Votre question

[Resolu] fond d écran "YOUR PRIVACY IS IN DANGER"

Tags :
  • Danger
  • Sécurité
Dernière réponse : dans Sécurité et virus
17 Octobre 2007 21:11:52

Bonsoir,

je viens d avoir un nouveau fond d ecran rouge avec "écrit

""YOUR PRIVACY IS IN DANGER" et j ai une page de pub qui revient sans arrêt sur mon écran.

je sais vraiment pas comment faire, merci d avance de votre réponse.

Autres pages sur : resolu fond ecran your privacy danger

17 Octobre 2007 21:15:35

bonsoir

1

Télécharge puis installe Hijackthis (Trend Micro)
Poste ensuite un rapport dans ta prochaine réponse.
AIDE : Comment utiliser Hijackthis v2.0.2

2

~Télécharge SmitfraudFix

http://siri.urz.free.fr/Fix/SmitfraudFix.zip

~Dezippe la totalité de l'archive SmitfraudFix.zip
Recherche:
~Double clique sur SmitfraudFix.cmd
~Sélectionne 1 et presse Entrée dans le menu pour créer un rapport des fichiers responsables de l'infection. Le rapport se trouve à la racine du disque système C:\rapport.txt
~Poste ce rapport.
process.exe est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool. Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus. Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
17 Octobre 2007 21:20:24

Tu pourrais pas faire un screen shot du fond d'ecran? Ca m'interesse^^ Il a l'air fun !
Contenus similaires
17 Octobre 2007 21:30:15

ça ressemble à ça:


17 Octobre 2007 21:35:58

voila le rapport de Hijackthis" ainsi que celui de "SmitfraudFix"

Logfile of HijackThis v1.99.1
Scan saved at 22:50:40, on 17.10.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\regsvr32.exe
C:\Program Files\Pando Networks\Pando\Pando.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
C:\PROGRA~1\FICHIE~1\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Marcel\LOCALS~1\Temp\Rar$EX02.250\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarereferral.com/jump.php?wmid=6010&mid=MjI6...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {278669A4-8E94-820B-44C1-0AC1A31ABBDB} - C:\Program Files\mpzrmbfc\ubmjfrmz.dll
O2 - BHO: MSVPS System - {480598DD-AE28-48B7-82F7-6ADDA1AA6B66} - C:\WINDOWS\ntspknlg.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: The optnet - {B02534D7-8D91-49BE-A864-97DFB8E0BAB4} - C:\WINDOWS\optnet.dll
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [diagent] "C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe" startup
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [ppmate] C:\Program Files\PPMate\PPMate\ppmate.exe -autoplay
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [msnsyslog] C:\WINDOWS\msnlogm.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [wvcrqdmb] regsvr32 /u "C:\Documents and Settings\All Users\Application Data\wvcrqdmb.dll"
O4 - HKCU\..\Run: [Internet Download Accelerator] C:\Program Files\IDA\ida.exe -autorun
O4 - HKCU\..\Run: [Pando] "C:\Program Files\Pando Networks\Pando\Pando.exe" /Minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Symantec Fax Starter Edition Port.lnk = C:\Program Files\Microsoft Office\Office\1036\OLFSNT40.EXE
O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} - http://activex.camfrogweb.com/advanced/2.0.2.3/cfweb_ac...
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {85D1F3B2-2A21-11D7-97B9-0010DC2A6243} (SecureLogin class) - http://secure2.comned.com/signuptemplates/securelogin-d...
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O21 - SSODL: hostctrl - {08BEA555-0B4D-416E-A290-2B5ABE613412} - C:\WINDOWS\hostctrl.dll
O21 - SSODL: hstsys - {164FB59F-6E17-4C50-83D7-1D206435A195} - C:\WINDOWS\hstsys.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe


SmitFraudFix v2.240

Rapport fait à 23:03:27.09, 17.10.2007
Executé à partir de C:\Documents and Settings\Marcel\Bureau\SmitfraudFix\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\regsvr32.exe
C:\Program Files\Pando Networks\Pando\Pando.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
C:\PROGRA~1\FICHIE~1\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\cmd.exe

»»»»»»»»»»»»»»»»»»»»»»»» hosts


»»»»»»»»»»»»»»»»»»»»»»»» C:\


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

C:\WINDOWS\privacy_danger PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Marcel


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Marcel\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Marcel\Favoris

C:\DOCUME~1\Marcel\Favoris\Error Cleaner.url PRESENT !
C:\DOCUME~1\Marcel\Favoris\Privacy Protector.url PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» Bureau

C:\DOCUME~1\Marcel\Bureau\Error Cleaner.url PRESENT !
C:\DOCUME~1\Marcel\Bureau\Privacy Protector.url PRESENT !
C:\DOCUME~1\Marcel\Bureau\Spyware?Malware Protection.url PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

C:\Program Files\VideoAccessCodec\ PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="file:///C:\\WINDOWS\\privacy_danger\\index.htm"
"SubscribedURL"=""
"FriendlyName"="Privacy Protection"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\1]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"

»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» Rustock



»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: Intel(R) PRO/100 M Network Connection - Miniport d'ordonnancement de paquets
DNS Server Search Order: 192.168.1.1

HKLM\SYSTEM\CCS\Services\Tcpip\..\{DB437D74-4B90-4299-A950-2680CFFC0FE8}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{DB437D74-4B90-4299-A950-2680CFFC0FE8}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS2\Services\Tcpip\..\{DB437D74-4B90-4299-A950-2680CFFC0FE8}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1


»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin

17 Octobre 2007 21:39:45

ok

~Redémarre l'ordinateur en mode sans échec (F8 au démarrage de l'ordinateur)
http://www.malekal.com/modesansechec.php

~Double clique sur SmitfraudFix.cmd
~Sélectionne 2 et presse Entrée dans le menu pour supprimer les fichiers responsables de l'infection.
~Réponds Oui (o) à toutes les questions.
Un redémarrage sera peut être nécessaire pour terminer la procédure de nettoyage.
~Poste le nouveau rapport.

ajoute un nouveau log hijackthis
Anonyme
17 Octobre 2007 21:44:53

pourquoi ne fais tu pas une restauration à une date anterieure à l infection? je lai fait chez mon pere ça a marché ;) 
17 Octobre 2007 22:25:19

Sham_Rock a dit :
ok

~Redémarre l'ordinateur en mode sans échec (F8 au démarrage de l'ordinateur)
http://www.malekal.com/modesansechec.php

~Double clique sur SmitfraudFix.cmd
~Sélectionne 2 et presse Entrée dans le menu pour supprimer les fichiers responsables de l'infection.
~Réponds Oui (o) à toutes les questions.
Un redémarrage sera peut être nécessaire pour terminer la procédure de nettoyage.
~Poste le nouveau rapport.

ajoute un nouveau log hijackthis


j ai fait en mode "sans echec" et j ai sauvergarder le rapport mais
maintenant en mode normal je vois pas le fichier de mon rapport
17 Octobre 2007 23:02:33

Cool merci pour le fond décran :D 
17 Octobre 2007 23:21:30

voila le rapport en mode "sans echec" de "SmitFraudFix"

par contre j ai pas comrpis quand tu parles de "ajoute un nouveau log hijackthis" , moi j ai refait un scan avec "HijackThis" et j ai pris
"do a system scan and save a logfile"



SmitFraudFix v2.240

Rapport fait à 23:11:03.84, 17.10.2007
Executé à partir de C:\Documents and Settings\Marcel\Bureau\SmitfraudFix\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode sans echec

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus


»»»»»»»»»»»»»»»»»»»»»»»» hosts

127.0.0.1 localhost

»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix

S!Ri's WS2Fix: LSP not Found.


»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés

C:\WINDOWS\privacy_danger\ supprimé
C:\DOCUME~1\Marcel\Bureau\Error Cleaner.url supprimé
C:\DOCUME~1\Marcel\Bureau\Privacy Protector.url supprimé
C:\DOCUME~1\Marcel\Bureau\Spyware?Malware Protection.url supprimé
C:\DOCUME~1\Marcel\Favoris\Error Cleaner.url supprimé
C:\DOCUME~1\Marcel\Favoris\Privacy Protector.url supprimé
C:\Program Files\VideoAccessCodec\ supprimé

»»»»»»»»»»»»»»»»»»»»»»»» DNS

HKLM\SYSTEM\CCS\Services\Tcpip\..\{DB437D74-4B90-4299-A950-2680CFFC0FE8}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{DB437D74-4B90-4299-A950-2680CFFC0FE8}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS2\Services\Tcpip\..\{DB437D74-4B90-4299-A950-2680CFFC0FE8}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1


»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin

Logfile of HijackThis v1.99.1
Scan saved at 23:26:54, on 17.10.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\regsvr32.exe
C:\Program Files\Pando Networks\Pando\Pando.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
C:\PROGRA~1\FICHIE~1\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Java\jre1.6.0_02\bin\jucheck.exe
C:\Documents and Settings\Marcel\Bureau\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {278669A4-8E94-820B-44C1-0AC1A31ABBDB} - C:\Program Files\mpzrmbfc\ubmjfrmz.dll
O2 - BHO: MSVPS System - {480598DD-AE28-48B7-82F7-6ADDA1AA6B66} - C:\WINDOWS\ntspknlg.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: The optnet - {B02534D7-8D91-49BE-A864-97DFB8E0BAB4} - C:\WINDOWS\optnet.dll
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [diagent] "C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe" startup
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [ppmate] C:\Program Files\PPMate\PPMate\ppmate.exe -autoplay
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [msnsyslog] C:\WINDOWS\msnlogm.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [wvcrqdmb] regsvr32 /u "C:\Documents and Settings\All Users\Application Data\wvcrqdmb.dll"
O4 - HKCU\..\Run: [Internet Download Accelerator] C:\Program Files\IDA\ida.exe -autorun
O4 - HKCU\..\Run: [Pando] "C:\Program Files\Pando Networks\Pando\Pando.exe" /Minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Symantec Fax Starter Edition Port.lnk = C:\Program Files\Microsoft Office\Office\1036\OLFSNT40.EXE
O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} - http://activex.camfrogweb.com/advanced/2.0.2.3/cfweb_ac...
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {85D1F3B2-2A21-11D7-97B9-0010DC2A6243} (SecureLogin class) - http://secure2.comned.com/signuptemplates/securelogin-d...
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O21 - SSODL: hostctrl - {08BEA555-0B4D-416E-A290-2B5ABE613412} - C:\WINDOWS\hostctrl.dll
O21 - SSODL: hstsys - {164FB59F-6E17-4C50-83D7-1D206435A195} - C:\WINDOWS\hstsys.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe

18 Octobre 2007 13:15:47

bonjour

upload les deux fichiers suivants sur le site de S!Ri stp:
http://siri.urz.free.fr/upload/

C:\WINDOWS\hostctrl.dll
C:\WINDOWS\hstsys.dll

dis moi quand tu l'as fait.
18 Octobre 2007 17:04:56

j ai le meme probleme :
SmitFraudFix v2.240

Rapport fait à 17:04:24,68, 18/10/2007
Executé à partir de C:\Documents and Settings\Moi\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est FAT32
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\ASUS\PowerForPhone\PowerForPhone.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\Program Files\Wireless Console 2\wcourier.exe
C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
C:\WINDOWS\system32\ACEngSvr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe
C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\ASUS\Net4Switch\Net4Switch.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\ASUS\Asus MultiFrame\MultiFrame.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\cmd.exe

»»»»»»»»»»»»»»»»»»»»»»»» hosts

Fichier hosts corrompu !

127.0.0.1 legal-at-spybot.info
127.0.0.1 www.legal-at-spybot.info

»»»»»»»»»»»»»»»»»»»»»»»» C:\


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

C:\WINDOWS\msmhost.dll PRESENT !
C:\WINDOWS\privacy_danger PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Moi


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Moi\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\MOI\FAVORIS


»»»»»»»»»»»»»»»»»»»»»»»» Bureau


»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="about:home"
"SubscribedURL"="about:home"
"FriendlyName"="my current home page"


»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="APSHook.dll"


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» Rustock



»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: WAN (PPP/SLIP) Interface
DNS Server Search Order: 80.10.246.1
DNS Server Search Order: 81.253.149.10

HKLM\SYSTEM\CCS\Services\Tcpip\..\{064A0136-A027-42E9-ADCC-707664ECC3DE}: NameServer=80.10.246.1 81.253.149.10
HKLM\SYSTEM\CS1\Services\Tcpip\..\{064A0136-A027-42E9-ADCC-707664ECC3DE}: NameServer=80.10.246.1 81.253.149.10


»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin

18 Octobre 2007 17:16:17

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:12:13, on 18/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\ASUS\PowerForPhone\PowerForPhone.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\Program Files\Wireless Console 2\wcourier.exe
C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
C:\WINDOWS\system32\ACEngSvr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe
C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\ASUS\Net4Switch\Net4Switch.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\ASUS\Asus MultiFrame\MultiFrame.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\WANADOO\SEARCH~1.DLL (file missing)
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: MSVPS System - {480598DD-AE28-48B7-82F7-6ADDA1AA6B66} - C:\WINDOWS\ntspknlg.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {6136C646-9AE1-365B-8AE9-068A02B746F2} - C:\Program Files\ctzpmwmc\lwccmpmz.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll
O3 - Toolbar: The optnet - {B02534D7-8D91-49BE-A864-97DFB8E0BAB4} - C:\WINDOWS\optnet.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [PowerForPhone] C:\Program Files\ASUS\PowerForPhone\PowerForPhone.exe
O4 - HKLM\..\Run: [ASUS Live Update] C:\Program Files\ASUS\ASUS Live Update\ALU.exe
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe c:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [ACMON] C:\Program Files\ASUS\Splendid\ACMON.exe
O4 - HKLM\..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ABLKSR] C:\WINDOWS\ABLKSR\ABLKSR.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [FTWATCH] C:\PROGRA~1\LALIGN~1\watch.exe
O4 - HKLM\..\Run: [FTTASKBARICON] C:\PROGRA~1\LALIGN~1\taskbaricon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [hcxqhono] regsvr32 /u "C:\Documents and Settings\All Users\Application Data\hcxqhono.dll"
O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Net4Switch] C:\Program Files\ASUS\Net4Switch\Net4Switch.exe
O4 - HKCU\..\Run: [updateMgr] c:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: MultiFrame.lnk = ?
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\Moi\Menu Démarrer\Programmes\Absolute Poker\Absolute Poker.lnk
O9 - Extra 'Tools' menuitem: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\Moi\Menu Démarrer\Programmes\Absolute Poker\Absolute Poker.lnk
O9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: CDPoker - {A68FC757-51CF-4f3c-B13A-BFB8CA69BB99} - C:\Poker\CDPoker\casino.exe
O9 - Extra 'Tools' menuitem: CDPoker - {A68FC757-51CF-4f3c-B13A-BFB8CA69BB99} - C:\Poker\CDPoker\casino.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.ca...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Contro...
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst....
O17 - HKLM\System\CCS\Services\Tcpip\..\{064A0136-A027-42E9-ADCC-707664ECC3DE}: NameServer = 80.10.246.1 81.253.149.10
O17 - HKLM\System\CS1\Services\Tcpip\..\{064A0136-A027-42E9-ADCC-707664ECC3DE}: NameServer = 80.10.246.1 81.253.149.10
O20 - AppInit_DLLs: APSHook.dll
O20 - Winlogon Notify: OneCard - c:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll
O21 - SSODL: hostctrl - {8E812AC0-22B5-4A31-B5A7-733F82CDF160} - C:\WINDOWS\hostctrl.dll
O21 - SSODL: msmhost - {DC1FA3D0-9090-4C9F-954C-D549C93D9BCE} - C:\WINDOWS\msmhost.dll
O21 - SSODL: msmdev - {A4907B59-6BA0-45C3-BFBD-C2BC8529DE7E} - C:\WINDOWS\msmdev.dll (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O24 - Desktop Component 0: Privacy Protection - file:///C:\WINDOWS\privacy_danger\index.htm

--
End of file - 13909 bytes
*
18 Octobre 2007 17:55:34

Sham_Rock a dit :
bonjour babouchator
merci de créer ton propre sujet
à lire avant de poster


Sham_Rock a dit :
bonjour

upload les deux fichiers suivants sur le site de S!Ri stp:
http://siri.urz.free.fr/upload/

C:\WINDOWS\hostctrl.dll
C:\WINDOWS\hstsys.dll

dis moi quand tu l'as fait.


salut
alors j ai upload les deux fichiers "hostctrl.dll" et "hstsys.dll
18 Octobre 2007 21:54:53

bonsoir Greg209

on peut continuer alors.

Télécharge Navilog1.exe (IL-MAFIOSO)
Enregistre-le sur ton Bureau.
Lance l'installation en double cliquant sur navilog.exe.
Une fois l'installation terminée, l'utilitaire s'exécutera automatiquement.
(Si ce n'est pas le cas, double clique sur le raccourci présent sur le Bureau)

Laisse-toi guider par l'utilitaire. Choisis l'option 1 puis valide.
[#ff0000]! N'utilise pas l'option 2, 3 et 4 sans notre accord ![/#f]
Patiente jusqu'à l'apparition de ce message :
"*** Analyse Termine le ..... ***"
Appuie sur une touche comme demandé. Le Bloc-notes va s'ouvrir. Poste-nous son contenu de cette manière :

-> Edition / Sélectionner tout
-> Edition / Copier
-> Clique-Droit / Coller dans ta réponse


NOTE : Le rapport se trouve également ici : C:\fixnavi.txt

18 Octobre 2007 22:08:23

voila le rapport de "Navilog.exe"


Search Navipromo version 3.3.0 commencé le 18.10.2007 à 22:05:24.17

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1
Mise à jour le 17.10.2007 à 20h00 par IL-MAFIOSO


Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.11


*** Recherche Programmes installés ***




*** Recherche dossiers dans C:\WINDOWS ***



*** Recherche dossiers dans C:\Program Files ***



*** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***




*** Recherche dossiers dans C:\Documents and Settings\Marcel\Application Data ***


*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1 ***


*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

Aucun fichier trouvé dans :

- C:\WINDOWS\system32
- C:\DOCUME~1\MARCEL\LOCALS~1\APPLIC~1



*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans C:\WINDOWS\system32 *

* Recherche dans C:\DOCUME~1\MARCEL\LOCALS~1\APPLIC~1 *



*** Recherche fichiers ***




*** Recherche clés spécifiques dans le Registre ***


*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche fichiers connus:

2)Recherche Heuristique :



3)Recherche Certificats :

Certificat Egroup absent !


*** Analyse terminée le 18.10.2007 à 22:06:16.35 ***
18 Octobre 2007 22:39:33

ok

avant de passer à la destruction, tu peux faire un upload à la même adresse de ces fichiers stp:
http://siri.urz.free.fr/upload/

C:\WINDOWS\ntspknlg.dll
C:\WINDOWS\optnet.dll

pour info, ces fichiers permettront une mise à jours de l'outil, donc c'est sympa de ta part de le faire. ;) 
merci à toi
++++++++++++++++

~Télécharge OTMoveIt (d'OldTimer). Sauvegarde-le sur ton Bureau.

~Lance Hijackthis “Do a system scan only”.
Coche les lignes qui suivent si encore présentes et uniquement celles-là.

O2 - BHO: (no name) - {278669A4-8E94-820B-44C1-0AC1A31ABBDB} - C:\Program Files\mpzrmbfc\ubmjfrmz.dll

O2 - BHO: MSVPS System - {480598DD-AE28-48B7-82F7-6ADDA1AA6B66} - C:\WINDOWS\ntspknlg.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: The optnet - {B02534D7-8D91-49BE-A864-97DFB8E0BAB4} - C:\WINDOWS\optnet.dll
O4 - HKLM\..\Run: [msnsyslog] C:\WINDOWS\msnlogm.exe
O4 - HKLM\..\Run: [wvcrqdmb] regsvr32 /u "C:\Documents and Settings\All Users\Application Data\wvcrqdmb.dll"
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} - http://activex.camfrogweb.com/adva [...] module.exe
O16 - DPF: {85D1F3B2-2A21-11D7-97B9-0010DC2A6243} (SecureLogin class) - http://secure2.comned.com/signupte [...] -devel.cab
O21 - SSODL: hostctrl - {08BEA555-0B4D-416E-A290-2B5ABE613412} - C:\WINDOWS\hostctrl.dll
O21 - SSODL: hstsys - {164FB59F-6E17-4C50-83D7-1D206435A195} - C:\WINDOWS\hstsys.dll



Clique sur Fix checked (en bas à gauche)

~Sélectionne TOUS les emplacements suivants :


C:\WINDOWS\hstsys.dll
C:\WINDOWS\hostctrl.dll
C:\Documents and Settings\All Users\Application Data\wvcrqdmb.dll
C:\WINDOWS\msnlogm.exe
C:\WINDOWS\optnet.dll
C:\WINDOWS\ntspknlg.dll
C:\Program Files\mpzrmbfc


---> Clique-droit puis Copier (ou Ctrl+C)
~Double-clique sur OTMoveIt.exe afin de le lancer.
fais un Clique-droit sur le cadre de gauche puis choisis Coller. (ou Ctrl+V).
~Clique maintenant sur [#ff0000]MoveIt![/#f]

!! Si un fichier ou dossier ne peut être supprimé immédiatement, le logiciel te demandera de redémarrer. Accepte en cliquant sur YES

~Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport est la date de sa création.

ajoute un nouveau log hijackthis

19 Octobre 2007 00:25:28

voila le rapport de "OTMoveIt" et de "HijackThis"


File/Folder C:\WINDOWS\hstsys.dll not found.
File/Folder C:\WINDOWS\hostctrl.dll not found.
File/Folder C:\Documents and Settings\All Users\Application Data\wvcrqdmb.dll not found.
File/Folder C:\WINDOWS\msnlogm.exe not found.
File/Folder C:\WINDOWS\optnet.dll not found.
File/Folder C:\WINDOWS\ntspknlg.dll not found.
C:\Program Files\mpzrmbfc moved successfully.

Created on 10.19.2007 00:20:03



Logfile of HijackThis v1.99.1
Scan saved at 00:23:13, on 19.10.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Pando Networks\Pando\Pando.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\PROGRA~1\FICHIE~1\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre1.6.0_02\bin\jucheck.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Marcel\Bureau\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [diagent] "C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe" startup
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [ppmate] C:\Program Files\PPMate\PPMate\ppmate.exe -autoplay
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKCU\..\Run: [Internet Download Accelerator] C:\Program Files\IDA\ida.exe -autorun
O4 - HKCU\..\Run: [Pando] "C:\Program Files\Pando Networks\Pando\Pando.exe" /Minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Symantec Fax Starter Edition Port.lnk = C:\Program Files\Microsoft Office\Office\1036\OLFSNT40.EXE
O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe

19 Octobre 2007 12:13:41

bonjour

tu as fais l'upload?

as tu fais quelque chose de toi même avant d'utiliser OTMoveIt ?

ça me semble curieux que les fichiers infectieux aient disparu comme par enchantement. :) 

+++++++++++++++++++++++++++++++++++++++

Merci de bien lire et suivre attentivement ce qui est écrit car tu dois appuyer sur une touche lors du scan.. si tu ne le fais pas le rapport ne sera pas entier et tu devras recommencer donc :

- Télécharge DiagHelp.zip sur ton bureau - Tuto : http://www.malekal.com/DiagHelp/DiagHelp.php
- Ne double-clic pas dessus !! Fais un clic droit sur le fichier et extraire tout
- Un nouveau dossier chercher va être créé DiagHelp
- Ouvre le et double-clic sur go.cmd (le .cmd peut ne pas apparaître)
- Une fenêtre va s'ouvrir, choisis l'option 1
- L'analyse va commencer, ceci peut durer quelques minutes, laisse faire et appuie sur une touche quand on te le demande.

ATTENTION : pendant l'analyse, après le rapport catchme, il te sera demandé d'appuyer sur une touche afin de poursuivre le scan, suis bien les instructions à l'écran !

- A la fin de l'analyse, il peut-être (pas obligatoire) demandé de redemanderl'ordinateur... Une fois l'ordinateur redémarré le rapport va apparaître sur le bloc-note.. Ce dernier se trouve sur C:\resultat.txt
- Copie/colle le contenu du bloc-note qui s'ouvre, pour cela :
-- Dans le bloc-note, cliquez sur le menu Edition / Selectionner tout
-- A nouveau menu Edition / copier
-- Dans un nouveau message ici, faire un clic droit / coller
19 Octobre 2007 13:55:30

j ai fait le upload des 2 fichiers : "hostctrl.dll" et "hstsys.dll"

et voila le rapport de "DiagHelp" :


DiagHelp version v1.2 - http://www.malekal.com
excute le 19.10.2007 à 13:46:56.06


Liste des derniers fichies modifies/crees dans windir\system32 et prefetch
C:\WINDOWS\prefetch\CHCP.COM-17EDBDC9.pf -->19.10.2007 13:46:53
C:\WINDOWS\prefetch\WINRAR.EXE-0AA31BB9.pf -->19.10.2007 13:44:24
C:\WINDOWS\prefetch\AD-AWARE2007.EXE-396F5C3C.pf -->19.10.2007 13:40:53
C:\WINDOWS\prefetch\FIREFOX.EXE-06188867.pf -->19.10.2007 13:40:25
C:\WINDOWS\prefetch\NOTEPAD.EXE-2F2D61E1.pf -->19.10.2007 13:39:09
C:\WINDOWS\prefetch\FLASHFXP.EXE-1CA6430D.pf -->19.10.2007 13:38:45
C:\WINDOWS\prefetch\AD-WATCH2007.EXE-154755DD.pf -->19.10.2007 13:38:05
C:\WINDOWS\prefetch\WINAMP.EXE-22223556.pf -->19.10.2007 13:36:17
C:\WINDOWS\prefetch\WUAUCLT.EXE-1360D60A.pf -->19.10.2007 13:35:50
C:\WINDOWS\prefetch\SVCHOST.EXE-2D5FBD18.pf -->19.10.2007 13:35:11

C:\WINDOWS\System32\drivers\NSDriver.sys -->15.09.2007 15:11:00
C:\WINDOWS\System32\drivers\AWRTRD.sys -->15.09.2007 15:10:58
C:\WINDOWS\System32\drivers\PxHelp20.sys -->27.07.2007 01:06:18
C:\WINDOWS\System32\drivers\AWRTPD.sys -->04.06.2007 15:14:56
C:\WINDOWS\System32\drivers\update.sys -->23.04.2007 12:32:54
C:\WINDOWS\System32\drivers\ntfs.sys -->09.02.2007 13:10:35
C:\WINDOWS\System32\drivers\wpdusb.sys -->18.10.2006 21:00:00

C:\WINDOWS\System32\wpa.dbl -->19.10.2007 12:01:23
C:\WINDOWS\System32\tmp.txt -->17.10.2007 23:11:10
C:\WINDOWS\System32\tmp.reg -->17.10.2007 23:11:10
C:\WINDOWS\System32\MRT.exe -->28.09.2007 07:19:39
C:\WINDOWS\System32\gnc.exe -->18.09.2007 15:19:58
C:\WINDOWS\System32\jupdate-1.6.0_02-b06.log -->13.09.2007 21:12:11
C:\WINDOWS\System32\TZLog.log -->01.09.2007 00:22:33
C:\WINDOWS\System32\inetcomm.dll -->21.08.2007 08:17:23
C:\WINDOWS\System32\wininet.dll -->20.08.2007 11:59:31
C:\WINDOWS\System32\webcheck.dll -->20.08.2007 11:59:31
C:\WINDOWS\System32\urlmon.dll -->20.08.2007 11:59:31
C:\WINDOWS\System32\url.dll -->20.08.2007 11:59:31
C:\WINDOWS\System32\occache.dll -->20.08.2007 11:59:31
C:\WINDOWS\System32\mstime.dll -->20.08.2007 11:59:30
C:\WINDOWS\System32\msrating.dll -->20.08.2007 11:59:30
C:\WINDOWS\System32\mshtmled.dll -->20.08.2007 11:59:30
C:\WINDOWS\System32\mshtml.dll -->20.08.2007 11:59:30
C:\WINDOWS\System32\msfeedsbs.dll -->20.08.2007 11:59:30
C:\WINDOWS\System32\msfeeds.dll -->20.08.2007 11:59:30
C:\WINDOWS\System32\jsproxy.dll -->20.08.2007 11:59:30
C:\WINDOWS\System32\inetcpl.cpl -->20.08.2007 11:59:30
C:\WINDOWS\System32\iertutil.dll -->20.08.2007 11:59:30
C:\WINDOWS\System32\iernonce.dll -->20.08.2007 11:59:29
C:\WINDOWS\System32\ieframe.dll -->20.08.2007 11:59:29
C:\WINDOWS\System32\iedkcs32.dll -->20.08.2007 11:59:29

C:\WINDOWS\wiadebug.log -->19.10.2007 13:35:06
C:\WINDOWS\wiaservc.log -->19.10.2007 13:35:01
C:\WINDOWS\WindowsUpdate.log -->19.10.2007 12:58:42
C:\WINDOWS\0.log -->19.10.2007 12:00:12
C:\WINDOWS\QTFont.qfn -->19.10.2007 11:59:46
C:\WINDOWS\bootstat.dat -->19.10.2007 11:59:35
C:\WINDOWS\setupact.log -->18.10.2007 23:44:25
C:\WINDOWS\ntbtlog.txt -->18.10.2007 22:26:46
C:\WINDOWS\SchedLgU.Txt -->18.10.2007 21:12:32
C:\WINDOWS\setupapi.log -->17.10.2007 22:34:04
C:\WINDOWS\regopt.log -->17.10.2007 22:34:01
C:\WINDOWS\win.ini -->17.10.2007 22:23:16
C:\WINDOWS\system.ini -->17.10.2007 22:23:16
C:\WINDOWS\tsoc.log -->10.10.2007 19:08:29
C:\WINDOWS\ocmsn.log -->10.10.2007 19:08:29


MD5 des fichiers sensibles
tcpip.sys 1dbf125862891817f374f407626967f4
ndis.sys 558635d3af1c7546d26067d5d9b6959e
null.sys 73c1e1f395918bc2c6dd67af7591a3ad
svchost.exe 1bd6c2f707a275cb7c16fd99fe0f31ca


Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 50EB-8722

Répertoire de C:\WINDOWS\system32

19.08.2004 21:57 6'144 csrss.exe
1 fichier(s) 6'144 octets
0 Rép(s) 30'036'295'680 octets libres

Contenu de Downloaded Program Files
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 50EB-8722

Répertoire de C:\WINDOWS\Downloaded Program Files

19.10.2007 00:15 <REP> .
19.10.2007 00:15 <REP> ..
15.09.2006 13:48 65 desktop.ini
25.06.2006 12:50 1'793 erma.inf
10.11.2005 14:05 876 jinstall-1_5_0_06.inf
29.11.2006 15:00 367 LegitCheckControl.inf
22.06.2006 11:41 5'032 swflash.inf
26.05.2005 04:19 291 wuweb.inf
6 fichier(s) 8'424 octets

Total des fichiers listés :
6 fichier(s) 8'424 octets
2 Rép(s) 30'036'291'584 octets libres

Recherche de rootkit! (Merci S!Ri)

Recherche d'infections connues

Export des clefs sensibles..

Liste des fichiers en exception sur le pare-feu XP SP2

"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\K-litePro\\k-litepro.exe"="C:\\Program Files\\K-litePro\\k-litepro.exe:*:Enabled:K-litePro Ultimate File Sharing"
"C:\\Program Files\\Kazaa Lite Resurrection\\kazaalite.kpp"="C:\\Program Files\\Kazaa Lite Resurrection\\kazaalite.kpp:*:Enabled:kazaalite"
"C:\\Program Files\\Pando Networks\\Pando\\pando.exe"="C:\\Program Files\\Pando Networks\\Pando\\pando.exe:*:Enabled:p ando"
"C:\\Program Files\\Real\\RealPlayer\\realplay.exe"="C:\\Program Files\\Real\\RealPlayer\\realplay.exe:*:Enabled:RealPlayer"
"C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"
"C:\\Program Files\\Soulseek-Test\\slsk.exe"="C:\\Program Files\\Soulseek-Test\\slsk.exe:*:Enabled:SoulSeek"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\PPMate\\PPMate\\ppmate.exe"="C:\\Program Files\\PPMate\\PPMate\\ppmate.exe:*:Enabled:p PMate"
"C:\\WINDOWS\\system32\\dxdiag.exe"="C:\\WINDOWS\\system32\\dxdiag.exe:*:D isabled:o util de diagnostic Microsoft DirectX"
"C:\\Documents and Settings\\Marcel\\Bureau\\slsk.exe"="C:\\Documents and Settings\\Marcel\\Bureau\\slsk.exe:*:Enabled:SoulSeek"
"C:\\Program Files\\Soulseek\\slsk.exe"="C:\\Program Files\\Soulseek\\slsk.exe:*:Enabled:SoulSeek"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Program Files\\BitComet\\BitComet.exe"="C:\\Program Files\\BitComet\\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client"
"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Program Files\\Microsoft Office\\Office\\EXCEL.EXE"="C:\\Program Files\\Microsoft Office\\Office\\EXCEL.EXE:*:Enabled:Microsoft Excel for Windows"
"C:\\Documents and Settings\\Marcel\\Bureau\\Msngalaxy\\Msn galaxy.exe"="C:\\Documents and Settings\\Marcel\\Bureau\\Msngalaxy\\Msn galaxy.exe:*:Enabled:Msn galaxy"
"C:\\Documents and Settings\\Marcel\\Bureau\\Msn galaxy.exe"="C:\\Documents and Settings\\Marcel\\Bureau\\Msn galaxy.exe:*:Enabled:Msn galaxy"
"C:\\Documents and Settings\\Marcel\\Local Settings\\Temp\\Rar$EX00.016\\Msn galaxy.exe"="C:\\Documents and Settings\\Marcel\\Local Settings\\Temp\\Rar$EX00.016\\Msn galaxy.exe:*:Enabled:Msn galaxy"
"C:\\Program Files\\FlashFXP\\FlashFXP.exe"="C:\\Program Files\\FlashFXP\\FlashFXP.exe:*:Enabled:FlashFXP v3"

"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Program Files\\FlashFXP\\FlashFXP.exe"="C:\\Program Files\\FlashFXP\\FlashFXP.exe:*:Enabled:FlashFXP v3"

Export de la clef SharedTaskScheduler

[SharedTaskScheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"



exports des policies
REGEDIT4

[system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001



Export des clefs sensibles..
Rechercher adresses sensibles dans le fichier HOSTS...
catchme 0.3.1160 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-19 13:47:11
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden services & system hive ...

scanning hidden registry entries ...

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{8EF5C626-FDC0-3184-E42F-B4A483C44489}]
"fanndlfhnaek"=hex:66,61,70,66,6f,67,67,6f,6c,6c,70,6d,00,00

scanning hidden files ...

scan completed successfully
hidden services: 0
hidden files: 0


KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg)

Process list by traversal of KiWaitListHead

4 - System
164 - iTunesHelper.ex
208 - pando.exe
244 - ctfmon.exe
368 - msmsgs.exe
392 - PcSync2.exe
612 - csrss.exe
640 - winlogon.exe
684 - services.exe
696 - lsass.exe
816 - TeaTimer.exe
848 - svchost.exe
896 - cmd.exe
924 - svchost.exe
1020 - MsMpEng.exe
1060 - svchost.exe
1096 - svchost.exe
1260 - svchost.exe
1284 - svchost.exe
1316 - AppleMobileDevi
1336 - guard.exe
1444 - explorer.exe
1532 - Rtvscan.exe
1716 - aawservice.exe
1908 - ccApp.exe
1944 - VPTray.exe
1968 - MSASCui.exe
2000 - LAUNCH~1.EXE
2396 - ServiceLayer.ex
2732 - alg.exe
3396 - iPodService.exe
3644 - firefox.exe
3736 - msnmsgr.exe
3940 - msnmsgr.exe
4000 - usnsvc.exe

Total number of processes = 35
NOTE: Under WinXP, this will not show all processes.

KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg)

Driver/Module list by traversal of PsLoadedModuleList

804D7000 - \WINDOWS\system32\ntoskrnl.exe
806EC000 - \WINDOWS\system32\hal.dll
F8A36000 - \WINDOWS\system32\KDCOM.DLL
F8946000 - \WINDOWS\system32\BOOTVID.dll
F84E6000 - ACPI.sys
F8A38000 - \WINDOWS\system32\DRIVERS\WMILIB.SYS
F84D5000 - pci.sys
F8536000 - isapnp.sys
F8A3A000 - intelide.sys
F87B6000 - \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
F8546000 - MountMgr.sys
F84B6000 - ftdisk.sys
F87BE000 - PartMgr.sys
F8556000 - VolSnap.sys
F849E000 - atapi.sys
F8566000 - disk.sys
F8576000 - \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
F847E000 - fltMgr.sys
F846C000 - sr.sys
F8586000 - PxHelp20.sys
F8455000 - KSecDD.sys
F8442000 - WudfPf.sys
F83B5000 - Ntfs.sys
F8388000 - NDIS.sys
F836D000 - Mup.sys
F8596000 - agp440.sys
F79EB000 - \SystemRoot\system32\DRIVERS\intelppm.sys
F78D4000 - \SystemRoot\system32\DRIVERS\ati2mtag.sys
F78C0000 - \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
F888E000 - \SystemRoot\system32\DRIVERS\usbuhci.sys
F789D000 - \SystemRoot\system32\DRIVERS\USBPORT.SYS
F8896000 - \SystemRoot\system32\DRIVERS\usbehci.sys
F7758000 - \SystemRoot\system32\drivers\P16X.sys
F7735000 - \SystemRoot\system32\drivers\ks.sys
F7711000 - \SystemRoot\system32\drivers\portcls.sys
F79DB000 - \SystemRoot\system32\drivers\drmk.sys
F76E5000 - \SystemRoot\system32\DRIVERS\ctoss2k.sys
F76C5000 - \SystemRoot\system32\DRIVERS\ctsfm2k.sys
F8A02000 - \SystemRoot\system32\DRIVERS\gameenum.sys
F76A2000 - \SystemRoot\system32\DRIVERS\e100b325.sys
F889E000 - \SystemRoot\system32\DRIVERS\fdc.sys
F79CB000 - \SystemRoot\system32\DRIVERS\i8042prt.sys
F88A6000 - \SystemRoot\system32\DRIVERS\kbdclass.sys
F88AE000 - \SystemRoot\system32\DRIVERS\mouclass.sys
F766C000 - \SystemRoot\system32\DRIVERS\serial.sys
F8A06000 - \SystemRoot\system32\DRIVERS\serenum.sys
F7658000 - \SystemRoot\system32\DRIVERS\parport.sys
F79BB000 - \SystemRoot\system32\DRIVERS\cdrom.sys
F79AB000 - \SystemRoot\system32\DRIVERS\redbook.sys
F88B6000 - \SystemRoot\System32\Drivers\GEARAspiWDM.sys
F799B000 - \SystemRoot\system32\DRIVERS\imapi.sys
F8B38000 - \SystemRoot\system32\DRIVERS\audstub.sys
F85B6000 - \SystemRoot\system32\DRIVERS\rasl2tp.sys
F8A12000 - \SystemRoot\system32\DRIVERS\ndistapi.sys
F7641000 - \SystemRoot\system32\DRIVERS\ndiswan.sys
F85C6000 - \SystemRoot\system32\DRIVERS\raspppoe.sys
F85D6000 - \SystemRoot\system32\DRIVERS\raspptp.sys
F88BE000 - \SystemRoot\system32\DRIVERS\TDI.SYS
F7630000 - \SystemRoot\system32\DRIVERS\psched.sys
F85E6000 - \SystemRoot\system32\DRIVERS\msgpc.sys
F88C6000 - \SystemRoot\system32\DRIVERS\ptilink.sys
F88CE000 - \SystemRoot\system32\DRIVERS\raspti.sys
F85F6000 - \SystemRoot\system32\DRIVERS\termdd.sys
F8A60000 - \SystemRoot\system32\DRIVERS\swenum.sys
F75D7000 - \SystemRoot\system32\DRIVERS\update.sys
F8A1A000 - \SystemRoot\system32\DRIVERS\mssmbios.sys
F8626000 - \SystemRoot\System32\Drivers\NDProxy.SYS
F8636000 - \SystemRoot\system32\DRIVERS\usbhub.sys
F8A62000 - \SystemRoot\system32\DRIVERS\USBD.SYS
F88E6000 - \SystemRoot\system32\DRIVERS\flpydisk.sys
B2F69000 - \??\C:\Program Files\Symantec AntiVirus\savrt.sys
B2F56000 - \??\C:\Program Files\Symantec\SYMEVENT.SYS
F8666000 - \??\C:\Program Files\Symantec AntiVirus\Savrtpel.sys
F8A7C000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS
F8B79000 - \SystemRoot\System32\Drivers\Null.SYS
F8A84000 - \SystemRoot\System32\Drivers\Beep.SYS
F8B90000 - \SystemRoot\System32\DRIVERS\AvgAsCln.sys
F8916000 - \SystemRoot\System32\drivers\vga.sys
F8A86000 - \SystemRoot\System32\Drivers\mnmdd.SYS
F8A88000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys
F891E000 - \SystemRoot\System32\Drivers\Msfs.SYS
F8926000 - \SystemRoot\System32\Drivers\Npfs.SYS
F89F2000 - \SystemRoot\system32\DRIVERS\rasacd.sys
B2E3E000 - \SystemRoot\system32\DRIVERS\ipsec.sys
B2DE6000 - \SystemRoot\system32\DRIVERS\tcpip.sys
B2DA6000 - \SystemRoot\System32\Drivers\SYMTDI.SYS
B2D7E000 - \SystemRoot\system32\DRIVERS\netbt.sys
B2D34000 - \SystemRoot\System32\drivers\afd.sys
B2D13000 - \SystemRoot\system32\DRIVERS\ipnat.sys
F8706000 - \SystemRoot\system32\DRIVERS\netbios.sys
B2CE8000 - \SystemRoot\system32\DRIVERS\rdbss.sys
B2C79000 - \SystemRoot\system32\DRIVERS\mrxsmb.sys
F8716000 - \SystemRoot\System32\Drivers\Fips.SYS
F8BD3000 - \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys
F8726000 - \SystemRoot\system32\DRIVERS\wanarp.sys
F8746000 - \SystemRoot\System32\Drivers\Cdfs.SYS
B2C61000 - \SystemRoot\System32\Drivers\dump_atapi.sys
F8ABA000 - \SystemRoot\System32\Drivers\dump_WMILIB.SYS
BF800000 - \SystemRoot\System32\win32k.sys
F80BB000 - \SystemRoot\System32\drivers\Dxapi.sys
F87DE000 - \SystemRoot\System32\watchdog.sys
BF9C3000 - \SystemRoot\System32\drivers\dxg.sys
F8B03000 - \SystemRoot\System32\drivers\dxgthk.sys
BF9D5000 - \SystemRoot\System32\ati2dvag.dll
BFA0B000 - \SystemRoot\System32\ati2cqag.dll
BFA43000 - \SystemRoot\System32\ati3duag.dll
BFC11000 - \SystemRoot\System32\ativvaxx.dll
B2B6D000 - \SystemRoot\system32\DRIVERS\ndisuio.sys
B2716000 - \SystemRoot\System32\Drivers\Fastfat.SYS
B2611000 - \SystemRoot\system32\drivers\wdmaud.sys
B27B1000 - \SystemRoot\system32\drivers\sysaudio.sys
BFFA0000 - \SystemRoot\System32\ATMFD.DLL
B2186000 - \SystemRoot\system32\DRIVERS\mrxdav.sys
F8A58000 - \SystemRoot\System32\Drivers\ParVdm.SYS
B21D7000 - \??\C:\WINDOWS\system32\drivers\PfModNT.sys
B20E4000 - \SystemRoot\system32\DRIVERS\srv.sys
B1DD3000 - \SystemRoot\System32\Drivers\HTTP.sys
B1E30000 - \SystemRoot\System32\Drivers\SYMREDRV.SYS
B1969000 - \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20071018.034\navex15.sys
B1956000 - \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20071018.034\naveng.sys
B17EB000 - \SystemRoot\system32\drivers\kmixer.sys
F8BC6000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys

Total number of drivers = 122

Liste des programmes installes

AC3Filter (remove only)
Ad-Aware 2007
Adobe Bridge 1.0
Adobe Common File Installer
Adobe Download Manager 2.0 (Remove Only)
Adobe Flash Player 9 ActiveX
Adobe Help Center 1.0
Adobe Photoshop CS2
Adobe Photoshop CS2
Adobe Reader 7.0.9 - Français
Adobe Shockwave Player
Adobe Stock Photos 1.0
Apple Mobile Device Support
Apple Software Update
Archiveur WinRAR
Audacity 1.2.6
AutoUpdate
AVG Anti-Spyware 7.5
CamStudio 2.0 Fr
Correctif pour Lecteur Windows Media 11 (KB939683)
Correctif pour Windows XP (KB914440)
Correctif Windows XP - KB873339
Correctif Windows XP - KB885835
Correctif Windows XP - KB885836
Correctif Windows XP - KB886185
Correctif Windows XP - KB887472
Correctif Windows XP - KB888302
Correctif Windows XP - KB890859
Correctif Windows XP - KB891781
DivX Codec
DivX Content Uploader
DivX Converter
DivX Player
DivX Web Player
EAX4 Unified Redist
FlashFXP v3
Google Earth
HijackThis 1.99.1
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB926239)
Intel(R) PRO Ethernet Adapter and Software
iTunes
J2SE Runtime Environment 5.0 Update 10
J2SE Runtime Environment 5.0 Update 11
J2SE Runtime Environment 5.0 Update 6
J2SE Runtime Environment 5.0 Update 9
Java(TM) 6 Update 2
Java(TM) SE Runtime Environment 6 Update 1
Kazaa Lite Resurrection 0.0.8
Language pack for Ad-Aware SE
Lecteur Windows Media 11
LiveUpdate 2.0 (Symantec Corporation)
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0 Language Pack - FRA
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office 2000 SR-1 Premium
Microsoft User-Mode Driver Framework Feature Pack 1.0
Mise à jour de sécurité pour Lecteur Windows Media (KB911564)
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)
Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)
Mise à jour de sécurité pour Windows XP (KB890046)
Mise à jour de sécurité pour Windows XP (KB893756)
Mise à jour de sécurité pour Windows XP (KB896358)
Mise à jour de sécurité pour Windows XP (KB896423)
Mise à jour de sécurité pour Windows XP (KB896424)
Mise à jour de sécurité pour Windows XP (KB896428)
Mise à jour de sécurité pour Windows XP (KB899587)
Mise à jour de sécurité pour Windows XP (KB899591)
Mise à jour de sécurité pour Windows XP (KB900725)
Mise à jour de sécurité pour Windows XP (KB901017)
Mise à jour de sécurité pour Windows XP (KB901214)
Mise à jour de sécurité pour Windows XP (KB902400)
Mise à jour de sécurité pour Windows XP (KB904706)
Mise à jour de sécurité pour Windows XP (KB905414)
Mise à jour de sécurité pour Windows XP (KB905749)
Mise à jour de sécurité pour Windows XP (KB908519)
Mise à jour de sécurité pour Windows XP (KB911562)
Mise à jour de sécurité pour Windows XP (KB911567)
Mise à jour de sécurité pour Windows XP (KB911927)
Mise à jour de sécurité pour Windows XP (KB912919)
Mise à jour de sécurité pour Windows XP (KB913433)
Mise à jour de sécurité pour Windows XP (KB913580)
Mise à jour de sécurité pour Windows XP (KB914388)
Mise à jour de sécurité pour Windows XP (KB914389)
Mise à jour de sécurité pour Windows XP (KB917159)
Mise à jour de sécurité pour Windows XP (KB917344)
Mise à jour de sécurité pour Windows XP (KB917422)
Mise à jour de sécurité pour Windows XP (KB917953)
Mise à jour de sécurité pour Windows XP (KB918118)
Mise à jour de sécurité pour Windows XP (KB918439)
Mise à jour de sécurité pour Windows XP (KB918899)
Mise à jour de sécurité pour Windows XP (KB919007)
Mise à jour de sécurité pour Windows XP (KB920213)
Mise à jour de sécurité pour Windows XP (KB920214)
Mise à jour de sécurité pour Windows XP (KB920670)
Mise à jour de sécurité pour Windows XP (KB920683)
Mise à jour de sécurité pour Windows XP (KB920685)
Mise à jour de sécurité pour Windows XP (KB921398)
Mise à jour de sécurité pour Windows XP (KB921503)
Mise à jour de sécurité pour Windows XP (KB921883)
Mise à jour de sécurité pour Windows XP (KB922616)
Mise à jour de sécurité pour Windows XP (KB922760)
Mise à jour de sécurité pour Windows XP (KB922819)
Mise à jour de sécurité pour Windows XP (KB923191)
Mise à jour de sécurité pour Windows XP (KB923414)
Mise à jour de sécurité pour Windows XP (KB923694)
Mise à jour de sécurité pour Windows XP (KB923980)
Mise à jour de sécurité pour Windows XP (KB924191)
Mise à jour de sécurité pour Windows XP (KB924270)
Mise à jour de sécurité pour Windows XP (KB924496)
Mise à jour de sécurité pour Windows XP (KB924667)
Mise à jour de sécurité pour Windows XP (KB925486)
Mise à jour de sécurité pour Windows XP (KB925902)
Mise à jour de sécurité pour Windows XP (KB926255)
Mise à jour de sécurité pour Windows XP (KB926436)
Mise à jour de sécurité pour Windows XP (KB927779)
Mise à jour de sécurité pour Windows XP (KB927802)
Mise à jour de sécurité pour Windows XP (KB928255)
Mise à jour de sécurité pour Windows XP (KB928843)
Mise à jour de sécurité pour Windows XP (KB929123)
Mise à jour de sécurité pour Windows XP (KB930178)
Mise à jour de sécurité pour Windows XP (KB931261)
Mise à jour de sécurité pour Windows XP (KB931784)
Mise à jour de sécurité pour Windows XP (KB932168)
Mise à jour de sécurité pour Windows XP (KB933729)
Mise à jour de sécurité pour Windows XP (KB935839)
Mise à jour de sécurité pour Windows XP (KB935840)
Mise à jour de sécurité pour Windows XP (KB936021)
Mise à jour de sécurité pour Windows XP (KB938829)
Mise à jour de sécurité pour Windows XP (KB941202)
Mise à jour pour Windows XP (KB894391)
Mise à jour pour Windows XP (KB898461)
Mise à jour pour Windows XP (KB900485)
Mise à jour pour Windows XP (KB904942)
Mise à jour pour Windows XP (KB908531)
Mise à jour pour Windows XP (KB910437)
Mise à jour pour Windows XP (KB911280)
Mise à jour pour Windows XP (KB916595)
Mise à jour pour Windows XP (KB920872)
Mise à jour pour Windows XP (KB922582)
Mise à jour pour Windows XP (KB927891)
Mise à jour pour Windows XP (KB929338)
Mise à jour pour Windows XP (KB930916)
Mise à jour pour Windows XP (KB931836)
Mise à jour pour Windows XP (KB933360)
Mise à jour pour Windows XP (KB936357)
Mise à jour pour Windows XP (KB938828)
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA
Mozilla Firefox (2.0.0.6)
Mozilla Firefox (2.0.0.7)
Mp3tag v2.39
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
Navilog1 3.3.0
Nokia Connectivity Cable Driver
Nokia Lifeblog 2.1
Nokia MTP driver
Nokia N73 highlights
Nokia Nseries Skin for Microsoft Windows Media Player
Nokia PC Connectivity Solution
Nokia PC Suite
Nokia themes for your device
Pando
QuickSFV (Remove only)
QuickTime
Security Update pour Microsoft .NET Framework 2.0 (KB928365)
SoulSeek Client 156c
Sound Blaster Live!
Symantec AntiVirus
VideoLAN VLC media player 0.8.6c
WebFldrs XP
Winamp (remove only)
Windows Defender
Windows Defender Signatures
Windows Driver Package - Nokia Modem (06/12/2006 6.81.0.21)
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player Firefox Plugin



Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 50EB-8722

Répertoire de C:\Program Files

19.10.2007 00:20 <REP> .
19.10.2007 00:20 <REP> ..
04.10.2006 13:16 <REP> AC3Filter
07.08.2007 15:03 <REP> Adobe
12.08.2007 01:07 <REP> Apple Software Update
26.02.2007 22:42 <REP> Audacity
06.04.2007 17:53 <REP> BitComet
01.09.2007 16:27 <REP> CamStudio
17.11.2006 17:39 <REP> Common Files
15.09.2006 13:46 <REP> ComPlus Applications
15.09.2006 15:51 <REP> Creative
30.06.2007 17:56 <REP> DIFX
28.09.2007 15:18 <REP> DivX
02.09.2007 01:43 <REP> Fichiers communs
19.10.2007 13:38 <REP> FlashFXP
10.10.2006 21:27 <REP> GeoVid
16.10.2007 19:48 <REP> Giganology
24.02.2007 15:47 <REP> Google
20.01.2007 00:47 <REP> Grisoft
14.09.2007 22:49 <REP> IDA
07.03.2007 16:25 <REP> Illustrate
10.10.2007 19:06 <REP> Internet Explorer
12.08.2007 01:09 <REP> iPod
12.08.2007 01:37 <REP> iTunes
13.09.2007 21:12 <REP> Java
20.01.2007 03:28 <REP> Kazaa Lite Resurrection
02.09.2007 01:44 <REP> Lavasoft
01.09.2007 16:07 <REP> Megaupload
15.09.2006 14:28 <REP> Messenger
15.09.2006 13:49 <REP> microsoft frontpage
21.09.2006 18:40 <REP> Microsoft Office
26.11.2006 21:14 <REP> Microsoft Visual Studio
15.09.2006 13:47 <REP> Movie Maker
19.09.2007 19:01 <REP> Mozilla Firefox
17.06.2007 00:12 <REP> mp3releaser
18.09.2007 18:24 <REP> Mp3tag
15.09.2006 13:45 <REP> MSN
15.09.2006 13:45 <REP> MSN Gaming Zone
07.04.2007 16:30 <REP> MSN Messenger
01.07.2007 03:02 <REP> MSXML 4.0
18.10.2007 22:07 <REP> Navilog1
15.09.2006 13:47 <REP> NetMeeting
30.06.2007 18:00 <REP> Nokia
15.09.2006 13:45 <REP> Online Services
15.06.2007 16:50 <REP> Outlook Express
27.09.2006 21:55 <REP> Pando Networks
16.10.2006 23:48 <REP> PSCS2Updater
14.07.2007 21:10 <REP> QuickTime
17.03.2007 18:23 <REP> Razorlame
16.12.2006 23:44 <REP> Real
23.09.2007 22:46 <REP> Replay Media Catcher
15.09.2006 13:47 <REP> Services en ligne
21.09.2006 18:38 <REP> Snapshot Viewer
18.10.2007 21:36 <REP> Soulseek
04.01.2007 01:37 <REP> Soulseek-Test
19.10.2007 12:58 <REP> Spybot - Search & Destroy
21.09.2006 18:45 <REP> Symantec
19.10.2007 12:01 <REP> Symantec AntiVirus
21.01.2007 16:45 <REP> ToniArts
01.09.2007 15:44 <REP> VideoLAN
09.03.2007 01:25 <REP> Visicom Media
01.09.2007 15:53 <REP> Winamp
08.12.2006 02:56 <REP> Windows Defender
17.12.2006 20:09 <REP> Windows Media Connect 2
15.10.2007 20:10 <REP> Windows Media Player
15.09.2006 13:45 <REP> Windows NT
13.12.2006 19:52 <REP> WinRAR
15.09.2006 13:49 <REP> xerox
0 fichier(s) 0 octets
68 Rép(s) 30'031'519'744 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 50EB-8722

Répertoire de C:\Program Files\fichiers communs

02.09.2007 01:43 <REP> .
02.09.2007 01:43 <REP> ..
30.10.2006 21:56 <REP> Adobe
30.10.2006 21:53 <REP> Adobe Systems Shared
14.07.2007 21:15 <REP> Apple
21.09.2006 18:41 <REP> Designer
17.11.2006 17:38 <REP> InstallShield
06.04.1999 14:27 99'840 IRAABOUT.DLL
09.12.1998 04:53 48'640 IRALPTTR.DLL
09.12.1998 04:53 70'144 IRAMDMTR.DLL
09.12.1998 04:53 186'368 IRAREG.DLL
09.12.1998 04:53 17'920 IRASRIAL.DLL
09.12.1998 04:53 31'744 IRAWEBTR.DLL
23.09.2006 17:02 <REP> Java
24.02.2007 20:17 <REP> Microsoft Shared
15.09.2006 13:47 <REP> MSSoap
30.06.2007 17:55 <REP> Nokia
15.09.2006 15:38 <REP> ODBC
30.06.2007 17:55 <REP> PCSuite
04.02.2007 01:31 <REP> Real
15.09.2006 13:47 <REP> Services
15.09.2006 15:38 <REP> SpeechEngines
21.09.2006 18:46 <REP> Symantec Shared
25.11.2006 22:36 <REP> Synacast
15.06.2007 16:50 <REP> System
02.09.2007 01:43 <REP> Wise Installation Wizard
6 fichier(s) 454'656 octets
20 Rép(s) 30'031'515'648 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 50EB-8722

Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders

21.09.2006 18:41 <REP> .
21.09.2006 18:41 <REP> ..
18.05.2001 15:57 561'209 MSONSEXT.DLL
03.06.1999 12:09 122'937 MSOWS409.DLL
07.03.2001 07:00 127'033 MSOWS40c.DLL
18.03.1999 06:37 593'977 RAGENT.DLL
4 fichier(s) 1'405'156 octets
2 Rép(s) 30'031'515'648 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 50EB-8722

Répertoire de C:\Program Files\common files

17.11.2006 17:39 <REP> .
17.11.2006 17:39 <REP> ..
0 fichier(s) 0 octets
2 Rép(s) 30'031'515'648 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 50EB-8722

Répertoire de C:\

24.05.2001 12:59 162'304 UNWISE.EXE
1 fichier(s) 162'304 octets
0 Rép(s) 30'031'515'648 octets libres




c:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 7.3.2.6\iTunesSetupAdmin.exe
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\ALUNotify.exe
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\AUpdate.exe
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\LuAll.exe
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\LuComServer.exe
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\LUInit.exe
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\NDetect.exe
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\SHFOLDER.EXE
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\SymantecRootInstaller.exe
c:\Documents and Settings\Marcel\Application Data\Adobe\Acrobat\7.0\Updater\AdbeRdr709_fr_FR.exe
c:\Documents and Settings\Marcel\Application Data\Macromedia\Flash Player\#SharedObjects\S44UEMFT\localhost\Program Files\Replay Media Catcher\FLVPlayer.exe
c:\Documents and Settings\Marcel\Application Data\Microsoft\Installer\{89661B04-C646-4412-B6D3-5E19F02F1F37}\ARPPRODUCTICON.exe
c:\Documents and Settings\Marcel\Bureau\OTMoveIt.exe
c:\Documents and Settings\Marcel\Bureau\slsk.exe
c:\Documents and Settings\Marcel\Bureau\DiagHelp\DiagHelp\catchme.exe
c:\Documents and Settings\Marcel\Bureau\DiagHelp\DiagHelp\diff.exe
c:\Documents and Settings\Marcel\Bureau\DiagHelp\DiagHelp\dumphive.exe
c:\Documents and Settings\Marcel\Bureau\DiagHelp\DiagHelp\FilesInfoCmd.exe
c:\Documents and Settings\Marcel\Bureau\DiagHelp\DiagHelp\find2.exe
c:\Documents and Settings\Marcel\Bureau\DiagHelp\DiagHelp\Fport.exe
c:\Documents and Settings\Marcel\Bureau\DiagHelp\DiagHelp\grep.exe
c:\Documents and Settings\Marcel\Bureau\DiagHelp\DiagHelp\KProcCheck.exe
c:\Documents and Settings\Marcel\Bureau\DiagHelp\DiagHelp\LFiles.exe
c:\Documents and Settings\Marcel\Bureau\DiagHelp\DiagHelp\LISTDLLS.exe
c:\Documents and Settings\Marcel\Bureau\DiagHelp\DiagHelp\md5sums.exe
c:\Documents and Settings\Marcel\Bureau\DiagHelp\DiagHelp\pslist.exe
c:\Documents and Settings\Marcel\Bureau\DiagHelp\DiagHelp\streams.exe
c:\Documents and Settings\Marcel\Bureau\DiagHelp\DiagHelp\swreg.exe
c:\Documents and Settings\Marcel\Bureau\hijackthis\HijackThis.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\Navilog1.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SDFix.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\clean\pskill.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\LopSD\Lop S&D\catchme.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\LopSD\Lop S&D\Process.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\dumphive.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\exit.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\GenericRenosFix.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\HostsChk.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\Process.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\Reboot.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\restart.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\SmiUpdate.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\SrchSTS.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\swreg.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\swsc.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\swxcacls.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\unzip.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\VCCLSID.exe
c:\Documents and Settings\Marcel\Bureau\Logiciel pr L analyse\SmitfraudFix\SmitfraudFix\WS2Fix.exe
c:\Documents and Settings\Marcel\Bureau\mp3releaser\mp3Releaser.exe
c:\Documents and Settings\Marcel\Local Settings\Application Data\Pando\Pando Files\Upgrade14611\PandoSetup.exe
c:\Documents and Settings\Marcel\Local Settings\Application Data\Pando\Pando Files\Upgrade15317\PandoSetup.exe
c:\Documents and Settings\Marcel\Local Settings\Application Data\Pando\Pando Files\Upgrade16074\PandoSetup.exe
c:\Documents and Settings\Marcel\Local Settings\Application Data\Pando\Pando Files\Upgrade17678\PandoSetup.exe
c:\Documents and Settings\Marcel\Local Settings\Application Data\Pando\Pando Files\Upgrade18255\PandoSetup.exe
c:\Documents and Settings\Marcel\Local Settings\Application Data\Pando\Pando Files\Upgrade19025\PandoSetup.exe
c:\Documents and Settings\Marcel\Local Settings\Application Data\Pando\Pando Files\Upgrade21062\PandoSetup.exe
c:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\WQGQP39N\iTunesSetupAdmin[1].exe
c:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\WQGQP39N\iTunesSetupAdmin[2].exe
c:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\Y2C5MTK0\iTunesSetupAdmin[1].exe
c:\Documents and Settings\All Users\Application Data\Grisoft\AVG Anti-Spyware 7.5\Downloads\help.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\Default\MpEngine.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\{E0A3A808-0253-4C9A-ADC4-A930688058D2}\mpengine.dll
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\capicom.dll
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\LuComServerPs.dll
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\LUPreCon.dll
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\LUSESAIntegration.dll
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\NetDetectController.dll
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\pegclient.dll
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\pegcommon.dll
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\ProductRegCOM.dll
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\ProductRegCOMPs.dll
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\Psapi.Dll
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\S32Live1.dll
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\S32Luis1.dll
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuMMInst\S32LUWI1.dll
c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll
c:\Documents and Settings\Marcel\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll

****** Fin du rapport DiagHelp
19 Octobre 2007 14:03:00

suite à ta question de savoir si j avais utilisé quelque chose
avant "OTMovIt", voila ce que j ai fait avant :


Télécharge SDFix

Enregistre le sur ton le bureau.

Lances le.
Fais install afin qu’il puisse s’extraire.

Redémarre en mode sans échec
/!\ Ne jamais démarrer en mode sans échec via MSCONFIG /!\

Lance SDFix.
Double clique sur RunThis.bat (Le .bat apparaît si tu fais ça : Aller dans poste de travail>outils>option des dossiers>affichage>décocher masquer les extensions dont le type est connu. - - > Appliquer - - > OK)
Appuie sur Y pour le lancer.

Il te sera demandé d'appuyer sur une touche pour redemarrer , fais le
Il est probable que le redémarrage soit un peu plus long que d’habitude.
Une fois l’apparition de ton Bureau, il affichera Finished

Appuie sur une touche.

Un rapport est généré , poste le dans ta réponse.
Il se trouve également. dans le dossier SDFix >Report.txt<


Télécharge Lop S&D
Dézippe-le sur le bureau
Lance le fichier Scan.bat
Exécute l’option R .
Poste le rapport généré en fin d’analyse.
Le rapport se trouve aussi ici : C:\Lopr.txt
19 Octobre 2007 18:10:38

re
ok, (fais attention avec les fixtools, certains sont assez corrosifs...)
poste le rapport Report.txt
19 Octobre 2007 20:07:15

voila le fichier "report.txt"


SDFix: Version 1.109

Run by Marcel on 18.10.2007 at 19:02

Microsoft Windows XP [version 5.1.2600]

Running From: C:\SDFix

Safe Mode:
Checking Services:


Restoring Windows Registry Values
Restoring Windows Default Hosts File
Restoring Default HomePage Value
Restoring Default Desktop Components Value

Rebooting...


Normal Mode:
Checking Files:

Trojan Files Found:

C:\Documents and Settings\Marcel\Favoris\Error Cleaner.url - Deleted
C:\Documents and Settings\Marcel\Favoris\Privacy Protector.url - Deleted
C:\Documents and Settings\Marcel\Favoris\Spyware&Malware Protection.url - Deleted
C:\WINDOWS\privacy_danger\index.htm - Deleted
C:\WINDOWS\privacy_danger\images\capt.gif - Deleted
C:\WINDOWS\privacy_danger\images\danger.jpg - Deleted
C:\WINDOWS\privacy_danger\images\down.gif - Deleted
C:\WINDOWS\privacy_danger\images\spacer.gif - Deleted
C:\WINDOWS\dat.txt - Deleted
C:\WINDOWS\hostctrl.dll - Deleted
C:\WINDOWS\hstsys.dll - Deleted
C:\WINDOWS\nmcuninstall.exe - Deleted
C:\WINDOWS\ntspknlg.dll - Deleted
C:\WINDOWS\optnet.dll - Deleted


Folder C:\WINDOWS\privacy_danger - Removed

Removing Temp Files...

ADS Check:

C:\WINDOWS
No streams found.

C:\WINDOWS\system32
No streams found.

C:\WINDOWS\system32\svchost.exe
No streams found.

C:\WINDOWS\system32\ntoskrnl.exe
No streams found.



Final Check:

Remaining Services:
------------------



Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\K-litePro\\k-litepro.exe"="C:\\Program Files\\K-litePro\\k-litepro.exe:*:Enabled:K-litePro Ultimate File Sharing"
"C:\\Program Files\\Kazaa Lite Resurrection\\kazaalite.kpp"="C:\\Program Files\\Kazaa Lite Resurrection\\kazaalite.kpp:*:Enabled:kazaalite"
"C:\\Program Files\\Pando Networks\\Pando\\pando.exe"="C:\\Program Files\\Pando Networks\\Pando\\pando.exe:*:Enabled:p ando"
"C:\\Program Files\\Real\\RealPlayer\\realplay.exe"="C:\\Program Files\\Real\\RealPlayer\\realplay.exe:*:Enabled:RealPlayer"
"C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"
"C:\\Program Files\\Soulseek-Test\\slsk.exe"="C:\\Program Files\\Soulseek-Test\\slsk.exe:*:Enabled:SoulSeek"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\PPMate\\PPMate\\ppmate.exe"="C:\\Program Files\\PPMate\\PPMate\\ppmate.exe:*:Enabled:p PMate"
"C:\\WINDOWS\\system32\\dxdiag.exe"="C:\\WINDOWS\\system32\\dxdiag.exe:*:D isabled:o util de diagnostic Microsoft DirectX"
"C:\\Documents and Settings\\Marcel\\Bureau\\slsk.exe"="C:\\Documents and Settings\\Marcel\\Bureau\\slsk.exe:*:Enabled:SoulSeek"
"C:\\Program Files\\Soulseek\\slsk.exe"="C:\\Program Files\\Soulseek\\slsk.exe:*:Enabled:SoulSeek"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Program Files\\BitComet\\BitComet.exe"="C:\\Program Files\\BitComet\\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client"
"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Program Files\\Microsoft Office\\Office\\EXCEL.EXE"="C:\\Program Files\\Microsoft Office\\Office\\EXCEL.EXE:*:Enabled:Microsoft Excel for Windows"
"C:\\Documents and Settings\\Marcel\\Bureau\\Msngalaxy\\Msn galaxy.exe"="C:\\Documents and Settings\\Marcel\\Bureau\\Msngalaxy\\Msn galaxy.exe:*:Enabled:Msn galaxy"
"C:\\Documents and Settings\\Marcel\\Bureau\\Msn galaxy.exe"="C:\\Documents and Settings\\Marcel\\Bureau\\Msn galaxy.exe:*:Enabled:Msn galaxy"
"C:\\Documents and Settings\\Marcel\\Local Settings\\Temp\\Rar$EX00.016\\Msn galaxy.exe"="C:\\Documents and Settings\\Marcel\\Local Settings\\Temp\\Rar$EX00.016\\Msn galaxy.exe:*:Enabled:Msn galaxy"
"C:\\Program Files\\FlashFXP\\FlashFXP.exe"="C:\\Program Files\\FlashFXP\\FlashFXP.exe:*:Enabled:FlashFXP v3"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Program Files\\FlashFXP\\FlashFXP.exe"="C:\\Program Files\\FlashFXP\\FlashFXP.exe:*:Enabled:FlashFXP v3"

Remaining Files:
---------------

File Backups: - C:\SDFix\backups\backups.zip

Files with Hidden Attributes:

Sat 14 Jul 2007 4,348 A.SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Sun 24 Sep 2006 20,992 ...H. --- "C:\Documents and Settings\Marcel\Mes documents\~WRL0003.tmp"
Sat 9 Dec 2006 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"
Sat 13 Nov 2004 37,376 ...H. --- "C:\Program Files\Fichiers communs\Adobe\ESD\DLMCleanup.exe"

Finished!
19 Octobre 2007 20:58:15

ok

Mets à jours AVG Anti-Spyware

~Télécharge CCleaner:

http://www.filehippo.com/download_ccleaner/

~Lors de l'installation décoche: "Ajouter la Barre d'Outils Yahoo! Ccleaner"


1

Redémarre en mode sans échec. (f8 au démarrage)

2


~Lance CCleaner:

Clique sur le bouton chercher les erreurs, tu fais « réparer les erreurs »
Clique sur le bouton nettoyage, tu fais « lancer le nettoyage ».


3

~Lance AVG anti-spyware.

~Dans l’onglet analyse, dans Paramètre, clique sur Actions recommandées : choisis Quarantaine.

~Clique sur Analyse puis Analyse complète du système pour commencer le scan.

~Une fois que le scan est terminé, clique sur Appliquer toutes les actions, pour supprimer tous les fichiers infectés trouvés par AVG Anti-Spyware.

~Une fois que la suppression des fichiers infectés a été faite, clique sur enregistrer le rapport et sauvegarde-le sur le bureau.
~Redémarre normalement

4


~Copie/Colle le rapport AVG anti-spyware.

+++++++++++++++++++++++++++++++++
Tuto de CCleaner: (merci à Malekal) .
http://www.malekal.com/tutorial_CCleaner.html

TutoAVG antispyware : (merci à Malekal) .
http://www.malekal.com/tutorial_AVG_AntiSpyware.html


20 Octobre 2007 00:46:29

Bonsoir

voila le rapport de "CClean" et "AVG Anti-Spyware"

NETTOYAGE COMPLET - (18.784 secs)
------------------------------------------------------------------------------------------
66.5MB supprimés.
------------------------------------------------------------------------------------------

Détails des fichiers effacés
------------------------------------------------------------------------------------------
Fichiers Temporaires d'Internet Explorer (fichiers 701) 6.64MB
C:\Documents and Settings\Marcel\Cookies\marcel@hotmail.msn[1].txt 71 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@rad.msn[2].txt 690 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@emjcd[2].txt 175 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@www.fr.lastminute[1].txt 294 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@google[1].txt 127 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@track.effiliation[1].txt 86 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@xiti[1].txt 106 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@tp.msn[1].txt 71 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@messenger.msn[1].txt 95 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@adserver.aol[1].txt 108 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@metaffiliation[2].txt 378 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@google[2].txt 126 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@netavenir[1].txt 111 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@login.live[1].txt 177 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@maismoinscher[2].txt 270 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@affiliation.fotovista[1].txt 320 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@www.kaspersky[1].txt 93 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@rad.live[2].txt 700 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@cdiscount[2].txt 161 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@2o7[2].txt 135 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@tradedoubler[1].txt 360 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@p.live[1].txt 103 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@c.msn[2].txt 67 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@effiliation[1].txt 511 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@onlinestores.metaservices.microsoft[1].txt 147 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@tracking.publicidees[2].txt 318 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@webscanner.kaspersky[1].txt 115 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@www.mypix[1].txt 101 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@doubleclick[2].txt 88 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@promobenef[1].txt 1.15KB
C:\Documents and Settings\Marcel\Cookies\marcel@idregie[1].txt 299 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@fichiii[1].txt 337 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@yahoo[1].txt 81 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@atdmt[2].txt 101 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@lastminute[1].txt 70 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@www.mypix[3].txt 1.25KB
C:\Documents and Settings\Marcel\Cookies\marcel@weborama[2].txt 91 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@blancheporte[1].txt 83 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@www.maismoinscher[1].txt 118 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@apmebf[2].txt 177 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@bluestreak[1].txt 224 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@od2[1].txt 101 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@atraxio[1].txt 134 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@www.priceminister[2].txt 297 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@espace.netavenir[1].txt 320 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@msn[1].txt 432 bytes
C:\Documents and Settings\Marcel\Cookies\marcel@live[2].txt 407 bytes
Marqué pour l'effacement: C:\Documents and Settings\Marcel\Local Settings\Temporary Internet Files\Content.IE5\index.dat
Marqué pour l'effacement: C:\Documents and Settings\Marcel\Cookies\index.dat
C:\WINDOWS\system32\wbem\Logs\mofcomp.log 1.39KB
C:\WINDOWS\system32\wbem\Logs\wbemess.log 27.08KB
C:\WINDOWS\system32\wbem\Logs\wmiprov.log 22.32KB
C:\WINDOWS\system32\wbem\Logs\wbemess.lo_ 64.07KB
C:\WINDOWS\0.log 0 bytes
C:\WINDOWS\comsetup.log 33.99KB
C:\WINDOWS\DPINST.LOG 4.65KB
C:\WINDOWS\FaxSetup.log 0.10MB
C:\WINDOWS\iis6.log 16.56KB
C:\WINDOWS\imsins.log 1.36KB
C:\WINDOWS\KB921503.log 17.01KB
C:\WINDOWS\KB929123.log 19.91KB
C:\WINDOWS\KB933360.log 21.03KB
C:\WINDOWS\KB933566-IE7.log 23.44KB
C:\WINDOWS\KB933729.log 12.50KB
C:\WINDOWS\KB935839.log 18.14KB
C:\WINDOWS\KB935840.log 18.50KB
C:\WINDOWS\KB936021.log 18.10KB
C:\WINDOWS\KB936357.log 11.02KB
C:\WINDOWS\KB936782.log 7.45KB
C:\WINDOWS\KB937143-IE7.log 21.89KB
C:\WINDOWS\KB938127-IE7.log 11.43KB
C:\WINDOWS\KB938828.log 17.62KB
C:\WINDOWS\KB938829.log 16.81KB
C:\WINDOWS\KB939653-IE7.log 22.31KB
C:\WINDOWS\KB939683.log 7.22KB
C:\WINDOWS\KB941202.log 10.02KB
C:\WINDOWS\msgsocm.log 5.13KB
C:\WINDOWS\msxml4-KB936181-enu.LOG 0.28MB
C:\WINDOWS\ntdtcsetup.log 20.60KB
C:\WINDOWS\ocgen.log 48.41KB
C:\WINDOWS\ocmsn.log 5.68KB
C:\WINDOWS\regopt.log 906 bytes
C:\WINDOWS\setupact.log 1.38KB
C:\WINDOWS\setupapi.log 78.26KB
C:\WINDOWS\setuperr.log 0 bytes
C:\WINDOWS\spupdsvc.log 923 bytes
C:\WINDOWS\Sti_Trace.log 0 bytes
C:\WINDOWS\tsoc.log 39.16KB
C:\WINDOWS\updspapi.log 16.83KB
C:\WINDOWS\wiadebug.log 216 bytes
C:\WINDOWS\wiaservc.log 50 bytes
C:\WINDOWS\WindowsUpdate.log 1.97MB
C:\WINDOWS\wmsetup.log 14.67KB
C:\WINDOWS\wmsetup10.log 296 bytes
C:\WINDOWS\imsins.BAK 1.36KB
C:\WINDOWS\ntbtlog.txt 0.82MB
C:\WINDOWS\Replay Media Catcher Uninstall Log.txt 5.63KB
C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\drwtsn32.log 12.0MB
C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp 21.03KB
C:\WINDOWS\Debug\Dfsr00002.log 0.33MB
C:\WINDOWS\Debug\mrt.log 4.61KB
C:\WINDOWS\Debug\mrteng.log 2.83KB
C:\WINDOWS\SchedLgU.Txt 31.56KB
Cache Internet de Firefox/Mozilla (16 fichiers) 5.33MB
Cookie supprimé: megaupload.com
Cookie supprimé: www.megaupload.com
Cookie supprimé: megavideo.com
Cookie supprimé: yahoo.com
C:\Documents and Settings\Marcel\Application Data\Mozilla\Firefox\Profiles\n3b0va24.default\history.dat 1.90KB
C:\Documents and Settings\Marcel\Application Data\Mozilla\Firefox\Profiles\n3b0va24.default\downloads.rdf 206 bytes
C:\Documents and Settings\Marcel\Local Settings\Application Data\Adobe\Acrobat\7.0\Cache\Search70\81048c0c7be1a7e2063d6c440c74dd9a.idx 0.33MB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\0\1b6359c0-4b941ed5 948 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\0\1b6359c0-4b941ed5.idx 268 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\0\1b6359c0-4c0fedea 948 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\0\1b6359c0-4c0fedea.idx 268 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\0\22a01d00-4a1c2b45 948 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\0\22a01d00-4a1c2b45.idx 268 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\0\32915e80-35f4f7d8 2.97KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\0\32915e80-35f4f7d8.idx 306 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\0\6e8b24c0-3a5b1cda 2.03KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\0\6e8b24c0-3a5b1cda.idx 313 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\1\22e16f41-502c9341 6.11KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\1\22e16f41-502c9341.idx 303 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\1\50b99881-14de69de 938 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\1\50b99881-14de69de.idx 276 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\10\5741b24a-74fcd864 27.13KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\10\5741b24a-74fcd864.idx 294 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\10\e40e38a-13a84308 1.34KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\10\e40e38a-13a84308.idx 277 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\11\6f6780cb-45a84677 938 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\11\6f6780cb-45a84677.idx 276 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\12\1da4800c-4d5cc15a 595 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\12\1da4800c-4d5cc15a.idx 308 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\12\45fb1d4c-33aef846 3.69KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\12\45fb1d4c-33aef846.idx 367 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\12\719e49cc-78677263 1.50KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\12\719e49cc-78677263.idx 305 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\12\74ba3c4c-1aa32569 0.11MB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\12\74ba3c4c-1aa32569.idx 304 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\12\7821394c-5e66254d 2.64KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\12\7821394c-5e66254d.idx 305 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\12\d2cc48c-2cc6a0de 4.14KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\12\d2cc48c-2cc6a0de.idx 275 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\13\3158d3cd-43306786 939 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\13\3158d3cd-43306786.idx 268 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\13\4a9f224d-649adab6 617 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\13\4a9f224d-649adab6.idx 309 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\13\66a63e0d-2d7da7cb 1.08KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\13\66a63e0d-2d7da7cb.idx 289 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\13\6c9f9dcd-114d9858 18.54KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\13\6c9f9dcd-114d9858.idx 282 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\13\6f65400d-400136c9 1.08KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\13\6f65400d-400136c9.idx 289 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\13\7973d74d-413bca88 35.67KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\13\7973d74d-413bca88.idx 276 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\15\1b57f08f-3febd30a 4.56KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\15\1b57f08f-3febd30a.idx 273 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\15\489cd18f-404daf13 6.61KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\15\489cd18f-404daf13.idx 281 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\15\57d539cf-7e13c851 15.14KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\15\57d539cf-7e13c851.idx 306 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\15\781be70f-768bb807 64 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\15\781be70f-768bb807.idx 293 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\15\7ee7d34f-601b95c1 1.65KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\15\7ee7d34f-601b95c1.idx 277 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\16\1d997ed0-558259b8 7.18KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\16\1d997ed0-558259b8.idx 277 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\16\1e74010-1f4ca7d2 1.60KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\16\1e74010-1f4ca7d2.idx 301 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\16\2c23b90-70d8d73d-0307.0004.0701.0003- 0.48MB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\16\2c23b90-70d8d73d-0307.0004.0701.0003-.idx 379 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\16\42a00610-26b331bb 1.58KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\16\42a00610-26b331bb.idx 310 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\16\4b5ad910-31ca0271 1.23KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\16\4b5ad910-31ca0271.idx 286 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\17\4317851-240e15c6 929 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\17\4317851-240e15c6.idx 270 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\17\602fcf51-5c696af0 18.50KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\17\602fcf51-5c696af0.idx 302 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\17\68949b51-1cb9a6e4 35.19KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\17\68949b51-1cb9a6e4.idx 293 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\18\2fd90612-134befee 635 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\18\2fd90612-134befee.idx 313 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\18\2fd90612-42f3d50c 635 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\18\2fd90612-42f3d50c.idx 313 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\18\43373912-78e5cf0a 11.79KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\18\43373912-78e5cf0a.idx 277 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\18\6f4e7e12-6b911cab 8.65KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\18\6f4e7e12-6b911cab.idx 277 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\18\7e449ed2-2c5d8dbe 41.94KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\18\7e449ed2-2c5d8dbe.idx 315 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\19\3959d813-47cdc05e 5.05KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\19\3959d813-47cdc05e.idx 270 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\19\4c7c22d3-7a325433 1.55KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\19\4c7c22d3-7a325433.idx 277 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\19\579c2693-60356d87 90 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\19\579c2693-60356d87.idx 271 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\19\6312d653-15735472 614 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\19\6312d653-15735472.idx 306 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\19\7fba5453-6e8b3d5f 33.83KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\19\7fba5453-6e8b3d5f.idx 317 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\2\104dd602-329dd74c 8.07KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\2\104dd602-329dd74c.idx 281 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\20\1e2bba14-5c5f4a0f 1.64KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\20\1e2bba14-5c5f4a0f.idx 300 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\20\30fe9814-56a90cac 1.75KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\20\30fe9814-56a90cac.idx 292 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\20\35e11e14-40740d59 40.11KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\20\35e11e14-40740d59.idx 304 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\20\4f318094-77aec337 2.35KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\20\4f318094-77aec337.idx 309 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\20\73de6354-2b6bc608 906 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\20\73de6354-2b6bc608.idx 346 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\21\2bc0fe55-74fd2983 7.75KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\21\2bc0fe55-74fd2983.idx 275 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\21\2c715a55-419945bf 1.60KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\21\2c715a55-419945bf.idx 309 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\21\3c3e9ad5-60ac2c83 927 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\21\3c3e9ad5-60ac2c83.idx 267 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\21\531eb095-730a2866 1.08KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\21\531eb095-730a2866.idx 289 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\21\56bb32d5-3b78f83b 2.41KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\21\56bb32d5-3b78f83b.idx 304 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\22\17af7816-304522bb 931 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\22\17af7816-304522bb.idx 275 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\22\17af7816-4572bb70 931 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\22\17af7816-4572bb70.idx 275 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\22\47aeea96-59902d39 1.52KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\22\47aeea96-59902d39.idx 311 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\22\76b3f156-2a82e441 927 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\22\76b3f156-2a82e441.idx 270 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\22\76b3f156-31345b7f 927 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\22\76b3f156-31345b7f.idx 270 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\22\7f609616-18995670 1.06KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\22\7f609616-18995670.idx 303 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\23\4af0bd57-46671316 2.44KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\23\4af0bd57-46671316.idx 275 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\23\57e1d5d7-31122a04 11.42KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\23\57e1d5d7-31122a04.idx 282 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\23\61135917-7b372d4e 1.71KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\23\61135917-7b372d4e.idx 337 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\23\63b9f017-27dc1e8b 1.59KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\23\63b9f017-27dc1e8b.idx 308 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\24\1833e098-1fbd9564 1.36KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\24\1833e098-1fbd9564.idx 310 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\24\25cc9b58-488168ff 1.64KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\24\25cc9b58-488168ff.idx 301 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\24\27e893d8-72eab989 1.50KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\24\27e893d8-72eab989.idx 274 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\24\32cbded8-65ca43b9 54.54KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\24\32cbded8-65ca43b9.idx 427 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\24\58c09018-435e90e8 559 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\24\58c09018-435e90e8.idx 291 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\24\58c09018-6a05f831 559 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\24\58c09018-6a05f831.idx 291 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\24\7bb3e998-2d343946 0.54MB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\24\7bb3e998-2d343946.idx 354 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\25\32da1499-29949566 64 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\25\32da1499-29949566.idx 293 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\25\4ae9cc19-4d22296b 1.85KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\25\4ae9cc19-4d22296b.idx 275 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\25\66daf799-19b5e5e8 1.60KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\25\66daf799-19b5e5e8.idx 312 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\26\44545d9a-38530f06 26.21KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\26\44545d9a-38530f06.idx 302 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\26\71a3f5a-7a248334 7.23KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\26\71a3f5a-7a248334.idx 282 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\26\7dc623da-503e7b17 4.14KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\26\7dc623da-503e7b17.idx 275 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\27\10aca01b-77a23e75 7.96KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\27\10aca01b-77a23e75.idx 300 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\27\14a0471b-34f35ee3 932 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\27\14a0471b-34f35ee3.idx 273 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\27\3cdde01b-2a494acd 846 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\27\3cdde01b-2a494acd.idx 276 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\27\5702f71b-13eba752 14.55KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\27\5702f71b-13eba752.idx 285 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\27\6409cd5b-19930664 2.44KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\27\6409cd5b-19930664.idx 407 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\27\673d2e9b-5ae916f4 1.56KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\27\673d2e9b-5ae916f4.idx 312 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\28\1f56bfdc-3d272008 932 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\28\1f56bfdc-3d272008.idx 270 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\28\41b281c-2e85a5ff 2.72KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\28\41b281c-2e85a5ff.idx 272 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\28\4ce6a0dc-6e6a4b89 642 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\28\4ce6a0dc-6e6a4b89.idx 312 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\28\4ce6a0dc-7e6d102a 642 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\28\4ce6a0dc-7e6d102a.idx 312 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\28\5588711c-62d210fb-0307.0003.0612.0003- 0.48MB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\28\5588711c-62d210fb-0307.0003.0612.0003-.idx 334 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\28\5747501c-10aee450 1.98KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\28\5747501c-10aee450.idx 276 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\28\5abef29c-13ba90f1 0.16MB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\28\5abef29c-13ba90f1.idx 364 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\29\1277b9d-1eaa53cb 16.64KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\29\1277b9d-1eaa53cb.idx 282 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\29\34c25a1d-1403dde1 0.54MB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\29\34c25a1d-1403dde1.idx 354 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\29\4d2d089d-47875cce 13.39KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\29\4d2d089d-47875cce.idx 312 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\29\68ec1d9d-7ac44c83 1.45KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\29\68ec1d9d-7ac44c83.idx 298 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\3\3f9c0483-5afe2d92 1.65KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\3\3f9c0483-5afe2d92.idx 276 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\3\8d82403-34b93eed 521 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\3\8d82403-34b93eed.idx 305 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\30\150da31e-5445be74 593 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\30\150da31e-5445be74.idx 313 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\30\150da31e-57807c9e 593 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\30\150da31e-57807c9e.idx 313 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\30\18d1d45e-5ca3bff4-0307.0003.0604.0003- 0.48MB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\30\18d1d45e-5ca3bff4-0307.0003.0604.0003-.idx 334 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\30\348d9c9e-6cc3864f 21.48KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\30\348d9c9e-6cc3864f.idx 274 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\30\5a44561e-7c17996a 3.30KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\30\5a44561e-7c17996a.idx 275 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\30\7bb14f9e-1ecd242a 927 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\30\7bb14f9e-1ecd242a.idx 270 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\31\11974c5f-5b1cdaf8 7.30KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\31\11974c5f-5b1cdaf8.idx 367 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\31\23aca4df-785c634b 521 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\31\23aca4df-785c634b.idx 308 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\31\2f63cfdf-1342df04 397 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\31\2f63cfdf-1342df04.idx 270 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\31\62a04adf-16e3920d 559 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\31\62a04adf-16e3920d.idx 291 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\32\1d2dc120-27654743 2.29KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\32\1d2dc120-27654743.idx 308 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\32\3b6b81a0-4277bd3f 57.00KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\32\3b6b81a0-4277bd3f.idx 305 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\32\513c38a0-2237e282 1.36KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\32\513c38a0-2237e282.idx 307 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\32\640c2560-4279ea4e-0307.0003.0612.0003- 0.45MB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\32\640c2560-4279ea4e-0307.0003.0612.0003-.idx 339 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\32\6ebef220-757a43df 8.59KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\32\6ebef220-757a43df.idx 282 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\33\11d734e1-42b6542b 64 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\33\11d734e1-42b6542b.idx 293 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\33\12d784a1-38cf5741 927 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\33\12d784a1-38cf5741.idx 267 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\33\27ed6e21-1930ac4b 9.11KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\33\27ed6e21-1930ac4b.idx 271 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\35\225704a3-46802f93 173 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\35\225704a3-46802f93.idx 272 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\35\6ba67223-58c2eb55 2.21KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\35\6ba67223-58c2eb55.idx 349 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\35\6e0e52a3-7b562880 6.85KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\35\6e0e52a3-7b562880.idx 271 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\35\77fdff63-2e697fc7 20.11KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\35\77fdff63-2e697fc7.idx 283 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\36\46e92ce4-550fed23 1.47KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\36\46e92ce4-550fed23.idx 298 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\36\504feae4-12c3dfeb 932 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\36\504feae4-12c3dfeb.idx 273 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\36\504feae4-6a1c761e 932 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\36\504feae4-6a1c761e.idx 273 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\36\51c0e824-21173726 618 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\36\51c0e824-21173726.idx 307 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\36\633f3da4-6889a032 50.17KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\36\633f3da4-6889a032.idx 279 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\36\770429a4-2e338e0c 32.90KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\36\770429a4-2e338e0c.idx 295 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\37\2c314d25-195f86df 4.84KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\37\2c314d25-195f86df.idx 348 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\37\75601ca5-2a60bf79 34.16KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\37\75601ca5-2a60bf79.idx 301 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\37\7c964ca5-48b8f619 1.88KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\37\7c964ca5-48b8f619.idx 348 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\37\e61ada5-6e3bb160 27.13KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\37\e61ada5-6e3bb160.idx 297 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\38\2fb048e6-5d120ec7 17.91KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\38\2fb048e6-5d120ec7.idx 275 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\38\316980e6-62bce428 1.52KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\38\316980e6-62bce428.idx 308 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\38\6f4ffc26-1c52bbf4-0307.0003.0612.0003- 0.48MB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\38\6f4ffc26-1c52bbf4-0307.0003.0612.0003-.idx 338 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\38\7c2d1ea6-12b10434 19.17KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\38\7c2d1ea6-12b10434.idx 282 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\39\2bad2c27-74991953 924 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\39\2bad2c27-74991953.idx 268 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\39\39316fa7-554e9f9a 927 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\39\39316fa7-554e9f9a.idx 270 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\39\4d748a7-7ded709e 1.16KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\39\4d748a7-7ded709e.idx 274 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\39\4d8dee27-2939e6f8 2.97KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\39\4d8dee27-2939e6f8.idx 309 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\39\66344b67-60caf0ea 16.30KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\39\66344b67-60caf0ea.idx 294 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\39\6fb1e2e7-5efbf498 3.99KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\39\6fb1e2e7-5efbf498.idx 276 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\39\6ff51aa7-5dfed0d2 22.43KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\39\6ff51aa7-5dfed0d2.idx 476 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\4\24a42b04-13376be0 924 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\4\24a42b04-13376be0.idx 268 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\4\24a42b04-260f6267 924 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\4\24a42b04-260f6267.idx 268 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\40\653cf728-16a1e7ed 927 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\40\653cf728-16a1e7ed.idx 267 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\40\653cf728-458b0117 927 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\40\653cf728-458b0117.idx 267 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\41\2a47bc29-53888f1a 939 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\41\2a47bc29-53888f1a.idx 268 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\41\344f9ba9-1b6dacaa 41.18KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\41\344f9ba9-1b6dacaa.idx 303 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\41\4b67b9e9-5bcbaff1 0.18MB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\41\4b67b9e9-5bcbaff1.idx 318 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\41\4dde1b29-5c7e9424 7.69KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\41\4dde1b29-5c7e9424.idx 281 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\41\64d97729-63037b0a 336 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\41\64d97729-63037b0a.idx 287 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\41\a3f1b69-3e7c54c7 935 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\41\a3f1b69-3e7c54c7.idx 269 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\42\675c27ea-1f8f817f 935 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\42\675c27ea-1f8f817f.idx 269 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\42\cf2c02a-25e1115d 12.03KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\42\cf2c02a-25e1115d.idx 293 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\43\3ae5b0eb-6f7b276c 139 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\43\3ae5b0eb-6f7b276c.idx 288 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\43\62d57eb-6d1b4a38 5.75KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\43\62d57eb-6d1b4a38.idx 286 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\43\74e668eb-3ba1de9b 1.45KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\43\74e668eb-3ba1de9b.idx 312 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\43\74fde5ab-69bf80e4 6.52KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\43\74fde5ab-69bf80e4.idx 306 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\43\7e6a852b-11551c5a 0.21MB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\43\7e6a852b-11551c5a.idx 318 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\44\2f25b46c-62f6fd2d 15.52KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\44\2f25b46c-62f6fd2d.idx 282 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\44\4169c2ac-3a9738a4 0.15MB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\44\4169c2ac-3a9738a4.idx 268 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\44\57610e6c-43f681f3 253 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\44\57610e6c-43f681f3.idx 270 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\44\5e5b572c-54f0b055 1.58KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\44\5e5b572c-54f0b055.idx 313 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\45\214d12d-45921374 595 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\45\214d12d-45921374.idx 305 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\45\2d3001ad-4d36b1e2 1.59KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\45\2d3001ad-4d36b1e2.idx 305 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\45\2e5323ad-3b2845a8 31.51KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\45\2e5323ad-3b2845a8.idx 307 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\45\66db67ad-2a5b2dda 2.29KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\45\66db67ad-2a5b2dda.idx 305 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\45\7a0a7a6d-59f2d0e2 41.94KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\45\7a0a7a6d-59f2d0e2.idx 315 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\45\7a80fd2d-4ab92748 6.39KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\45\7a80fd2d-4ab92748.idx 290 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\46\2316f8ae-37e5772d 939 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\46\2316f8ae-37e5772d.idx 268 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\46\2316f8ae-6d8b6e7d 939 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\46\2316f8ae-6d8b6e7d.idx 268 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\46\24b8762e-1e169eab 1.01KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\46\24b8762e-1e169eab.idx 310 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\46\2d02a12e-50c75d6a 357 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\46\2d02a12e-50c75d6a.idx 276 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\46\41d08f6e-553cf2be 929 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\46\41d08f6e-553cf2be.idx 270 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\46\594bd9ae-19a7a3fd 614 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\46\594bd9ae-19a7a3fd.idx 303 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\46\654d11ee-36cf03c5 1.64KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\46\654d11ee-36cf03c5.idx 297 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\47\1b16312f-3f0a5d87 4.43KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\47\1b16312f-3f0a5d87.idx 276 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\47\3b7b3aaf-787216e8 22.65KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\47\3b7b3aaf-787216e8.idx 276 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\47\3e16f6f-70fc5a1c 617 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\47\3e16f6f-70fc5a1c.idx 306 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\47\6221e4ef-7fed835a 1.29KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\47\6221e4ef-7fed835a.idx 287 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\48\194341b0-24fd9e38 16.24KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\48\194341b0-24fd9e38.idx 273 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\48\32e62670-730f25ef 924 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\48\32e62670-730f25ef.idx 268 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\48\33f50f30-72d5482f 2.35KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\48\33f50f30-72d5482f.idx 306 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\48\562b0f70-48e684f7 2.03KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\48\562b0f70-48e684f7.idx 316 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\48\64743db0-1e3e3572 28.47KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\48\64743db0-1e3e3572.idx 276 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\48\7270a5b0-7a06b301 932 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\48\7270a5b0-7a06b301.idx 273 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\48\7df5d4f0-606cfc51 1.84KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\48\7df5d4f0-606cfc51.idx 314 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\49\34c52871-329d69bf 13.25KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\49\34c52871-329d69bf.idx 297 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\49\4c3d8b1-357468d0 40 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\49\4c3d8b1-357468d0.idx 264 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\49\5d0f0831-26956258 8.60KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\49\5d0f0831-26956258.idx 281 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\5\799f0d05-7f15cb06 64 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\5\799f0d05-7f15cb06.idx 293 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\5\93f82c5-2544d804 931 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\5\93f82c5-2544d804.idx 275 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\50\236c27f2-5dd3b1ca 28.38KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\50\236c27f2-5dd3b1ca.idx 299 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\50\69db0332-72a5d5a4 4.94KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\50\69db0332-72a5d5a4.idx 275 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\50\7f3a4ab2-466f52db 64 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\50\7f3a4ab2-466f52db.idx 293 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\51\256965b3-7ce50aef 1.11KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\51\256965b3-7ce50aef.idx 298 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\51\33fefeb3-117259b7 646 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\51\33fefeb3-117259b7.idx 279 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\51\533743f3-5a273412 5.21KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\51\533743f3-5a273412.idx 306 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\51\5dcbf473-7ec879ad 12.03KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\51\5dcbf473-7ec879ad.idx 296 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\167fb634-194c7b94 0.11MB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\167fb634-194c7b94.idx 304 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\3209734-5839ce25 9.31KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\3209734-5839ce25.idx 276 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\321ae2f4-564a18f2 559 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\321ae2f4-564a18f2.idx 291 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\321ae2f4-60260111 559 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\321ae2f4-60260111.idx 291 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\4d116074-72c3ffcc 1.08KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\4d116074-72c3ffcc.idx 289 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\76279c74-3857dfff 41.94KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\76279c74-3857dfff.idx 315 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\76279c74-3ef52f04 41.94KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\76279c74-3ef52f04.idx 315 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\7db7b6f4-5c045a69 733 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\52\7db7b6f4-5c045a69.idx 303 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\53\6d9a1e75-64c23d5e 1.75KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\53\6d9a1e75-64c23d5e.idx 289 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\54\48690576-236f847a 383 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\54\48690576-236f847a.idx 260 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\54\5d2873b6-7e93d1bf 932 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\54\5d2873b6-7e93d1bf.idx 270 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\54\5d8921b6-7bf07eb6 1.01KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\54\5d8921b6-7bf07eb6.idx 307 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\54\6016aa76-226462e3 938 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\54\6016aa76-226462e3.idx 276 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\55\3e5e0e37-327b6748 7.03KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\55\3e5e0e37-327b6748.idx 281 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\55\5cf1efb7-306bbacf 12.21KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\55\5cf1efb7-306bbacf.idx 278 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\55\6095acb7-206de31a 2.41KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\55\6095acb7-206de31a.idx 307 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\55\7ea7ea37-3b1f7a2b 13.25KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\55\7ea7ea37-3b1f7a2b.idx 618 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\55\7f4516b7-31de0c48 929 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\55\7f4516b7-31de0c48.idx 270 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\55\7f4516b7-60cd65e0 929 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\55\7f4516b7-60cd65e0.idx 270 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\56\33dd25b8-29b9c661 37.99KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\56\33dd25b8-29b9c661.idx 276 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\56\4f2bbcf8-2e29cee8 1.73KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\56\4f2bbcf8-2e29cee8.idx 311 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\56\6b3534b8-43129b97 21.17KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\56\6b3534b8-43129b97.idx 307 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\56\7969cb8-1efad456 733 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\56\7969cb8-1efad456.idx 306 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\57\2d311239-1dd154e3 935 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\57\2d311239-1dd154e3.idx 269 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\57\2d311239-54e5866b 935 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\57\2d311239-54e5866b.idx 269 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\57\6c019739-5855ffb3 1.59KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\57\6c019739-5855ffb3.idx 284 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\57\7ee6b839-2cccaa48 3.51KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\57\7ee6b839-2cccaa48.idx 277 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\58\10af83fa-2f11ac39 931 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\58\10af83fa-2f11ac39.idx 275 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\58\1c5bf8fa-73905f34 4.14KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\58\1c5bf8fa-73905f34.idx 275 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\58\3a40fb7a-319491ec 775 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\58\3a40fb7a-319491ec.idx 310 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\59\19faa4fb-6676c944 1.84KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\59\19faa4fb-6676c944.idx 311 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\59\1e0135fb-64a482f8 775 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\59\1e0135fb-64a482f8.idx 313 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\59\2ea190fb-291bdfb2 2.64KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\59\2ea190fb-291bdfb2.idx 308 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\6\1fea9446-42d6b538 9.49KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\6\1fea9446-42d6b538.idx 281 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\6\2a938206-70c3cb87 1.44KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\6\2a938206-70c3cb87.idx 272 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\6\446c5206-48787a56 8.72KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\6\446c5206-48787a56.idx 296 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\6\4ff4c9c6-56f84a73 383 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\6\4ff4c9c6-56f84a73.idx 262 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\6\e6202c6-7efdd431 71 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\6\e6202c6-7efdd431.idx 270 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\14cd1f7c-468863ca 3.79KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\14cd1f7c-468863ca.idx 292 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\14cd1f7c-6883cf11 3.79KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\14cd1f7c-6883cf11.idx 292 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\1a8023fc-5446cf5d 64 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\1a8023fc-5446cf5d.idx 293 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\4467e2fc-3cbe1dab 4.17KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\4467e2fc-3cbe1dab.idx 264 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\4467e2fc-40640805 4.17KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\4467e2fc-40640805.idx 264 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\4467e2fc-755786ab 4.17KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\4467e2fc-755786ab.idx 264 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\44875bc-3ecc1325 559 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\44875bc-3ecc1325.idx 291 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\87f2ebc-30ca58dd 5.21KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\60\87f2ebc-30ca58dd.idx 303 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\61\349074bd-409123ae 15.93KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\61\349074bd-409123ae.idx 310 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\61\36bcf7bd-785619e5 13.39KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\61\36bcf7bd-785619e5.idx 309 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\61\7aed047d-72764e51 618 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\61\7aed047d-72764e51.idx 291 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\62\124be83e-4a37552f 4.17KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\62\124be83e-4a37552f.idx 249 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\62\124be83e-763d3d9b 4.17KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\62\124be83e-763d3d9b.idx 39 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\62\29a5d7be-765175fe 948 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\62\29a5d7be-765175fe.idx 268 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\62\2b5926fe-31d39218 618 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\62\2b5926fe-31d39218.idx 291 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\62\2b5926fe-55fefba8 618 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\62\2b5926fe-55fefba8.idx 291 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\62\386f2abe-285191d9 100.61KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\62\386f2abe-285191d9.idx 304 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\63\122e5bf-1b29533b 32.90KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\63\122e5bf-1b29533b.idx 298 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\63\2a4309ff-33601c3a 6.52KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\63\2a4309ff-33601c3a.idx 303 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\63\34be083f-7581c4d9 12.48KB
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\63\34be083f-7581c4d9.idx 569 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\63\723762ff-19814b94 483 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\63\723762ff-19814b94.idx 288 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\63\96fbc3f-237823c0 559 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\63\96fbc3f-237823c0.idx 291 bytes
C:\Documents and Settings\Marcel\Application Data\Sun\Java\Deployment\cache\6.0\63\96fbc3f-721ec5e2 559 bytes
C:\Documents and Settings\Marcel\Application Data\Sun
20 Octobre 2007 07:59:44

Bonjour

Poste juste le rapport AVG anti-spyware.
20 Octobre 2007 13:12:41

Bonjour

voila le rapport de "AVG Anti-Spyware"


---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 00:35:02 20.10.2007

+ Résultat de l'analyse:



Rien à signaler.



Fin du rapport

20 Octobre 2007 16:43:02

bonjour

dernière vérif
poste bien ton rapport en entier stp :) 

Kaspersky
~Fais une analyse antivirus en ligne sur le site de Kaspersky
http://webscanner.kaspersky.fr/

~ Clique sur Online Scanner.
~Accepte l'installation du contrôle ActiveX en cliquant sur le bouton Install.

~Sélectionne le poste de travail comme analyse.

~Enregistre le rapport en cliquant sur le bouton "Enregistrer rapport sous". Nomme-le, tu feras un copier/coller dans ta prochaine réponse.

Aide
20 Octobre 2007 19:48:58

bonsoir

voila le rapport de Kaspersky On-Line

-------------------------------------------------------------------------------
KASPERSKY ON-LINE SCANNER REPORT
Saturday, October 20, 2007 7:47:44 PM
Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version : 5.0.83.0
Dernière mise à jour de la base antivirus Kaspersky : 20/10/2007
Enregistrements dans la base antivirus Kaspersky : 414558
-------------------------------------------------------------------------------

Paramètres d'analyse:
Analyser avec la base antivirus suivante: standard
Analyser les archives: vrai
Analyser les bases de messagerie: vrai

Cible de l'analyse - Poste de travail:
A:\
C:\
D:\
E:\

Statistiques de l'analyse:
Total d'objets analysés: 59006
Nombre de virus trouvés: 5
Nombre d'objets infectés: 7 / 0
Nombre d'objets suspects: 0
Durée de l'analyse: 01:16:21

Nom de l'objet infecté / Nom du virus / Dernière action
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Support\MPLog-12082006-015141.log L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Symantec\Common Client\settings.dat L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\Quarantine\09900000.VBN Infecté : Email-Worm.Win32.Rays ignoré
C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\Quarantine\0AE40000.VBN Infecté : Trojan-Downloader.JS.Agent.hv ignoré
C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\Quarantine\0B980000.VBN Infecté : Trojan-Downloader.VBS.Psyme.fc ignoré
C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\Quarantine\0C480000.VBN Infecté : Backdoor.Win32.Prorat.19 ignoré
C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\Quarantine\0D640000.VBN Infecté : Trojan-Downloader.JS.Agent.hv ignoré
C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\Quarantine\0D640001.VBN Infecté : Trojan-Downloader.JS.Agent.hv ignoré
C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\ntuser.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Microsoft\Messenger\SharingMetadata\Logs\Dfsr00005.log L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Microsoft\Messenger\SharingMetadata\pending.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Microsoft\Messenger\SharingMetadata\Working\database_E850_EBB3_50EB_8722\dfsr.db L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Microsoft\Messenger\SharingMetadata\Working\database_E850_EBB3_50EB_8722\fsr.log L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Microsoft\Messenger\\SharingMetadata\Working\database_E850_EBB3_50EB_8722\fsrtmp.log L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Microsoft\Messenger\SharingMetadata\Working\database_E850_EBB3_50EB_8722\tmp.edb L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Microsoft\Windows Defender\FileTracker\{BB61B8DC-1E48-446B-B7B2-A82FFBBE8398} L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Microsoft\Windows Live Contacts\real\members.stg L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Microsoft\Windows Live Contacts\shadow\members.stg L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Mozilla\Firefox\Profiles\n3b0va24.default\Cache\_CACHE_001_ L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Mozilla\Firefox\Profiles\n3b0va24.default\Cache\_CACHE_002_ L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Mozilla\Firefox\Profiles\n3b0va24.default\Cache\_CACHE_003_ L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Mozilla\Firefox\Profiles\n3b0va24.default\Cache\_CACHE_MAP_ L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Pando\Pando Files\cert\cert8.db L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Pando\Pando Files\cert\key3.db L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Application Data\Pando\Pando Files\pando.log L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Historique\History.IE5\MSHist012007102020071021\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Temp\~DF704.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Temp\~DF712.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Temp\~DFF2C0.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Temp\~DFF2DD.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\Local Settings\Temporary Internet Files\Content.IE5\N4P8RMS0\728x90_pap_v3[1].swf L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\ntuser.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Marcel\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\SDFix\backups\backups\nmcuninstall.exe Infecté : Trojan-Downloader.Win32.Zlob.dmx ignoré
C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
C:\System Volume Information\_restore{70C219BC-5150-4D9F-83CC-3D65BD28289F}\RP1\change.log L'objet est verrouillé ignoré
C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
C:\WINDOWS\system32\CatRoot2\edb.log L'objet est verrouillé ignoré
C:\WINDOWS\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\Internet.evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré
C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré

Analyse terminée.
20 Octobre 2007 22:01:14

bonsoir

vide la quarantaine de norton

~Désactive puis réactive la restauration en suivant ce tuto:
http://service1.symantec.com/SUPPORT/INTER/tsgeninfoint...
Il faudra désactiver la restauration, redémarrer l'ordinateur et réactiver aussitôt la restauration.

Supprime tous les programmes installés pour la désinfection.
Tu peux garder AVG - antispyware qui est le meilleur antispyware du moment. Au bout de 30 jours, tu perdras le bouclier résident et les mises à jours automatiques. Mais tu pourras le garder et le passer régulièrement en faisant les mises à jours manuellement.

~Tu devrais également utiliser régulièrement Ccleaner. (au moins toutes les semaines):

~Edite ton premier message (en cliquant sur la gomme) et marque [résolu] dans le titre.

:hello: 
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS