D1BB-40F6-88E4-11EE98056FD2} (Oberon ActiveX Game Host) - http://jeuxmultijoueurs.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {5308E02B-4ABA-48E4-AA9E-8A7693661473} (GameCtl Class) - http://jeuxenligne.orange.fr/GisActiveX/Ax/GameAx.cab
O16 - DPF: {5392B545-31A5-4724-BEF3-4FED1D56FDAC} (CPlayFirstDinerDash2_frControl Object) - file:///C:/Documents%20and%20Settings/HP_Propriétaire/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/DinerDash2_fr.1.0.0.70.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://wanadoofr.oberon-media.com/online2/luxor_amun_rising/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {C9E17F58-564C-41C6-989F-AB0FE0D2C9D1} (PopcapLoader Object) - http://jeuxentelechargement.orange.fr/orange2.0/OnlineHSS/zuma/Popcap.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://wanadoofr.oberon-media.com/online2/diner_dash/DinerDash.1.0.0.58.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - file:///C:/Documents%20and%20Settings/HP_Propriétaire/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/popcaploader_v6.cab
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

Réponse 3 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
27 oct. 2007 à 15:03

Re,

poste le rapport de navilog.

les lands
27 oct. 2007 à 15:52

voila le rapport
27/10/2007 a 9:27:36,06

*** Recherche des fichiers dans C:

*** Recherche des fichiers dans C:\WINDOWS\
C:\WINDOWS\ALCXMNTR.EXE FOUND

*** Recherche des fichiers dans C:\WINDOWS\system32
"C:\WINDOWS\downloaded program files\Popcap.dll" FOUND
"C:\WINDOWS\Downloaded Program Files\popcaploader.dll" FOUND

*** Recherche des fichiers dans C:\Program Files
"C:\Program Files\GamesBar\" FOUND

*** Suppression des clefs du registre effectuee..

Réponse 4 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
27 oct. 2007 à 18:10

Re,

OK, tu l'avais déjà fait passer.

Remets un log Hijackthis.

Comment se porte l'ordi ?

les lands
27 oct. 2007 à 18:15

voilà ce que me dit hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:12:36, on 27/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\FTRTSVC.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\NOTEPAD.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\QuickTime\QTTask.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - C:\Program Files\GamesBar\oberontb.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - C:\Program Files\GamesBar\oberontb.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll
O9 - Extra 'Tools' menuitem: GamesBar - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {084DAC27-6FA3-4F55-9005-033F2F102F5C} (ITPPDiagIE Class) - http://data.jeuxclassiques.com/npwwg.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {1D6E056F-D1BB-40F6-88E4-11EE98056FD2} (Oberon ActiveX Game Host) - http://jeuxmultijoueurs.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {5308E02B-4ABA-48E4-AA9E-8A7693661473} (GameCtl Class) - http://jeuxenligne.orange.fr/GisActiveX/Ax/GameAx.cab
O16 - DPF: {5392B545-31A5-4724-BEF3-4FED1D56FDAC} (CPlayFirstDinerDash2_frControl Object) - file:///C:/Documents%20and%20Settings/HP_Propriétaire/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/DinerDash2_fr.1.0.0.70.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://wanadoofr.oberon-media.com/online2/luxor_amun_rising/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {C9E17F58-564C-41C6-989F-AB0FE0D2C9D1} (PopcapLoader Object) - http://jeuxentelechargement.orange.fr/orange2.0/OnlineHSS/zuma/Popcap.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://wanadoofr.oberon-media.com/online2/diner_dash/DinerDash.1.0.0.58.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - file:///C:/Documents%20and%20Settings/HP_Propriétaire/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/popcaploader_v6.cab
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

Réponse 5 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
27 oct. 2007 à 20:21

Re,

Télécharge Brute Force Uninstaller (de Merijn) ici: http://www.merijn.org/files/bfu.zip
Créé un nouveau dossier directement à la racine de ton disque dur ou l'endroit qui te convient, nomme ce dossier BFU. Décompresse le fichier téléchargé dans ce nouveau dossier (par exemple C:\BFU)
Ensuite, télécharge Toolbar.bfu (de Chercheur) :
fais un clic droit sur ce lien
http://perso.orange.fr/Chercheur-perso/scripts/toolbar.bfu
et choisis "Enregistrer la cible sous..." afin de télécharger Toolbar.bfu (de Chercheur).
Sauvegarde dans le dossier créé (C:\BFU).
**Note : si tu utilises Internet Explorer ; lors de la sauvegarde, assure-toi que le champs "Type :" affiche "Tous les fichiers".

Tu dois maintenant avoir deux fichiers dans le dossier C:\BFU : toolbar.bfu et BFU.exe (très important).

-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-

Tu as une démo animée ici (merci balltrap34):
http://perso.orange.fr/rginformatique/section%20virus/bfu%20demo.htm
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
Lance "Brute Force Uninstaller" en double-cliquant BFU.exe (Dans le dossier C:\BFU)
- Clique sur le petit dossier jaune, et clique sur : Toolbar.bfu
- Coches la case Show log after scrïpt ends
- Clique sur Execute pour que le fix fasse son boulot :-) Attends que le message Complete scrïpt execution apparaîsse et clique sur OK.
Un rapport va s'afficher dans la fenetre du programme, copie et colle dans le bloc-notes, puis sauvegardes le, tu le posteras plus tard sur le forum.
Clique Exit pour fermer le programme BFU

remets un log Hijackthis

les lands
27 oct. 2007 à 21:41

ca y est g fait toolbar je te mets le rapport

BFU v1.00.9
Windows XP SP2 (WinNT 5.01.2600 SP2)
Script started at 21:37:55, on 27/10/2007

Option Unload Explorer: Yes
Failed: DllUnregister C:\Program Files\Mozilla Firefox\plugins\NPND2FN.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\Mozilla Firefox\plugins\NPMyWebS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\Internet Explorer\msimg32.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\Need2Find\bar\1.bin\NPND2FN.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\Need2Find\bar\2.bin\NPND2FN.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\Need2Find\bar\3.bin\NPND2FN.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\Need2Find\bar\1.bin\ND2FNBAR.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\Need2Find\bar\2.bin\ND2FNBAR.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\Need2Find\bar\3.bin\ND2FNBAR.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\Need2Find\bar\4.bin\ND2FNBAR.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\Need2Find\bar\5.bin\ND2FNBAR.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\Need2Find\bar\6.bin\ND2FNBAR.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\Need2Find\bar\7.bin\ND2FNBAR.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\INSTAFINK\instafink.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\RXToolBar\RXToolBar.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\RXToolBar\sfcont.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\1.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\2.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\3.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\4.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\5.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\6.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\7.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\8.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\9.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\a.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\b.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\c.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\d.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\e.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\f.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\i.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\bar\l.bin\*.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\SrchAstt\3.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\SrchAstt\4.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\SrchAstt\5.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\SrchAstt\6.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\SrchAstt\7.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\SrchAstt\8.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\SrchAstt\9.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\SrchAstt\a.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\SrchAstt\b.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\SrchAstt\c.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\SrchAstt\d.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearch\SrchAstt\e.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearchWB\bar\1.bin\NPMYSRWB.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\MyWebSearchWB\bar\2.bin\NPMYSRWB.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\Uninstall My Web Search.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\MyTotalSearch\SrchAstt\1.bin\MTSSRCAS.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\MyTotalSearch\SrchAstt\2.bin\MTSSRCAS.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\MyTotalSearch\SrchAstt\3.bin\MTSSRCAS.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\MyTotalSearch\SrchAstt\4.bin\MTSSRCAS.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\MyTotalSearch\SrchAstt\5.bin\MTSSRCAS.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\MyTotalSearch\bar\1.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\MyTotalSearch\bar\5.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\mybar\mybar.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\installr\1.bin\myezsetp.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\mybar\1.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\mybar\2.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\mybar\3.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\mybar\4.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\mybar\5.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\mybar\6.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\mybar\7.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\mybar\8.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\mybar\9.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\mybar\a.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\mybar\b.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\mybar\c.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\mybar\d.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\srchastt\1.bin\mysrchas.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\srchastt\2.bin\mysrchas.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\srchastt\3.bin\mysrchas.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\mywaysa\srchasde\1.bin\desrcas.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\mywaysa\srchasde\desrcas.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\SearchAt\1.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\SearchAt\2.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\SearchAt\3.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\SearchAt\4.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\SearchAt\5.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\SearchAt\6.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\SearchAt\7.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\SearchAt\8.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\SearchAt\9.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\SearchAt\10.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\myway\SearchAt\11.bin\MWSSRCAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\myglobalsearch\bar\1.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myglobalsearch\bar\2.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myglobalsearch\bar\3.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\myglobalsearch\bar\4.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\AskTBar\bar\2.bin\ASKTBAR.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\AskTBar\bar\3.bin\ASKTBAR.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\AskTBar\bar\4.bin\ASKTBAR.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\AskTBar\SrchAstt\3.bin\A5SRCHAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\AskTBar\SrchAstt\4.bin\A5SRCHAS.DLL|1 (file not found)
Failed: DllUnregister C:\Program Files\mysearch\bar\1.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\mysearch\bar\2.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\mysearch\bar\3.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\mysearch\bar\4.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\mysearch\bar\5.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\mysearch\bar\i.bin\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\mysearch\installr\1.bin\s4ezsetp.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\mysearch\srchastt\1.bin\mysrchas.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\mysearch\srchastt\2.bin\mysrchas.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\mysearch\srchastt\3.bin\mysrchas.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\mysearch\srchastt\4.bin\mysrchas.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\mysearch\srchastt\5.bin\mysrchas.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.6.1.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.6.2.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.6.4.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.6.4.1\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.7.0.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.7.1.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.7.2.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.7.2.1\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.7.3.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.7.5.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.7.7.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.8.0.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.8.2.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.8.4.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.8.7.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\bin\4.7.3.0\rb2f.tmp\hbt*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\Bin.7.5.0\HbtWallpaper.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hbtools\hbtv\hbtvhelper.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.1.7.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.1.8.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.2.6.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.2.8.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.2.11.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.2.13.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.3.1.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.3.5.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.3.6.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.3.9.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.4.0.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.4.2.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.4.5.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.4.8.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.4.9.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.5.0.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.5.1.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.5.3.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.6.1.0\*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.1.7.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.1.8.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.2.6.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.2.8.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.2.11.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.2.13.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.3.1.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.3.5.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.3.6.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.3.9.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.4.0.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.4.2.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.4.5.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.4.8.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.4.9.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.5.0.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.5.1.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.5.3.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\hotbar\bin\4.6.1.0\rb24e.tmp\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\ShopperReports\Bin\0.4.0\ShprRprt.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\ShopperReports\Bin\1.0.0\ShprRprt.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\ShopperReports\Bin\1.0.4.0\ShprRprt.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\ShopperReports\Bin\1.0.5.0\ShprRprt.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\ShopperReports\Bin\1.0.8.0\ShprRprt.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\ShopperReports\Bin\1.0.10.0\ShprRprt.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\ShopperReports\Bin\1.1.0.0\ShprRprt.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\ShopperReports\Bin\1.1.1.0\ShprRprt.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\ShopperReports\Bin\1.3.0.0\ShprRprt.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\ShopperReports\Bin\2.0.0\ShprRprt.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\ShopperReports\Bin\2.0.20\ShprRprt.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\ShoppingReportBin\2.0.21\ShoppingReport.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\SmartShopper\Bin\1.0.9.0\SmrtShpr.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\smartshopper\bin\2.0.1\smrtshpr.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\shoppingreport\shoppingreport.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\SmartShopper\js.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\smartshopper\shoppingreport.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\SmartShopper\SmartShopper0.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\starware\bin\starware.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\starware305\bin\starware305.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\starware316\bin\starware316.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\Starware343\bin\Starware343.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\Starware343\bin\Starware347.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\Starware354\bin\Starware354.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\Starware370\bin\Starware370.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\Starware343\bin\Starware390.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\minijuegos\bin\minijuegos.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\starware\bin\dlls\jokester.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\temp\asearchassist.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\accoona\adesktopsearch.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\accoona\asearchassist.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\accoona\atl71.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\accoona\atoolbar.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\accoona\AToolbarCN.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\accoona\atts.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\accoona\mapidll.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\accoona\viewers\AThes.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\vstoolbar\vstoolbar.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\vsadd-in\vsadd-in.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\8848\mysearch\0.9.4.2\pagerevisor.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\8848\mysearch\0.9.5.0\pagerevisor.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\8848\mysearch\0.9.7.6\pagerevisor.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\8848\mysearch\0.9.8.4\pagerevisor.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\8848\mysearch\pagerevisor.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\downloaded program files\hbinstie.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\Downloaded Program Files\instafin.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\Downloaded Program Files\mwsearch.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\Downloaded Program Files\pagerevisor.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\azentretien.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\cpu.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\iasada.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\zsettings.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\azentretien.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\hbhostie.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\iacad.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\iasad.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\iasada.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\lmhhmbhe.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\nn_bar*.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\winats*.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\windmy.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\winnb*.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\xcite.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\zolk.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\zolker*.dll|1 (file not found)
Failed: DllUnregister C:\WINDOWS\system32\ztoolb*.dll|1 (file not found)
Failed: DllUnregister C:\Program Files\Uninstall Fun Web Products.dll|1 (file not found)
Failed: DllUnregister C:\Documents and Settings\HP_Propriétaire\Bureau\a7find.dll|1 (file not found)
Failed: DllUnregister C:\Documents and Settings\HP_Propriétaire\Bureau\wmeayl32.dll|1 (file not found)
Failed: DllUnregister C:\msearch.dll|1 (file not found)
Failed: FileDelete %USERPROFILE%\Cookies\*@overture[2].txt (operation failed)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\hbtools (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\hotbar (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\searchtoolbarcorp (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\ShopperReports (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\ShopperReportss (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\SpamBlocker (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\SpamBlockerUtility (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\starware (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\starware305 (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\starware316 (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\starware343 (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\starware347 (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\starware354 (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\starware370 (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\starware390 (folder not found)
Failed: FolderDelete C:\Documents and Settings\HP_Propriétaire\Application Data\HbTools_Icons (folder not found)
Failed: FolderDelete C:\Documents and Settings\All Users\Application Data\HbTools_Icons (folder not found)
Failed: FolderDelete C:\Documents and Settings\All Users\Application Data\hbtools (folder not found)
Failed: FolderDelete C:\Documents and Settings\All Users\Application Data\ShopperReports (folder not found)
Failed: FolderDelete C:\Documents and Settings\All Users\Application Data\starware (folder not found)
Failed: FolderDelete C:\Documents and Settings\All Users\Application Data\starware305 (folder not found)
Failed: FolderDelete C:\Documents and Settings\All Users\Application Data\starware316 (folder not found)
Failed: FolderDelete C:\Documents and Settings\All Users\Application Data\starware343 (folder not found)
Failed: FolderDelete C:\Documents and Settings\All Users\Application Data\starware347 (folder not found)
Failed: FolderDelete C:\Documents and Settings\All Users\Application Data\starware354 (folder not found)
Failed: FolderDelete C:\Documents and Settings\All Users\Application Data\starware370 (folder not found)
Failed: FolderDelete C:\Documents and Settings\All Users\Application Data\starware390 (folder not found)
Failed: FolderDelete C:\WINDOWS\system32\shoppingreport (folder not found)
Failed: FolderDelete C:\WINDOWS\system32\SmartShopper (folder not found)
Failed: FolderDelete C:\Program Files\accoona (folder not found)
Failed: FolderDelete C:\Program Files\AskTBar (folder not found)
Failed: FolderDelete C:\Program Files\FunWebProducts (folder not found)
Failed: FolderDelete C:\Program Files\GamesBar (operation failed)
Failed: FolderDelete C:\Program Files\hbinst (folder not found)
Failed: FolderDelete C:\Program Files\hbtools (folder not found)
Failed: FolderDelete C:\Program Files\HbTools_Icons (folder not found)
Failed: FolderDelete C:\Program Files\hotbar (folder not found)
Failed: FolderDelete C:\Program Files\INSTAFIN (folder not found)
Failed: FolderDelete C:\Program Files\INSTAFINK (folder not found)
Failed: FolderDelete C:\Program Files\minijuegos (folder not found)
Failed: FolderDelete C:\Program Files\myglobalsearch (folder not found)
Failed: FolderDelete C:\Program Files\mysearch (folder not found)
Failed: FolderDelete C:\Program Files\MyTotalSearch (folder not found)
Failed: FolderDelete C:\Program Files\myway (folder not found)
Failed: FolderDelete C:\Program Files\mywaysa (folder not found)
Failed: FolderDelete C:\Program Files\MyWebSearch (folder not found)
Failed: FolderDelete C:\Program Files\MyWebSearchWB (folder not found)
Failed: FolderDelete C:\Program Files\Need2Find (folder not found)
Failed: FolderDelete C:\Program Files\rxtoolbar (folder not found)
Failed: FolderDelete C:\Program Files\ShopperReports (folder not found)
Failed: FolderDelete C:\Program Files\ShoppingReport (folder not found)
Failed: FolderDelete C:\Program Files\SmartShopper (folder not found)
Failed: FolderDelete C:\Program Files\SpamBlockerUtility (folder not found)
Failed: FolderDelete C:\Program Files\SpamBlockerUtility_Icons (folder not found)
Failed: FolderDelete C:\Program Files\starware (folder not found)
Failed: FolderDelete C:\Program Files\starware305 (folder not found)
Failed: FolderDelete C:\Program Files\starware316 (folder not found)
Failed: FolderDelete C:\Program Files\starware343 (folder not found)
Failed: FolderDelete C:\Program Files\starware347 (folder not found)
Failed: FolderDelete C:\Program Files\starware354 (folder not found)
Failed: FolderDelete C:\Program Files\starware370 (folder not found)
Failed: FolderDelete C:\Program Files\starware390 (folder not found)
Failed: FolderDelete C:\Program Files\vsadd-in (folder not found)
Failed: FolderDelete C:\Program Files\vstoolbar (folder not found)
Failed: FolderDelete C:\Program Files\YOUCOULDWINTHIS (folder not found)
Failed: FolderDelete C:\Program Files\8848 (folder not found)
Failed: FileDelete C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\~DF3985.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\~DF481F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\~DF5022.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\~DF5055.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\~DF5DD.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\~DF6B6.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\~DF8CF7.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\~DFC4E2.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\~DFEF9F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\~DFF221.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\~DFF29E.tmp (operation failed)
Failed: FileDelete C:\WINDOWS\Temp\Perflib_Perfdata_108.dat (operation failed)
Failed: FolderDelete C:\WINDOWS\Temp\_avast4_ (operation failed)
Script completed.

Réponse 6 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
27 oct. 2007 à 22:18

Re,

remets un rapport Hijackthis

les lands
27 oct. 2007 à 22:25

voilà

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:24:12, on 27/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\FTRTSVC.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\HP_Propriétaire\Bureau\bfu\BFU.exe
C:\Documents and Settings\HP_Propriétaire\Bureau\bfu\BFU.exe
C:\Documents and Settings\HP_Propriétaire\Bureau\bfu\BFU.exe
C:\Documents and Settings\HP_Propriétaire\Bureau\bfu\BFU.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {084DAC27-6FA3-4F55-9005-033F2F102F5C} (ITPPDiagIE Class) - http://data.jeuxclassiques.com/npwwg.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {1D6E056F-D1BB-40F6-88E4-11EE98056FD2} (Oberon ActiveX Game Host) - http://jeuxmultijoueurs.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {5308E02B-4ABA-48E4-AA9E-8A7693661473} (GameCtl Class) - http://jeuxenligne.orange.fr/GisActiveX/Ax/GameAx.cab
O16 - DPF: {5392B545-31A5-4724-BEF3-4FED1D56FDAC} (CPlayFirstDinerDash2_frControl Object) - file:///C:/Documents%20and%20Settings/HP_Propriétaire/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/DinerDash2_fr.1.0.0.70.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://wanadoofr.oberon-media.com/online2/luxor_amun_rising/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {C9E17F58-564C-41C6-989F-AB0FE0D2C9D1} (PopcapLoader Object) - http://jeuxentelechargement.orange.fr/orange2.0/OnlineHSS/zuma/Popcap.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://wanadoofr.oberon-media.com/online2/diner_dash/DinerDash.1.0.0.58.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - file:///C:/Documents%20and%20Settings/HP_Propriétaire/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/popcaploader_v6.cab
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

Réponse 7 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
28 oct. 2007 à 12:51

Bonjour,

pour l'antivirus, je te donne raison, va jusqu'au bout de ton abonnement.

Une semaine avant, changes en. utilise la référence que je t'ai donné paur désinstaller proprement norton.

kaspersky est le meilleur choix en payant. Il doit y avoiir des variantes avec un paerefeu.

par contre, ton parefeu Norton ne semble pas activé. Vérifie ça.

Je te propose aussi de fixer un certain nombre d'active X sur les jeux en ligne.

Si tu en as besoin, on te demandera d'accepter l'active X pour télécharger.

Mais tu ne fais ça que si ce sont des jeux gratuits

Relance HijackThis.

Choisis Do a scan only

Coche la case devant les lignes suivantes

O16 - DPF: {084DAC27-6FA3-4F55-9005-033F2F102F5C} (ITPPDiagIE Class) - http://data.jeuxclassiques.com/npwwg.cab
O16 - DPF: {1D6E056F-D1BB-40F6-88E4-11EE98056FD2} (Oberon ActiveX Game Host) - http://jeuxmultijoueurs.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {5308E02B-4ABA-48E4-AA9E-8A7693661473} (GameCtl Class) - http://jeuxenligne.orange.fr/GisActiveX/Ax/GameAx.cab
O16 - DPF: {C9E17F58-564C-41C6-989F-AB0FE0D2C9D1} (PopcapLoader Object) - http://jeuxentelechargement.orange.fr/orange2.0/OnlineHSS/zuma/Popcap.cab

Ferme toutes les fenêtres (hormis HijackThis), y compris ton navigateur.

Clique sur fix checked.

Ferme Hijackthis.

4) remets un rapport Hijackthis

les lands
28 oct. 2007 à 17:52

Voilà g fait ce que tu as dit et voilà le rapport:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:51:12, on 28/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\FTRTSVC.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://wanadoofr.oberon-media.com/online2/luxor_amun_rising/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

Réponse 8 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
28 oct. 2007 à 18:02

Re,

si tu me confirmes que le parefeu de Norton est en activité, le log Hijackthis est correct.

les lands
28 oct. 2007 à 20:57

pour norton j'ai vérifié et il ne semble rien d'anormal.
après je suis pas experte .....
je ne sais pas si je regarde au bon endroit .....

Réponse 9 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
30 oct. 2007 à 19:20

Bonjour,

ouvre ce lien et suit les instructions.

http://www.commentcamarche.net/faq/sujet 6464 tester son pare feu

Résultat ?

les lands
31 oct. 2007 à 09:38

Salut,

Je te donne une réponse vendredi soir car je suis en déplacement pour la semaine.
A +

Réponse 10 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
31 oct. 2007 à 22:00

Bonsoir,

pas de souci.

les lands
2 nov. 2007 à 17:11

Bonsoir
J'ai fait le test du pare feu tout est OK.
J'ai refait un hijackthis voici le rapport

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:10:47, on 02/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\FTRTSVC.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Seekmo\bin\10.0.370.0\OEAddOn.exe
C:\Program Files\Seekmo\bin\10.0.370.0\SeekmoSA.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
c:\program files\fichiers communs\installshield\updateservice\isuspm.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\agent.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Seekmo\bin\10.0.370.0\Srv.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Seekmo /fleok=1D8A83A5C4ED137D91AC692A1FBB39BFE4976E26CAEDA120180A196D6093 - {07AA283A-43D7-4CBE-A064-32A21112D94D} - C:\Program Files\Seekmo\bin\10.0.370.0\HostIE.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Seekmo - {07AA283A-43D7-4CBE-A064-32A21112D94D} - C:\Program Files\Seekmo\bin\10.0.370.0\HostIE.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SeekmoOE] C:\Program Files\Seekmo\bin\10.0.370.0\OEAddOn.exe
O4 - HKLM\..\Run: [SeekmoSA] "C:\Program Files\Seekmo\bin\10.0.370.0\SeekmoSA.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://wanadoofr.oberon-media.com/online2/luxor_amun_rising/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

Réponse 11 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
2 nov. 2007 à 17:51

Bonjour,

tu t'es réinfectée.

Télécharge BTFix de Bibi26
http://cluster1.easy-hebergement.net/ de Bibi26
Dézippe l'archive sur ton Bureau.
Ouvre le dossier BTFix.
Double clique sur BTFix.exe.
Clique sur Rechercher.
Un rapport va apparaître, copie/colle-le dans ta prochaine réponse.

les lands
2 nov. 2007 à 18:03

Peux-tu m'expliquer comment je me suis réinfectée ??? Merci Norton ne fonctionne pas ???

Voilà le rapport

BTFix 1.057 (par bibi26) - 02/11/2007 18:01:41 - Analyse
Lancé depuis C:\Documents and Settings\HP_Propriétaire\Bureau\BTFix\BTFix.exe

---> Fichiers/Dossiers trouvés

- C:\Program Files\Seekmo
- C:\Documents and Settings\HP_Propriétaire\Application Data\Seekmo
- C:\Documents and Settings\All Users\Application Data\SeekmoSA
- C:\Documents and Settings\All Users\Application Data\2ACA5CC3-0F83-453D-A079-1076FE1A8B65
- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Seekmo

---> Analyse terminée

Réponse 12 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
2 nov. 2007 à 18:15

Re,

non, je ne sais pas.

Télécharge ce programme puis double clic dessus (si ton antivirus proteste, accepte quand même l'outil)
http://www.suspectfile.com/systemscan/

* Coche uniquement ces cases, décoche tout le reste :

- Recent Files, 30 days

Puis clic sur scan now, soit patient.

Redémarre en mode sans échec (avec la touche F8 pendant la procédure de boot du bios(.

Relance BTFixe et clique sur nettoyer.

Redémarre en mode normal, poste le rapport de SuspectFiles, celui de BTFixe et un nouveau rapport Hijackthis.

--

@+
Ca s'écrit 10 + 10 = 100 et ça s'énonce deux plus deux égal quatre.

les lands
2 nov. 2007 à 18:37

impossible de télécharger suspectfile

mais j'ai fait btfixe en mode sans echec et hijackthis voilà le rapport

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:35:18, on 02/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\FTRTSVC.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://wanadoofr.oberon-media.com/online2/luxor_amun_rising/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

Réponse 13 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
2 nov. 2007 à 19:07

Re,

l'outil a été efficace.

Relance HijackThis.

Choisis Do a scan only

Coche la case devant les lignes suivantes

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222

Ferme toutes les fenêtres (hormis HijackThis), y compris ton navigateur.

Clique sur fix checked.

Ferme Hijackthis

Redémarre l'ordi.

Si tu as des problèmes de connections, tu relances hijackthis, tu choisis Open, the misc tool section, Backup, tu clique sur la case devant la ligne ci-dessus et OK. Cela reviendrait à annuler la modification.

Panneau de configuration, parefeu. Quelles informations on te donne : un parefeu est activé ? si oui, lequel ?

Tu dosi avoir un "centre de contrôle" de Norton. Sur un onglet, il doit être question du parefeu. quelles informations trouves tu ?
.--

@+
Ca s'écrit 10 + 10 = 100 et ça s'énonce deux plus deux égal quatre.

les lands
2 nov. 2007 à 20:04

voilà j'ai fait ce que tu as dit
pour le pare-feu dans le panneau de config, c parefeu windows et il est activé
pour Norton, le pare feu entrant est également activé

J'ai refait un hijackthis voilà le rapport

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:02:48, on 02/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\FTRTSVC.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://wanadoofr.oberon-media.com/online2/luxor_amun_rising/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

Réponse 14 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
2 nov. 2007 à 20:35

Re,

désactive le parefeu de Windows, redémarre l'ordi et remets un log Hijackthis.

les lands
2 nov. 2007 à 20:44

parefeu désactivé
hijackthis:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:43:19, on 02/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\FTRTSVC.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://wanadoofr.oberon-media.com/online2/luxor_amun_rising/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxmultijoueurs.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

Réponse 15 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
2 nov. 2007 à 21:08

Re,

réactive le parefeu de Windows et désactive celui de Norton.

remets un log Hijackthis

Tu es abonné jusqu'a quand ?

les lands
2 nov. 2007 à 21:17

J'ai remis le pare feu windows
Je crois avoir désactiver le pare feu norton (abonnement encore 73 jours)
voilà le rapport
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:15:23, on 02/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\FTRTSVC.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\spider.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://wanadoofr.oberon-media.com/online2/luxor_amun_rising/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxmultijoueurs.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

Réponse 16 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
3 nov. 2007 à 22:29

Bonjour,

refais le test du parefeu stp.

(post 20)

les lands
4 nov. 2007 à 13:54

G reait le test du parefeu => tout est OK

puis hijackthis, voilà le rapport

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:52:43, on 04/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\FTRTSVC.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://wanadoofr.oberon-media.com/online2/luxor_amun_rising/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxmultijoueurs.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

les lands
10 nov. 2007 à 19:32

Salut je reviens vers toi car dès que je me connecte à internet, une fenêtre s'ouvre et me dit:
"Your system is probably infected with latest version of trojan.Zlob-x.a Full system optimization will greatly increase your's computer's performance and prevent data loss. Click OK to download antyspyware software (recommended)"
J'ai déconnecté Norton , désactivé mon pare feu et téléchargé Antivir. J'ai fait un scan avec antivir qui a détecté 3 virus (mis en quarantaine) et le message continue à arriver.
Que dois-je faire ??? Je suis perdue!!!!! HELP ME !!!!!!!!

Réponse 17 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
10 nov. 2007 à 23:28

Bonsoir,

télécharge combofix (par sUBs)ici :

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

et enregistre le sur le bureau.

2 double-clique sur combofix.exe et suis les instructions

3 à la fin, il va produire un rapport C:\ComboFix.txt

4 copie/colle ce rapport dans ta prochaine réponse.

Attention, n'utilise pas ta souris ni ton clavier (ni un autre système de pointage) pendant que le programme tourne. Cela pourrait figer l'ordi.

Remets aussi un log Hijackthis.

les lands
11 nov. 2007 à 18:51

voilà j'ai fait le scan avec combo, le rapport:

ComboFix 07-11-08.1 - HP_Propriétaire 2007-11-11 18:33:50.1 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.354 [GMT 1:00]
Running from: C:\Documents and Settings\HP_Propriétaire\Bureau\ComboFix.exe
* Created a new restore point
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\didier\Application Data\Seekmo
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1056107.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1060233.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1067059.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1070526.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1070563.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1120074.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1383356.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1387311.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1389452.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1389869.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1391092.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1392932.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1396993.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1398044.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1401220.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1404867.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1407182.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1412146.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1450378.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1591809.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1681469.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1834710.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\2066842.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\218441.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\2218710.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\2335966.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\2496623.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\2656897.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\289651.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\2904003.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\326443.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3423589.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3502750.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3720910.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3736273.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3751499.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3755917.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3757388.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3786240.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\384822.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3852203.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3852423.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3855009.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3855249.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3859864.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3893192.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3893292.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3893325.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3893390.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3893398.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\430133.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\443933.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\48657.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\496771.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\557735.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\614236.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\627350.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\693171.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\737423.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\761387.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\976228.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\987409.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\991767.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\domains.txt
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000003756
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000021505
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000023900
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000023910
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000024063
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000024148
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000024388
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000024483
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000025073
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000025087
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000025808
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000026048
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000026054
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000026100
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000026149
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000026694
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027037
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027169
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027510
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027927
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027929
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027957
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000028063
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000029227
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000029251
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000032954
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000033079
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000036809
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000037294
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000037300
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000044868
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000047410
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000047858
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000048656
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000048912
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000051643
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000051979
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052008
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052034
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052045
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052118
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052291
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052372
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052451
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052615
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052645
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052678
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052845
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052938
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052995
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000053560
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000053952
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000055538
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000055539
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000055541
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000057548
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000058574
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000058646
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000058882
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000062177
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000063329
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000063490
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000063820
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000063842
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000064073
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000065105
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000065154
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000068928
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000075040
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000079001
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000079032
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000079884
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000080836
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000081733
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000082129
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000082618
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\10110
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1085
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\116977
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\118874
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\12435
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\12457
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\130787
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\133619
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\133685
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\13546
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\13562
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\13613
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\13634
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\13637
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1370
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1410
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1424
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\14435
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\14440
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\14633
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\146954
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15596
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15611
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15622
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15643
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15649
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15737
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15831
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\16173
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\17025
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\17040
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\17502
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\18296
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\18383
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\189120
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\19052
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\193206
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\19475
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\19482
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\19650
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\197947
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\20106
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\2021
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\20517
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\20570
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\20898
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\212398
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\21846
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\22000
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\22254
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\22459
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\22913
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\23111
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\247701
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\247895
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\25372
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\25469
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\25502
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\25803
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\26030
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\26134
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\263384
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\26664
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\27414
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\27505
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\278243
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\28383
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\286256
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\28803
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\28812
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\290893
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\29115
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\2924
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\300
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\302929
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\30604
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\30802
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\31979
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\32171
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\33137
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\3338
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\33695
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\33912
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34150
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34174
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34237
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34513
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34911
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\349403
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\35000
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\35015
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\35047
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\352
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\352526
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\35554
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\35677
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\35900
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\36039
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\36079
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\36735
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\36834
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\37135
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\372500
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\3735
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\374830
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\37591
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\37616
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\376270
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\38194
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\38733
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\39228
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\39897
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\39972
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\402844
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\40999
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\41421
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\42076
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\42208
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\42351
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\427148
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\42871
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\43118
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\43979
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44100
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44228
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44279
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44293
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44306
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44320
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44458
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44878
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44881
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\451453
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\4546
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\454802
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\45709
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\475788
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\47914
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\479957
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\482315
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\49444
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\49587
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\49957
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\50215
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\505911
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5073
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\51374
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\51495
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\516030
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\51666
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5204
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\528757
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\52968
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\52972
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\52974
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\52977
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\52990
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\53310
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\53312
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5358
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5426
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\546899
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5535
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5542
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\55865
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\55907
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\560770
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\56275
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\56314
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\56412
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\572023
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\576702
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\57918
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\582324
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5828
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\58804
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\59287
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\594881
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\59844
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\598804
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\606245
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\61367
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\61779
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\620412
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\624438
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\625333
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\628507
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\63232
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\643487
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64412
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64429
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64467
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64502
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64517
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64725
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64737
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\650283
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\652325
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\6546
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\6556
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\6565
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\657449
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\657934
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\658110
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\65843
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\6612
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\66345
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\66611
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\667721
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\66800
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\66836
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\67567
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\68076
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\68148
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\687295
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\6873
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\68942
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\68949
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\69201
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\69235
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\69325
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\69556
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\70132
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\704963
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\704972
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\704974
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705022
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705036
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\70518
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705194
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705240
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705284
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705293
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705308
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705311
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705316
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705358
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705400
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705438
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\70608
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\70611
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\708540
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\716428
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\72333
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\732689
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\733622
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\73387
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\73391
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\73458
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\73842
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\7409
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\744368
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\744639
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\745356
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\745444
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\745862
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\74798
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\748956
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753017
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753084
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753086
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753087
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753197
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753198
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753199
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753224
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\75436
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\76113
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\77567
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\78600
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\78778
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\78788
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\78839
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\79257
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\79683
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\79972
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\79977
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\79986
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\80026
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\80670
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\81093
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\81293
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\82011
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\82292
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\82646
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\8282
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\83139
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\85365
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\85381
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\85568
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\85588
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\85878
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\86172
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\86379
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\86587
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\86604
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\8732
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\87385
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\87499
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\87594
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\89075
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\89500
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\89623
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\89865
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\90358
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\924
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\93125
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\93910
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\93921
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\94209
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\95610
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\95678
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\9721
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\9836
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\9875
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\99739
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\ustat\35fa.dat
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\btntrans.idx
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\btntrans1.dat
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\buttondir.txt
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\components.cdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\cursors.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_1000.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_2000.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_3000.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_bar.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_bbar1.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_logos.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_other.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_weather.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\default.cdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_511745-514279.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_categorize.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_comparison.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_explorer-Mails.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_explorer-people.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_favorites.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_Games.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_Hide.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_hotbarcom.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_Hotmail.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_hsskin.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_Mails.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_new.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_premium.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_searchfor.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_searchgo.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_weather.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_yellowpages.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\email-def-511724-548964.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\email-def-511724-9595.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\email-t1-bg.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\icons2.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\ie_games_icon.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\ie_video.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\keywords.idx
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\keywords1.dat
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\layout.cdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\linkpathlegal.txt
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\progress.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\s_icons_buttons.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\sales_buttons.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\seekmo.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\seekmo_ie_menu.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\t2_bg.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\theweb.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\top7.cdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Top7_theweb.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\tsd_bg.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\BtnTrans.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\BtnTrans1.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\buttondir.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\cursors.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_1000.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_2000.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_3000.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_bar.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_bbar1.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_logos.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_other.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_weather.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\default.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\email-t1-bg.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\icons2.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\ie_games_icon.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\ie_video.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\keywords.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\keywords1.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\layout.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\linkpathlegal.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\progress.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\s_icons_buttons.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\sales_buttons.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\samplegroups2.txt
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\samplegroups2.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\seekmo.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\seekmo_ie_menu.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\t2_bg.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\top7.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\tsd_bg.xip
C:\Documents and Settings\didier\err.log
C:\Documents and Settings\didier\Local Settings\Application Data\uqkfix.dat
C:\Documents and Settings\didier\Local Settings\Application Data\uqkfix.exe
C:\Documents and Settings\didier\Local Settings\Application Data\uqkfix_nav.dat
C:\Documents and Settings\didier\Local Settings\Application Data\uqkfix_navps.dat
C:\Documents and Settings\didier\Menu Démarrer\Programmes\VirusProtectPro
C:\Documents and Settings\didier\Menu Démarrer\Programmes\VirusProtectPro\VirusProtectPro 3.5 Website.lnk
C:\Documents and Settings\HP_Propriétaire\Bureau\internet.lnk
C:\Documents and Settings\HP_Propriétaire\err.log
C:\Program Files\IE Defender
C:\Program Files\IE Defender\iedefender.db1
C:\Program Files\IE Defender\iedefender.db2
C:\Program Files\IE Defender\iedefender.db3
C:\Program Files\IE Defender\iedefender.db4
C:\Program Files\IE Defender\iedefender.db5
C:\Program Files\IE Defender\iedefender.exe
C:\Program Files\IE Defender\iedefender.exe.bak
C:\Program Files\IE Defender\Uninstall.exe
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\cup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\customer_cup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\heart.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\menu_down.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\menu_up.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\plates.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\ticket.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\tray.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\music\mainmenumusic.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_bring_check_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_deliver_food_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_deliver_order_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_diner.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_dish_dropoff_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_food_ready_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_gain_heart_1.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_get_drinks_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_party_arrive_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_pencil_write_2.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_pickup_food_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_rollover_1.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_seat_people_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\choosedifficulty.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\credits.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\flo_lose.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\flo_win.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\help1.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\help2.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\highscores.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\levelintro.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\levelintro_mask.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\levelover.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\levelover_mask.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\mainmenu.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\popup.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\popup_mask.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\upgradegrid.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\upgradetitle.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\upsell.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\arrowleft_blue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\arrowleft_yellow.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\arrowright_blue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\arrowright_yellow.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\back_blue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\back_yellow.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\backchalk.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\backchalkup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\backtomenu_blue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\backtomenu_yellow.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\cancel.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\cancelup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\career.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\career_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\close.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\closeup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\continue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\continueover.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\credits_blue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\credits_yellow.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\download_blue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\download_yellow.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\easy.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\easy_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\endlessshift.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\endlessshift_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\hard.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\hard_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\help.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\help_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\highscores.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\highscores_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\instructions_blue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\instructions_yellow.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\letsplay.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\letsplayover.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\medium.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\medium_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\moreinfo.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\moreinfoup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\off.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\off_on.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\on.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\on_on.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\pause.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\pauseover.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\quit.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\quitgame.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\quitgameover.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\quitover.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\resumegame.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\resumegameover.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\submit.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\submitup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\tryagain.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\tryagainover.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\upgrade_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\upgrade_up.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewglobal.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewglobalup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewhighscore.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewhighscoreon.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewlocal.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewlocalup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\comics\webcomic.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\config\career.xml
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\config\customer.xml
C:\WINDOWS\Downloaded Program Files\DinerDash.

les lands
11 nov. 2007 à 18:51

voilà j'ai fait le scan avec combo, le rapport:

ComboFix 07-11-08.1 - HP_Propriétaire 2007-11-11 18:33:50.1 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.354 [GMT 1:00]
Running from: C:\Documents and Settings\HP_Propriétaire\Bureau\ComboFix.exe
* Created a new restore point
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\didier\Application Data\Seekmo
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1056107.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1060233.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1067059.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1070526.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1070563.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1120074.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1383356.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1387311.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1389452.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1389869.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1391092.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1392932.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1396993.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1398044.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1401220.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1404867.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1407182.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1412146.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1450378.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1591809.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1681469.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\1834710.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\2066842.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\218441.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\2218710.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\2335966.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\2496623.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\2656897.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\289651.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\2904003.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\326443.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3423589.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3502750.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3720910.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3736273.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3751499.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3755917.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3757388.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3786240.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\384822.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3852203.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3852423.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3855009.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3855249.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3859864.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3893192.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3893292.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3893325.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3893390.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\3893398.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\430133.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\443933.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\48657.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\496771.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\557735.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\614236.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\627350.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\693171.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\737423.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\761387.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\976228.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\987409.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\991767.sdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\domains.txt
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000003756
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000021505
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000023900
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000023910
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000024063
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000024148
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000024388
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000024483
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000025073
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000025087
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000025808
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000026048
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000026054
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000026100
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000026149
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000026694
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027037
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027169
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027510
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027927
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027929
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027957
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000028063
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000029227
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000029251
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000032954
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000033079
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000036809
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000037294
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000037300
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000044868
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000047410
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000047858
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000048656
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000048912
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000051643
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000051979
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052008
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052034
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052045
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052118
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052291
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052372
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052451
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052615
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052645
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052678
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052845
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052938
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052995
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000053560
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000053952
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000055538
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000055539
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000055541
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000057548
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000058574
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000058646
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000058882
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000062177
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000063329
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000063490
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000063820
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000063842
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000064073
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000065105
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000065154
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000068928
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000075040
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000079001
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000079032
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000079884
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000080836
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000081733
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000082129
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000082618
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\10110
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1085
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\116977
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\118874
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\12435
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\12457
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\130787
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\133619
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\133685
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\13546
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\13562
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\13613
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\13634
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\13637
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1370
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1410
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1424
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\14435
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\14440
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\14633
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\146954
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15596
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15611
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15622
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15643
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15649
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15737
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15831
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\16173
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\17025
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\17040
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\17502
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\18296
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\18383
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\189120
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\19052
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\193206
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\19475
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\19482
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\19650
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\197947
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\20106
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\2021
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\20517
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\20570
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\20898
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\212398
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\21846
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\22000
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\22254
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\22459
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\22913
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\23111
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\247701
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\247895
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\25372
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\25469
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\25502
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\25803
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\26030
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\26134
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\263384
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\26664
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\27414
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\27505
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\278243
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\28383
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\286256
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\28803
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\28812
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\290893
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\29115
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\2924
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\300
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\302929
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\30604
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\30802
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\31979
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\32171
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\33137
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\3338
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\33695
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\33912
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34150
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34174
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34237
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34513
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34911
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\349403
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\35000
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\35015
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\35047
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\352
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\352526
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\35554
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\35677
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\35900
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\36039
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\36079
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\36735
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\36834
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\37135
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\372500
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\3735
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\374830
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\37591
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\37616
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\376270
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\38194
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\38733
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\39228
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\39897
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\39972
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\402844
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\40999
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\41421
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\42076
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\42208
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\42351
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\427148
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\42871
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\43118
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\43979
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44100
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44228
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44279
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44293
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44306
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44320
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44458
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44878
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44881
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\451453
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\4546
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\454802
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\45709
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\475788
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\47914
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\479957
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\482315
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\49444
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\49587
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\49957
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\50215
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\505911
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5073
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\51374
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\51495
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\516030
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\51666
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5204
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\528757
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\52968
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\52972
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\52974
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\52977
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\52990
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\53310
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\53312
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5358
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5426
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\546899
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5535
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5542
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\55865
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\55907
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\560770
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\56275
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\56314
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\56412
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\572023
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\576702
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\57918
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\582324
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5828
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\58804
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\59287
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\594881
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\59844
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\598804
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\606245
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\61367
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\61779
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\620412
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\624438
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\625333
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\628507
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\63232
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\643487
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64412
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64429
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64467
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64502
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64517
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64725
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64737
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\650283
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\652325
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\6546
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\6556
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\6565
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\657449
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\657934
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\658110
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\65843
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\6612
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\66345
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\66611
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\667721
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\66800
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\66836
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\67567
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\68076
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\68148
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\687295
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\6873
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\68942
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\68949
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\69201
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\69235
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\69325
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\69556
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\70132
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\704963
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\704972
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\704974
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705022
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705036
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\70518
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705194
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705240
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705284
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705293
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705308
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705311
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705316
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705358
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705400
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705438
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\70608
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\70611
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\708540
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\716428
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\72333
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\732689
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\733622
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\73387
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\73391
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\73458
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\73842
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\7409
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\744368
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\744639
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\745356
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\745444
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\745862
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\74798
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\748956
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753017
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753084
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753086
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753087
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753197
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753198
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753199
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753224
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\75436
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\76113
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\77567
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\78600
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\78778
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\78788
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\78839
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\79257
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\79683
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\79972
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\79977
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\79986
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\80026
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\80670
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\81093
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\81293
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\82011
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\82292
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\82646
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\8282
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\83139
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\85365
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\85381
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\85568
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\85588
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\85878
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\86172
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\86379
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\86587
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\86604
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\8732
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\87385
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\87499
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\87594
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\89075
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\89500
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\89623
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\89865
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\90358
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\924
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\93125
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\93910
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\93921
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\94209
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\95610
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\95678
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\9721
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\9836
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\9875
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\99739
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\dynamic\ustat\35fa.dat
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\btntrans.idx
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\btntrans1.dat
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\buttondir.txt
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\components.cdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\cursors.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_1000.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_2000.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_3000.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_bar.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_bbar1.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_logos.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_other.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_weather.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\default.cdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_511745-514279.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_categorize.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_comparison.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_explorer-Mails.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_explorer-people.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_favorites.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_Games.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_Hide.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_hotbarcom.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_Hotmail.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_hsskin.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_Mails.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_new.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_premium.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_searchfor.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_searchgo.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_weather.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_yellowpages.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\email-def-511724-548964.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\email-def-511724-9595.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\email-t1-bg.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\icons2.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\ie_games_icon.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\ie_video.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\keywords.idx
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\keywords1.dat
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\layout.cdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\linkpathlegal.txt
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\progress.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\s_icons_buttons.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\sales_buttons.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\seekmo.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\seekmo_ie_menu.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\t2_bg.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\theweb.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\top7.cdf
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\Top7_theweb.mnu
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\1\tsd_bg.res
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\BtnTrans.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\BtnTrans1.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\buttondir.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\cursors.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_1000.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_2000.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_3000.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_bar.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_bbar1.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_logos.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_other.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_weather.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\default.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\email-t1-bg.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\icons2.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\ie_games_icon.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\ie_video.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\keywords.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\keywords1.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\layout.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\linkpathlegal.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\progress.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\s_icons_buttons.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\sales_buttons.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\samplegroups2.txt
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\samplegroups2.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\seekmo.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\seekmo_ie_menu.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\t2_bg.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\top7.xip
C:\Documents and Settings\didier\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\tsd_bg.xip
C:\Documents and Settings\didier\err.log
C:\Documents and Settings\didier\Local Settings\Application Data\uqkfix.dat
C:\Documents and Settings\didier\Local Settings\Application Data\uqkfix.exe
C:\Documents and Settings\didier\Local Settings\Application Data\uqkfix_nav.dat
C:\Documents and Settings\didier\Local Settings\Application Data\uqkfix_navps.dat
C:\Documents and Settings\didier\Menu Démarrer\Programmes\VirusProtectPro
C:\Documents and Settings\didier\Menu Démarrer\Programmes\VirusProtectPro\VirusProtectPro 3.5 Website.lnk
C:\Documents and Settings\HP_Propriétaire\Bureau\internet.lnk
C:\Documents and Settings\HP_Propriétaire\err.log
C:\Program Files\IE Defender
C:\Program Files\IE Defender\iedefender.db1
C:\Program Files\IE Defender\iedefender.db2
C:\Program Files\IE Defender\iedefender.db3
C:\Program Files\IE Defender\iedefender.db4
C:\Program Files\IE Defender\iedefender.db5
C:\Program Files\IE Defender\iedefender.exe
C:\Program Files\IE Defender\iedefender.exe.bak
C:\Program Files\IE Defender\Uninstall.exe
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\cup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\customer_cup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\heart.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\menu_down.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\menu_up.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\plates.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\ticket.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\accessories\tray.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\music\mainmenumusic.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_bring_check_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_deliver_food_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_deliver_order_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_diner.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_dish_dropoff_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_food_ready_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_gain_heart_1.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_get_drinks_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_party_arrive_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_pencil_write_2.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_pickup_food_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_rollover_1.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\audio\sfx\sfx_seat_people_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\choosedifficulty.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\credits.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\flo_lose.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\flo_win.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\help1.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\help2.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\highscores.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\levelintro.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\levelintro_mask.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\levelover.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\levelover_mask.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\mainmenu.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\popup.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\popup_mask.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\upgradegrid.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\upgradetitle.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\backgrounds\upsell.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\arrowleft_blue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\arrowleft_yellow.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\arrowright_blue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\arrowright_yellow.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\back_blue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\back_yellow.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\backchalk.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\backchalkup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\backtomenu_blue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\backtomenu_yellow.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\cancel.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\cancelup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\career.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\career_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\close.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\closeup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\continue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\continueover.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\credits_blue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\credits_yellow.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\download_blue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\download_yellow.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\easy.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\easy_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\endlessshift.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\endlessshift_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\hard.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\hard_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\help.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\help_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\highscores.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\highscores_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\instructions_blue.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\instructions_yellow.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\letsplay.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\letsplayover.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\medium.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\medium_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\moreinfo.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\moreinfoup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\off.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\off_on.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\on.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\on_on.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\pause.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\pauseover.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\quit.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\quitgame.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\quitgameover.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\quitover.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\resumegame.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\resumegameover.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\submit.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\submitup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\tryagain.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\tryagainover.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\upgrade_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\upgrade_up.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewglobal.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewglobalup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewhighscore.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewhighscoreon.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewlocal.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\buttons\viewlocalup.png
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\comics\webcomic.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\config\career.xml
C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.58\assets\config\customer.xml
C:\WINDOWS\Downloaded Program Files\DinerDash.

Réponse 18 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
27 oct. 2007 à 17:38

Re,

je ne vois pas comment tu peux me poster un rapport de navilog datant de 9h27 quand je te demande de le faire à 10h 33.

c'est un rapport de clean que je n'ai pas demandé.

Si tu as fait ce que j'ai demandé au post 1, tu postes le rapport.

Si tu ne l'as pas fait, tu le fais et tu postes le rapport.

les lands
27 oct. 2007 à 17:59

Désolée
Je me suis trompée mais j'ai refait le traitement et voici le rapport

Clean Navipromo version 3.3.2 commencé le 27/10/2007 à 17:51:04,76

Outil exécuté depuis C:\Program Files\navilog1
Mise à jour le 22.10.2007 à 19h00 par IL-MAFIOSO

Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.11

Mode suppression automatique

*** fsbl1.txt non trouvé ***
(Assurez-vous que Catchme n'avait rien trouvé lors de la recherche)

*** Suppression avec sauvegardes résultats GenericNaviSearch ***

* Suppression dans C:\WINDOWS\System32 *

* Suppression dans C:\DOCUME~1\HP_PRO~1\LOCALS~1\APPLIC~1 *

*** Suppression dossiers dans C:\WINDOWS ***

*** Suppression dossiers dans C:\Program Files ***

*** Suppression dossiers dans C:\Documents and Settings\All Users\Application Data ***

*** Suppression dossiers dans C:\Documents and Settings\HP_Propri‚taire\Application Data ***

*** Suppression dossiers dans C:\DOCUME~1\ALLUSE~1\MENUDÉ~1\PROGRA~1 ***

*** Suppression fichiers ***

*** Suppression fichiers temporaires ***

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\HP_Propri‚taire\Local Settings\Temp effectué !

*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche fichiers connus:

2)Recherche, création sauvegardes et suppression Heuristique :

*** Sauvegarde du Registre vers dossier Backupnavi ***

sauvegarde du Registre réalisé avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok

*** Certificats ***

Certificat Egroup absent !

*** Fichiers suspects non supprimés par Navilog1 ***
!! Fichiers légitimes possibles, à contrôler avant suppression !!

*** Nettoyage terminé le 27/10/2007 à 17:55:38,75 ***

Réponse 19 / 19

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
27 oct. 2007 à 22:54

Re

1) Symantec-Norton ou avast, il faut choisir.

Pour désinstaller Norton :

http://service1.symantec.com/SUPPORT/INTER/tsgeninfointl.nsf/fr_docid/20050414110429924

Pour déésinstaller Avast :

https://www.avast.com/fr-fr/uninstall-utility

Le meilleur choix : désinstaller les 2 au profit d'Antivir :

lien et tuto ici :

https://www.malekal.com/avira-free-security-antivirus-gratuit/

2) Tu sembles ne pas avoir de parefeu contrôlant les connexions sortantes, ce qui est un risque de sécurité. (il est possible que tu en avais avec Norton)

Si c'est le cas tu as le choix entre ces deux possibilités :

Zone Alarm Tuto et lien de téléchargement ici :
https://www.malekal.com/tutoriel-zonealarm-firewall/

Kerio Tuto et lien de téléchargement ici :
http://www.malekal.com/kerio_firewall.php

Il y en a d'autres que tu peux trouver en ouvrant ce lien :
http://www.malekal.com/menu_tutorials_logiciels.php

Il faut que tu désactives le parefeu de Windows (panneau de configuration, parefeu de Windows) après le téléchargement et avant l'installation (déconnecte toi du Net à ce moment là).

3) Relance HijackThis.

Choisis Do a scan only

Coche la case devant les lignes suivantes

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O16 - DPF: {5392B545-31A5-4724-BEF3-4FED1D56FDAC} (CPlayFirstDinerDash2_frControl Object) - file:///C:/Documents%20and%20Settings/HP_Propriétaire/Local%20Settings/Applicati on%20Data/Oberon%20Media/Oberon%20Games%20Host/DinerDash2_fr.1.0.0.70.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://wanadoofr.oberon-media.com/online2/diner_dash/DinerDash.1.0.0.58.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - file:///C:/Documents%20and%20Settings/HP_Propriétaire/Local%20Settings/Applicati on%20Data/Oberon%20Media/Oberon%20Games%20Host/popcaploader_v6.cab

Ferme toutes les fenêtres (hormis HijackThis), y compris ton navigateur.

Clique sur fix checked.

Ferme Hijackthis.

4) remets un rapport Hijackthis

les lands
28 oct. 2007 à 11:03

Bonjour
désolée j'ai du partir hier soir mais encore merci pour ton aide.

J'ai désinstallé avast mais je garde Norton (licence encore pour 2 mois) mais après je pense prendre Kapersky ???
Pour Antivir j'ai essayé l'année dernière mais c'est en anglais et j'avais tout de même eu un virus.

Pour le parefeu il est inclus dans norton.

Ensuite j'ai fait le scan de hijackthis et refais le rapport que voici

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:59:29, on 28/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\FTRTSVC.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*https://fr.search.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {084DAC27-6FA3-4F55-9005-033F2F102F5C} (ITPPDiagIE Class) - http://data.jeuxclassiques.com/npwwg.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {1D6E056F-D1BB-40F6-88E4-11EE98056FD2} (Oberon ActiveX Game Host) - http://jeuxmultijoueurs.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {5308E02B-4ABA-48E4-AA9E-8A7693661473} (GameCtl Class) - http://jeuxenligne.orange.fr/GisActiveX/Ax/GameAx.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://wanadoofr.oberon-media.com/online2/luxor_amun_rising/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {C9E17F58-564C-41C6-989F-AB0FE0D2C9D1} (PopcapLoader Object) - http://jeuxentelechargement.orange.fr/orange2.0/OnlineHSS/zuma/Popcap.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe