Analyse anti virus en ligne

lilounotoobad Messages postés 110 Statut Membre -  
lilounotoobad Messages postés 110 Statut Membre -
Bonjour,
Comment pourais je faire une analyse antivirus en ligne, sachant que je ne peux pas installer xpsp 2 et 3 ni même internet exploreur puisqu'à chaque fois que j'ouvre le fichier il me mets ...exe n'est pas une application win32 valide?

J'ai fais maintes et maintes recherches j'y suis depuis ce matin et là je commence et là j'en peux plus.je suis aller voir dans Astuces fais les manip expliquée et bien d'autres encore voir

http://www.commentcamarche.net/forum/affich 11154075 pb sous windows?#1

et j'en viens à me demander si ce n'est pas un pb de virus comme énnocé dans certains pas post..

MERCI de bien vouloir m'aider car là je sature..
Configuration: Windows XP
Firefox 3.0.6

21 réponses

  • 1
  • 2
  1. plopus Messages postés 49 Date d'inscription   Statut Contributeur sécurité Dernière intervention   293
     
    bonjour,

    infection BAGLE attention cela vient d'un crack infecté

    edit; oops tu as pas vista,

    * Telecharge maintenant Findykill sur ton bureau https://www.androidworld.fr/

    * (c'est le numéro 18 en bas de la page)
    * Lance l installation avec les parametres par default
    * Fais un clic droit sur le raccourci FindyKill sur ton bureau
    * Choisi executer en tant qu administrateur
    * Au menu principal,choisi l option 1 (Recherche)
    * Post le rapport FindyKill.txt

    * Note : le rapport FindyKill.txt est sauvegardé a la racine du disque
    0
    1. lilounotoobad Messages postés 110 Statut Membre 1
       
      ok je vais tenter de faire ça merci de m'avoir répondu.
      0
    2. lilounotoobad Messages postés 110 Statut Membre 1
       
      aah dc je fais quand meme findykill?
      0
  2. plopus Messages postés 49 Date d'inscription   Statut Contributeur sécurité Dernière intervention   293
     
    de rien dit moi si sa marche pas on essaye autre chose mais le probleme c'est que BAGLE bloque toutes les process de securit seul findykill doit marcher et supprimer une grosse partie de cette infection pas commode sans un outil adapté
    0
    1. lilounotoobad Messages postés 110 Statut Membre 1
       
      je viens de voir que tu avais éditer une partie de ton msg dc je fais quand findykill?
      0
  3. plopus Messages postés 49 Date d'inscription   Statut Contributeur sécurité Dernière intervention   293
     
    re

    oui tu as XP donc tu as pas besoin de faire ce que j'avais dit au debut fait ceci exactement sous XP

    * Telecharge Findykill sur ton bureau https://www.androidworld.fr/

    * (c'est le numéro 18 en bas de la page)

    * Lance l installation avec les parametres par default

    * Double clic sur le raccourci FindyKill sur ton bureau

    * Au menu principal,choisi l option 1 (Recherche)

    * Post le rapport FindyKill.txt

    * Note : le rapport FindyKill.txt est sauvegardé a la racine du disque
    0
    1. lilounotoobad Messages postés 110 Statut Membre 1
       
      c'est bon c'est fais.



      ############################## [ FindyKill V4.717 ]

      # User : Propri‚taire (Administrateurs) # LINDA
      # Update on 17/02/09 by Chiquitine29
      # Start at: 16:39:01 | 20/02/2009

      # AMD Athlon(tm) XP 2600+
      # Microsoft Windows XP dition familiale (5.1.2600 32-bit) # Service Pack 1
      # Internet Explorer 6.0.2800.1106
      # Windows Firewall Status : Not defined.

      # A:\ # Lecteur de disquettes 3 « pouces
      # C:\ # Disque fixe local (HP_PAVILION) # NTFS
      # D:\ # Disque fixe local (HP_RECOVERY) # FAT32
      # E:\ # Disque CD-ROM
      # F:\ # Disque CD-ROM
      # G:\ # Disque amovible
      # H:\ # Disque amovible
      # I:\ # Disque amovible
      # J:\ # Disque amovible

      ############################## [ Processus actifs ]

      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\csrss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\Explorer.EXE
      c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
      c:\Program Files\Norton Personal Firewall\NISUM.EXE
      C:\WINDOWS\system32\spoolsv.exe
      c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
      C:\windows\system\hpsysdrv.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
      C:\WINDOWS\System32\hphmon05.exe
      C:\HP\KBD\KBD.EXE
      C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
      C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      C:\Program Files\Multimedia Card Reader\shwicon2k.exe
      C:\WINDOWS\System32\LVCOMSX.EXE
      C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
      C:\Program Files\Logitech\Video\CameraAssistant.exe
      C:\WINDOWS\System32\ElkCtrl.exe
      C:\WINDOWS\System32\ctfmon.exe
      C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\WINDOWS\System32\alg.exe
      c:\Program Files\Norton Personal Firewall\ccPxySvc.exe
      c:\Program Files\Norton AntiVirus\navapsvc.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\MSN Messenger\MsnMsgr.Exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
      C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqimzone.exe
      C:\WINDOWS\System32\wbem\wmiprvse.exe

      ################## [ Fichiers / Dossiers infectieux C:\ ]


      ################## [ C:\WINDOWS ]


      ################## [ C:\WINDOWS\system32 ]


      ################## [ C:\WINDOWS\system32\drivers ]


      ################## [ C:\.. Application Data ... ]


      ################## [ Registre / Clés infectieuses ]



      ################## [ Recherche dans supports amovibles]


      # Contenu de l'autorun : D:\autorun.inf

      [AUTORUN]
      OPEN=Info.exe folder.htt 480 480

      # Presence des fichiers :

      Found ! [10/09/2002 18:02][--ahs----] - D:\autorun.inf

      ################## [ Registre / Mountpoint2 ]

      Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{732c8aea-fea3-11dd-8acf-806d6172696f}\Shell\AutoRun\command

      ################## [ ! Fin du rapport # FindyKill V4.717 ! ]
      0
  4. lilounotoobad Messages postés 110 Statut Membre 1
     
    J'ai un virus ici c'est ca?

    [ C:\WINDOWS\system32\drivers ]

    ################## [ C:\.. Application Data ... ]

    ################## [ Registre / Clés infectieuses ]

    Pourtant je suis sous norton!! et dire que je l'ai formater ..

    Je fais comment pour l'enlever vu que norton le trouve pas et que je ne peux pas installer d'autre antivirus?
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. plopus Messages postés 49 Date d'inscription   Statut Contributeur sécurité Dernière intervention   293
     
    * Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) suceptible d avoir été infectés sans les ouvrir
    * Double clic sur le raccourci FindyKill sur ton bureau
    * Au menu principal,choisi l option 2 (Suppression)

    /!\ il y aura 2 redémarrage, laisse travailler l outils jusqu a l apparition du message "nettoyage effectué"

    /!\ Ne te sert pas du pc durant la suppression , ton bureau ne sera pas accessible c est normal !
    * ensuite post le rapport FindyKill.txt

    * Note : le rapport FindyKill.txt est sauvegardé a la racine du disque
    * Note : Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet "Fichier" , "Nouvelle tâche" , tapes explorer.exe et valides

    puis relance encore Findykill et cette fois fait l'option 4 et poste le rapport aussi
    0
  7. lilounotoobad Messages postés 110 Statut Membre 1
     
    * Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) suceptible d avoir été infectés sans les ouvrir ??

    mais tout est déjas branché!! je le fais et te redis.

    Mais petite question ce n'est pas irrémédiable?
    0
  8. plopus Messages postés 49 Date d'inscription   Statut Contributeur sécurité Dernière intervention   293
     
    re
    si elle sont deja branché c'est bon tu les laisses mais n'en oublie pas pour ne pas relancer l'infection et fait findykill en option 2 puis en option 4 et poste les 2 rapports en entier
    0
    1. lilounotoobad Messages postés 110 Statut Membre 1
       
      2ème rapport:


      ############################## [ FindyKill V4.717 ]

      # User : Propri‚taire (Administrateurs) # LINDA
      # Update on 17/02/09 by Chiquitine29
      # Start at: 17:00:08 | 20/02/2009

      # AMD Athlon(tm) XP 2600+
      # Microsoft Windows XP dition familiale (5.1.2600 32-bit) # Service Pack 1
      # Internet Explorer 6.0.2800.1106
      # Windows Firewall Status : Not defined.

      # A:\ # Lecteur de disquettes 3 « pouces
      # C:\ # Disque fixe local (HP_PAVILION) # NTFS
      # D:\ # Disque fixe local (HP_RECOVERY) # FAT32
      # E:\ # Disque CD-ROM
      # F:\ # Disque CD-ROM
      # G:\ # Disque amovible
      # H:\ # Disque amovible
      # I:\ # Disque amovible
      # J:\ # Disque amovible
      # K:\ # Disque amovible

      ############################## [ Active Processes ]

      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\csrss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
      c:\Program Files\Norton Personal Firewall\NISUM.EXE
      C:\WINDOWS\system32\spoolsv.exe
      c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
      C:\windows\system\hpsysdrv.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
      C:\WINDOWS\System32\hphmon05.exe
      C:\HP\KBD\KBD.EXE
      C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
      C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      C:\Program Files\Multimedia Card Reader\shwicon2k.exe
      C:\WINDOWS\System32\LVCOMSX.EXE
      C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
      C:\Program Files\Logitech\Video\CameraAssistant.exe
      C:\WINDOWS\System32\ElkCtrl.exe
      C:\WINDOWS\System32\ctfmon.exe
      C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\WINDOWS\System32\alg.exe
      c:\Program Files\Norton Personal Firewall\ccPxySvc.exe
      c:\Program Files\Norton AntiVirus\navapsvc.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
      C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqimzone.exe
      C:\WINDOWS\System32\HPZipm12.exe
      C:\WINDOWS\System32\wbem\wmiprvse.exe

      ################## [ Infected Files / Folders C:\ ]


      ################## [ C:\WINDOWS ]


      ################## [ C:\WINDOWS\system32 ]


      ################## [ C:\WINDOWS\system32\drivers ]


      ################## [ C:\.. Application Data ... ]


      ################## [ Registry / Infected keys ]


      ################## [ Cleaning Removable drives ]

      # Deleting files :

      Deleted ! - D:\autorun.inf
      Deleted ! - D:\info.exe

      ################## [ Registry / Mountpoint2 ]

      # -> Not found !

      ################## [ Searching Other Infections ]

      # -> Nothing found ! ..

      ################## [ ! End of Report # FindyKill V4.717 ! ]
      0
  9. plopus Messages postés 49 Date d'inscription   Statut Contributeur sécurité Dernière intervention   293
     
    desinstalle proprement NORTON avec sa

    http://service1.symantec.com/SUPPORT/INTER/tsgeninfointl.nsf/fr_docid/20050414110429924

    puis telecharge CCleaner ici
    https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
    ouvre CCleaner va dans option/avanvé et decoche la premier ligne
    et nettoie ton registre et tes fichier temporaire au moins 2fois jusqu'a trouver 0erreur

    puis

    * Télécharge hijackthis https://www.androidworld.fr/

    * Tout est expliqué pour bien l installer et savoir l'utiliser.

    Comment copier/coller le rapport :

    Quand tu as le rapport à l écran, tu fais ctrl A pour "sélectionner tout" puis ctrl C pour "copier".

    Ensuite tu viens sur le forum pour me répondre et tu fais ctrl V pour "coller" le rapport.
    0
    1. lilounotoobad Messages postés 110 Statut Membre 1
       
      Bon là c'est le 3ème rapport.



      # User : Propri‚taire (Administrateurs) # LINDA
      # Update on 17/02/09 by Chiquitine29
      # Start at: 17:09:04 | 20/02/2009

      # AMD Athlon(tm) XP 2600+
      # Microsoft Windows XP dition familiale (5.1.2600 32-bit) # Service Pack 1
      # Internet Explorer 6.0.2800.1106
      # Windows Firewall Status : Not defined.

      # A:\ # Lecteur de disquettes 3 « pouces
      # C:\ # Disque fixe local (HP_PAVILION) # NTFS
      # D:\ # Disque fixe local (HP_RECOVERY) # FAT32
      # E:\ # Disque CD-ROM
      # F:\ # Disque CD-ROM (TEW-424UB) # CDFS
      # G:\ # Disque amovible
      # H:\ # Disque amovible
      # I:\ # Disque amovible
      # J:\ # Disque amovible
      # K:\ # Disque amovible

      ################################### [ Searching Cracks / Keygen ]

      C:\Documents and Settings\Propri‚taire.LINDA\Mes documents\Ma musique\Fat Joe - The Elephant In The Room (2008)\03-fat_joe-the_crackhouse_(feat._lil_wayne).mp3
      C:\Program Files\Microsoft Silverlight\2.0.31005.0\System.Runtime.Serialization.dll

      ################## [ ! Fin du rapport # FindyKill V4.717 ! ]
      0
  10. lilounotoobad Messages postés 110 Statut Membre 1
     
    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 17:56:26, on 20/02/2009
    Platform: Windows XP SP1 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
    C:\windows\system\hpsysdrv.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
    C:\WINDOWS\System32\hphmon05.exe
    C:\HP\KBD\KBD.EXE
    C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    C:\Program Files\Multimedia Card Reader\shwicon2k.exe
    C:\WINDOWS\System32\LVCOMSX.EXE
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\Program Files\Logitech\Video\CameraAssistant.exe
    C:\WINDOWS\System32\ElkCtrl.exe
    C:\WINDOWS\System32\ctfmon.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\MSN Messenger\MsnMsgr.Exe
    C:\WINDOWS\System32\HPZipm12.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqimzone.exe
    C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\Propriétaire.LINDA\Bureau\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.hpe.com/h41271/404D.aspx?cc=us&ll=en&url=http://domainredirects.ext.hpe.com/fr9.hpwis.com/
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-fr9.hpwis.com/
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?cc=fr&toHttps=1&redig=D4322FEE7CF74A348CB9CE970F098EF5
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://srch-fr9.hpwis.com/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.hpe.com/h41271/404D.aspx?cc=us&ll=en&url=http://domainredirects.ext.hpe.com/fr9.hpwis.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-fr9.hpwis.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-fr9.hpwis.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://srch-fr9.hpwis.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.hpe.com/h41271/404D.aspx?cc=us&ll=en&url=http://domainredirects.ext.hpe.com/fr9.hpwis.com/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
    O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - c:\Program Files\Microsoft Money\System\mnyside.dll
    O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
    O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
    O3 - Toolbar: (no name) - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - (no file)
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
    O4 - HKLM\..\Run: [CamMonitor] c:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
    O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
    O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
    O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
    O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
    O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
    O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
    O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
    O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    O4 - HKLM\..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe
    O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
    O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
    O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
    O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
    O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\System32\ElkCtrl.exe /automation
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
    O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
    O4 - HKCU\..\Run: [BackupNotify] c:\Program Files\Hewlett-Packard\Digital Imaging\bin\backupnotify.exe
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM')
    O4 - S-1-5-18 Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'SYSTEM')
    O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user')
    O4 - .DEFAULT Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
    O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
    O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
    O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: BTTray.lnk = ?
    O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqthb08.exe
    O4 - Global Startup: GStartup.lnk = C:\Program Files\Fichiers communs\GMT\GMT.exe
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
    O4 - Global Startup: Wireless Configuration Utility HW.14.lnk = C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
    O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
    O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
    O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - c:\Program Files\Microsoft Money\System\mnyside.dll
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
    O18 - Protocol: bw+0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: offline-8876480 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
    O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
    0
  11. plopus Messages postés 49 Date d'inscription   Statut Contributeur sécurité Dernière intervention   293
     
    rela,ce hijackthis choisit do a scxan and save th elog et coche les case a gauche des lignes :

    O3 - Toolbar: (no name) - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - (no file)
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
    O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
    O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user')
    O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
    O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: BTTray.lnk = ?
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
    O18 - Protocol: bw+0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: offline-8876480 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

    puis clic sur fix checked en ferment tout tes programme et deconnecte toi d'internet
    0
  12. plopus Messages postés 49 Date d'inscription   Statut Contributeur sécurité Dernière intervention   293
     
    puis

    si tu peux fait un scan en ligne ici et poste TOUT le rapport en entier avec les lignes de virus

    http://www.bitdefender.fr/scan_fr/scan8/ie.html

    puis ensuite toujours si tu peux

    * Télécharge Malwarebytes https://www.androidworld.fr/
    * Tu auras un tutoriel à ta disposition pour l'installer et l'utiliser correctement.
    * Fais la mise à jour du logiciel (elle se fait normalement à l'installation)
    * Lance une analyse complète en cliquant sur "Exécuter un examen complet"
    * Sélectionnes les disques que tu veux analyser et cliques sur "Lancer l'examen"
    * L'analyse peut durer un bon moment.....
    * Une fois l'analyse terminée, cliques sur "OK" puis sur "Afficher les résultats"
    * Vérifies que tout est bien coché et cliques sur "Supprimer la sélection" => et ensuite sur "OK"
    * Un rapport va s'ouvrir dans le bloc note... Fais un copié/collé du rapport dans ta prochaine réponse sur le forum

    * Il se pourrait que certains fichiers devront être supprimés au redémarrage du PC... Faites le en cliquant sur "oui" à la question posée

    essaye l'un et l'autre et dit moi si sa passe et poste les rapports si sa marche
    0
    1. lilounotoobad Messages postés 110 Statut Membre 1
       
      je suis sur la page de bit défendeur et pour celà il me demnade d'installer internet exploreur et je dois choisir mon système.
      J'hésite entre windows server x64 Edition et windows server ia64 Edition.
      Comment je fais pour savoir lequel est le mien?
      0
      1. lilounotoobad Messages postés 110 Statut Membre 1 > lilounotoobad Messages postés 110 Statut Membre
         
        j'avais pas vu qu'il falais que je coche tous les trucs bon je fais et jje me déco
        0
  13. plopus Messages postés 49 Date d'inscription   Statut Contributeur sécurité Dernière intervention   293
     
    par rapport au visuel je dirai celui la windows server x64 Edition

    mais sans grande conviction..
    0
    1. lilounotoobad Messages postés 110 Statut Membre 1
       
      aah moi aussi mais comment en être sur? je tente on verra bien
      0
  14. lilounotoobad Messages postés 110 Statut Membre 1
     
    C'est bon en fait en dessous c'étais expliquer comment connaître sa config. et je suis sous xps 1
    0
  15. plopus Messages postés 49 Date d'inscription   Statut Contributeur sécurité Dernière intervention   293
     
    ok ben fait ce qui est emandé et poste les rapports :)
    0
    1. lilounotoobad Messages postés 110 Statut Membre 1
       
      bon c'est mort car au au moment de l'extraction il me met
      update\iesetup.exe n'est pas une application win32 valide.

      Bon déjas y'a des progrès je peux ouvrir le fichier..

      Mais bon sans internet explorer je ne peux pas faire l'analyse bit defender!!
      0
  16. plopus Messages postés 49 Date d'inscription   Statut Contributeur sécurité Dernière intervention   293
     
    bizarre sa, pourtant findykill detecte rien ??

    arrive tu as faire ceci

    telecharge sur ton bureau combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

    lance le en clic droit et execute en administrateur et ne touche + a rien jusuq'a la fin et poste le rapport
    0
  17. plopus Messages postés 49 Date d'inscription   Statut Contributeur sécurité Dernière intervention   293
     
    et après cela ou si sa marche pas essaye le scan en ligne ici :

    https://www.trendmicro.com/en_us/forHome/products/housecall.html
    0
    1. lilounotoobad Messages postés 110 Statut Membre 1
       
      ouïlle bon voilà le rapport de malware:

      Malwarebytes' Anti-Malware 1.34
      Version de la base de données: 1782
      Windows 5.1.2600 Service Pack 1

      20/02/2009 21:48:11
      mbam-log-2009-02-20 (21-48-11).txt

      Type de recherche: Examen complet (A:\|C:\|D:\|E:\|F:\|G:\|H:\|I:\|J:\|)
      Eléments examinés: 201597
      Temps écoulé: 57 minute(s), 5 second(s)

      Processus mémoire infecté(s): 0
      Module(s) mémoire infecté(s): 0
      Clé(s) du Registre infectée(s): 0
      Valeur(s) du Registre infectée(s): 0
      Elément(s) de données du Registre infecté(s): 0
      Dossier(s) infecté(s): 4
      Fichier(s) infecté(s): 36

      Processus mémoire infecté(s):
      (Aucun élément nuisible détecté)

      Module(s) mémoire infecté(s):
      (Aucun élément nuisible détecté)

      Clé(s) du Registre infectée(s):
      (Aucun élément nuisible détecté)

      Valeur(s) du Registre infectée(s):
      (Aucun élément nuisible détecté)

      Elément(s) de données du Registre infecté(s):
      (Aucun élément nuisible détecté)

      Dossier(s) infecté(s):
      C:\Program Files\MessengerSkinner (Adware.EGDAccess) -> Quarantined and deleted successfully.
      C:\Program Files\MessengerSkinner\download (Adware.EGDAccess) -> Quarantined and deleted successfully.
      C:\Program Files\MessengerSkinner\resources (Adware.EGDAccess) -> Quarantined and deleted successfully.
      C:\WINDOWS\msskinner (Adware.EGDAccess) -> Quarantined and deleted successfully.

      Fichier(s) infecté(s):
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\eqkyu_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\eqkyu_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\eqkyu.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\maoka_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\megsgag_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\megsgag_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\megsgag.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\megsgag.exe (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\oikagoa_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\oikagoa_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\oikagoa.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\segugsg_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\segugsg_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\segugsg.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\segugsg.exe (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\wukii_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\wukii_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\wukii.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\ygsmcgu_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\ygsmcgu_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\ygsmcgu.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Documents and Settings\Propriétaire\Local Settings\Application Data\ygsmcgu.exe (Adware.Navipromo.H) -> Quarantined and deleted successfully.
      C:\Program Files\MessengerSkinner\MessengerSkinnerDll.dll (Rogue.MessengerSkinner) -> Quarantined and deleted successfully.
      C:\Program Files\Windows Live\Messenger\msimg32.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
      C:\Program Files\Windows Live\Messenger\riched20.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
      C:\Program Files\MessengerSkinner\MessengerSkinner.exe (Adware.EGDAccess) -> Quarantined and deleted successfully.
      C:\Program Files\MessengerSkinner\uninst.exe (Adware.EGDAccess) -> Quarantined and deleted successfully.
      C:\WINDOWS\Downloaded Program Files\EGDAccess.inf (Adware.EGDAccess) -> Quarantined and deleted successfully.
      C:\WINDOWS\Downloaded Program Files\EGDAccess_ASPIV4.inf (Adware.EGDAccess) -> Quarantined and deleted successfully.
      C:\WINDOWS\Downloaded Program Files\EGCOMSERVICE_pack.inf (Adware.EGDAccess) -> Quarantined and deleted successfully.
      C:\WINDOWS\Downloaded Program Files\nethv32.inf (Adware.EGDAccess) -> Quarantined and deleted successfully.
      C:\WINDOWS\Downloaded Program Files\syswbsvc32.inf (Adware.EGDAccess) -> Quarantined and deleted successfully.
      C:\WINDOWS\Downloaded Program Files\sysinetsvc32.inf (Adware.EGDAccess) -> Quarantined and deleted successfully.
      C:\WINDOWS\tmlpcert2007 (Adware.EGDAccess) -> Quarantined and deleted successfully.
      C:\WINDOWS\system32\votqlk_navps.dat (Adware.NaviPromo) -> Quarantined and deleted successfully.
      C:\WINDOWS\system32\votqlk_nav.dat (Adware.NaviPromo) -> Quarantined and deleted successfully.
      0
  18. lilounotoobad Messages postés 110 Statut Membre 1
     
    ComboFix 09-02-19.01 - Propri‚taire 2009-02-21 9:33:08.1 - NTFSx86
    Microsoft Windows XP Édition familiale 5.1.2600.1.1252.1.1036.18.255.98 [GMT 1:00]
    Lancé depuis: c:\documents and settings\Propri‚taire.LINDA\Bureau\ComboFix.exe
    * Un nouveau point de restauration a été créé
    .
    [color=purple]Les fichiers ci-dessous ont été désactivés pendant l'exécution:[/color]
    c:\program files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll

    (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
    .

    c:\windows\Readme.txt
    c:\windows\system32\iAlmcoin.dll

    .
    ((((((((((((((((((((((((((((( Fichiers créés du 2009-01-21 au 2009-02-21 ))))))))))))))))))))))))))))))))))))
    .

    2009-02-20 20:33 . 2009-02-20 20:38 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware
    2009-02-20 20:33 . <REP> c:\documents and settings\Propriétaire.LINDA\Application Data\Malwarebytes
    2009-02-20 20:33 . 2009-02-20 20:33 <REP> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes
    2009-02-20 20:33 . 2009-02-11 10:19 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
    2009-02-20 20:33 . 2009-02-11 10:19 15,504 --a------ c:\windows\system32\drivers\mbam.sys
    2009-02-20 17:40 . 2007-05-04 20:40 215,040 --a------ c:\windows\system32\drivers\RTL8187B.sys
    2009-02-20 17:40 . 2009-02-20 17:40 21,035 --a------ c:\windows\system32\drivers\AegisP.sys
    2009-02-20 17:33 . 2009-02-20 17:33 <REP> d-------- c:\program files\Trend Micro
    2009-02-20 17:31 . 2009-02-20 17:31 <REP> d-------- c:\program files\Yahoo!
    2009-02-20 17:31 . <REP> c:\documents and settings\Propriétaire.LINDA\Application Data\Yahoo!
    2009-02-20 16:37 . 2009-02-20 17:09 <REP> d-------- c:\program files\FindyKill
    2009-02-20 07:13 . <REP> c:\documents and settings\Propriétaire.LINDA\Application Data\Help
    2009-02-20 02:25 . 2009-02-20 02:25 <REP> d-------- c:\program files\MSN Messenger
    2009-02-20 01:41 . 2005-12-06 04:26 2,010,240 -ra------ c:\windows\system32\drivers\lvpopflt.sys
    2009-02-20 01:39 . 2005-12-06 04:28 1,103,488 -ra------ c:\windows\system32\drivers\lvuvc.sys
    2009-02-20 01:39 . 2005-12-06 04:26 380,928 -ra------ c:\windows\system32\LVUI2RC.dll
    2009-02-20 01:39 . 2005-12-06 04:25 217,088 -ra------ c:\windows\system32\LVUI2.dll
    2009-02-20 01:39 . 2005-12-06 04:25 204,800 -ra------ c:\windows\system32\lvcodec2.dll
    2009-02-20 01:39 . 2005-12-06 04:28 142,848 -ra------ c:\windows\system32\drivers\lvmjpeg.sys
    2009-02-20 01:39 . 2005-12-06 04:22 110,592 -ra------ c:\windows\system32\lvcoinst.dll
    2009-02-20 01:39 . 2005-12-06 04:26 39,424 -ra------ c:\windows\system32\drivers\LVUSBSta.sys
    2009-02-20 01:39 . 2005-12-06 03:28 13,126 -ra------ c:\windows\system32\lvcoinst.ini
    2009-02-20 01:39 . 2005-12-06 03:27 2,112 -ra------ c:\windows\system32\Repository.reg
    2009-02-20 01:38 . 2005-12-06 04:28 14,080 -ra------ c:\windows\system32\drivers\lvuvcflt.sys
    2009-02-20 01:18 . 2009-02-20 01:18 <REP> d-------- c:\program files\Fichiers communs\Sonic Shared
    2009-02-20 00:55 . 2002-08-29 01:50 24,960 --a------ c:\windows\system32\drivers\usbprint.sys
    2009-02-20 00:55 . 2002-08-29 01:48 14,208 --a------ c:\windows\system32\drivers\usbscan.sys
    2009-02-20 00:43 . 2007-07-15 16:23 90,006 --------- c:\windows\hpoins06.dat.temp
    2009-02-20 00:43 . 2005-06-03 06:53 5,389 --------- c:\windows\hpomdl06.dat.temp
    2009-02-20 00:42 . <REP> c:\documents and settings\Propriétaire.LINDA\Application Data\HP
    2009-02-20 00:08 . 2005-12-09 15:31 719 -ra------ c:\windows\system32\InstExec.ini
    2009-02-20 00:06 . 2003-03-18 21:20 1,060,864 --a------ c:\windows\system32\MFC71.dll
    2009-02-20 00:06 . 2005-12-07 10:25 350,720 --a------ c:\windows\system32\camcpl.cpl
    2009-02-20 00:06 . 2005-12-07 10:22 323,584 --a------ c:\windows\system32\CamCplRes.dll
    2009-02-20 00:06 . 2005-12-07 10:32 152,576 --a------ c:\windows\system32\VxLib.dll
    2009-02-20 00:06 . 2005-12-07 10:30 135,680 --a------ c:\windows\system32\VLib.dll
    2009-02-20 00:06 . 2003-03-18 19:05 89,088 --a------ c:\windows\system32\atl71.dll
    2009-02-20 00:06 . 2005-12-07 19:17 86,016 -ra------ c:\windows\system32\vatee.ax
    2009-02-20 00:06 . 2005-12-07 10:29 40,960 --a------ c:\windows\system32\VxLibRes.dll
    2009-02-20 00:02 . 2009-02-20 00:02 361 --a------ c:\windows\system32\QuickTime.qtp
    2009-02-19 23:48 . 2002-08-29 02:01 134,272 --a------ c:\windows\system32\drivers\portcls.sys
    2009-02-19 23:48 . 2002-08-29 02:01 134,272 --a--c--- c:\windows\system32\dllcache\portcls.sys
    2009-02-19 23:48 . 2002-08-29 01:32 57,856 --a------ c:\windows\system32\drivers\drmk.sys
    2009-02-19 23:48 . 2002-08-29 01:32 57,856 --a--c--- c:\windows\system32\dllcache\drmk.sys
    2009-02-19 23:48 . 2002-08-29 01:32 56,832 --a------ c:\windows\system32\drivers\USBAUDIO.sys
    2009-02-19 23:48 . 2002-08-29 01:32 56,832 --a--c--- c:\windows\system32\dllcache\usbaudio.sys
    2009-02-19 23:47 . 2003-02-21 13:42 348,160 -ra------ c:\windows\system\msvcr71.dll
    2009-02-19 23:47 . 2002-08-29 11:45 286,720 --a------ c:\windows\system32\msh263.drv
    2009-02-19 23:47 . 2002-08-29 11:45 50,688 --a------ c:\windows\system32\vfwwdm32.dll
    2009-02-19 23:47 . 2002-08-29 11:45 50,688 --a--c--- c:\windows\system32\dllcache\vfwwdm32.dll
    2009-02-19 23:47 . 2001-08-23 17:47 45,568 --a------ c:\windows\system32\iyuv_32.dll
    2009-02-19 23:47 . 2001-08-23 17:47 45,568 --a--c--- c:\windows\system32\dllcache\iyuv_32.dll
    2009-02-19 23:47 . 2003-07-03 17:53 28,160 --a------ c:\windows\system32\drivers\usbccgp.sys
    2009-02-19 23:47 . 2003-07-03 17:53 28,160 --a--c--- c:\windows\system32\dllcache\usbccgp.sys
    2009-02-19 23:47 . 2002-08-29 11:45 18,944 --a------ c:\windows\system32\dshowext.ax
    2009-02-19 23:47 . 2002-08-29 11:45 18,944 --a--c--- c:\windows\system32\dllcache\dshowext.ax
    2009-02-19 23:47 . 2001-08-23 17:47 8,192 --a------ c:\windows\system32\tsbyuv.dll
    2009-02-19 23:47 . 2001-08-23 17:47 8,192 --a--c--- c:\windows\system32\dllcache\tsbyuv.dll
    2009-02-19 22:23 . 2009-02-20 02:02 <REP> d-------- c:\windows\LastGood
    2009-02-19 22:23 . 2008-09-24 10:40 4,122,368 -ra------ c:\windows\system32\drivers\ALCXWDM.SYS
    2009-02-19 21:54 . 2001-08-23 17:47 22,016 --a------ c:\windows\system32\wdmaud.drv
    2009-02-19 20:31 . <REP> c:\documents and settings\Propriétaire.LINDA\Application Data\Macromedia
    2009-02-19 20:17 . 2009-02-19 20:17 32 --ahs---- c:\windows\system32\{B67CEEDE-333B-4DD0-8929-39007D62C814}.dat
    2009-02-19 20:17 . 2009-02-19 20:17 32 --ahs---- c:\windows\{6F2EDF0F-3D73-44F4-97DF-C70B9C62940E}.dat
    2009-02-19 20:13 . 2009-02-19 21:55 <REP> d-------- c:\windows\LastGood.Tmp
    2009-02-19 19:45 . 2009-02-19 20:12 <REP> d-------- c:\program files\Realtek AC97
    2009-02-19 19:44 . 2009-02-19 19:44 <REP> d-------- c:\documents and settings\PROPRI~1~LIN\LOCALS~1
    2009-02-19 19:44 . 2009-02-19 19:44 <REP> d-------- c:\documents and settings\PROPRI~1~LIN
    2009-02-19 19:30 . <REP> c:\documents and settings\Propriétaire.LINDA\Application Data\Mozilla
    2009-02-19 19:24 . <REP> c:\documents and settings\Propriétaire.LINDA\UserData
    2009-02-19 18:44 . 2001-08-17 21:59 50,048 --a------ c:\windows\system32\drivers\DMusic.sys
    2009-02-19 18:44 . 2001-08-17 21:59 50,048 --a--c--- c:\windows\system32\dllcache\dmusic.sys
    2009-02-19 18:24 . 2002-08-29 02:01 56,832 --a------ c:\windows\system32\drivers\sysaudio.sys
    2009-02-19 18:24 . 2002-08-29 02:01 56,832 --a--c--- c:\windows\system32\dllcache\sysaudio.sys
    2009-02-19 18:24 . 2002-08-29 01:32 2,816 --a------ c:\windows\system32\drivers\drmkaud.sys
    2009-02-19 18:24 . 2002-08-29 01:32 2,816 --a--c--- c:\windows\system32\dllcache\drmkaud.sys
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\WINDOWS
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\Voisinage r‚seau
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\Voisinage d'impression
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\ModŠles
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\Mes documents
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\Menu D‚marrer
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\Favoris
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\Bureau
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\Application Data\Sonic
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\Application Data\SampleView
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\Application Data\Microsoft
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\Application Data\InterTrust
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\Application Data\Identities
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\Application Data\Adobe
    2009-02-19 18:23 . <REP> c:\documents and settings\Propriétaire.LINDA\.javaws
    2009-02-19 18:23 . 2009-02-20 17:33 <REP> d-------- c:\documents and settings\Propri‚taire.LINDA
    2009-02-19 18:21 . 262,144 c:\documents and settings\PropriÚtaire\NTUSER.DAT
    2009-02-19 18:20 . 2003-08-25 21:18 1,172,992 --a------ c:\windows\system32\ole32.dll
    2009-02-19 18:20 . 2003-08-25 21:18 1,172,992 --a--c--- c:\windows\system32\dllcache\ole32.dll
    2009-02-19 18:20 . 2003-08-25 21:18 532,480 --a------ c:\windows\system32\rpcrt4.dll
    2009-02-19 18:20 . 2003-08-25 21:18 532,480 --a--c--- c:\windows\system32\dllcache\rpcrt4.dll
    2009-02-19 18:20 . 2003-08-25 21:17 260,608 --a------ c:\windows\system32\rpcss.dll
    2009-02-19 18:20 . 2003-08-25 21:17 260,608 --a--c--- c:\windows\system32\dllcache\rpcss.dll
    2009-02-19 18:18 . 2002-08-29 11:33 52,736 --a------ c:\windows\system32\drivers\i8042prt.sys
    2009-02-19 18:18 . 2002-08-29 11:35 24,064 --a------ c:\windows\system32\drivers\kbdclass.sys
    2009-02-19 18:16 . 2003-04-03 11:09 1,675,264 --a------ c:\windows\system32\mplva6.dll
    2009-02-19 18:16 . 2003-04-03 11:09 1,630,208 --a------ c:\windows\system32\mplvw7.dll
    2009-02-19 18:16 . 2003-04-03 11:09 1,581,056 --a------ c:\windows\system32\mplvm6.dll
    2009-02-19 18:16 . 2003-04-03 11:09 1,150,976 --a------ c:\windows\system32\mplvpx.dll
    2009-02-19 18:16 . 2003-05-09 11:30 106,496 --a------ c:\windows\system32\lmpgspl.ax
    2009-02-19 18:16 . 2003-05-09 11:30 94,208 --a------ c:\windows\system32\lmpgvd.ax
    2009-02-19 18:16 . 2003-04-03 11:09 81,920 --a------ c:\windows\system32\mplaw7.dll
    2009-02-19 18:16 . 2003-04-03 11:09 81,920 --a------ c:\windows\system32\mplaa6.dll
    2009-02-19 18:16 . 2003-04-03 11:09 69,632 --a------ c:\windows\system32\mplapx.dll
    2009-02-19 18:16 . 2003-04-03 11:09 69,632 --a------ c:\windows\system32\mplam6.dll
    2009-02-19 18:16 . 2003-04-03 11:09 49,152 --a------ c:\windows\system32\cpuinf32.dll
    2009-02-19 18:16 . 2003-05-09 11:30 47,104 --a------ c:\windows\system32\lmpgad.ax
    2009-02-19 18:15 . 1995-07-31 13:44 212,480 --a------ c:\windows\PCDLIB32.DLL
    2009-02-19 18:12 . 2009-02-19 18:12 <REP> d-------- c:\program files\Multimedia Card Reader
    2009-02-19 14:25 . 2009-02-19 14:38 <REP> d-------- c:\documents and settings\All Users\Application Data\Logishrd
    2009-02-19 14:24 . 2009-02-19 14:26 <REP> d-------- c:\program files\Fichiers communs\LogiShrd
    2009-02-19 14:24 . 2009-02-19 14:24 <REP> d-------- c:\documents and settings\All Users\Application Data\Logitech
    2009-02-19 14:18 . 2009-02-20 10:18 <REP> d-------- c:\program files\Labtec
    2009-02-19 12:57 . 2009-02-19 12:57 <REP> d-------- c:\documents and settings\All Users\Application Data\ma-config.com
    2009-02-16 19:29 . 2004-09-20 15:20 16,121,856 --a------ c:\windows\system32\ALSNDMGR.CPL
    2009-02-16 19:29 . 2004-09-21 11:13 9,196,032 --------- c:\windows\system32\RTLCPL.exe
    2009-02-16 19:29 . 2004-09-10 10:12 208,896 --------- c:\windows\alcupd.exe
    2009-02-16 19:29 . 2004-09-07 14:23 156,672 --------- c:\windows\system32\RtlCPAPI.dll
    2009-02-16 19:29 . 2004-09-01 20:04 139,264 --------- c:\windows\alcrmv.exe

    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2009-02-21 08:32 3,145,728 ----a-w c:\documents and settings\Invité\ntuser.dat
    2009-02-20 21:17 0 ----a-w c:\windows\system32\drivers\lvuvc.hs
    2009-02-20 16:40 --------- d--h--w c:\program files\InstallShield Installation Information
    2009-02-20 16:40 --------- d-----w c:\program files\TRENDnet
    2009-02-20 16:31 --------- d-----w c:\program files\CCleaner
    2009-02-20 16:31 --------- d-----w c:\documents and settings\All Users\Application Data\Yahoo! Companion
    2009-02-20 16:27 --------- d---a-w c:\program files\Fichiers communs\Symantec Shared
    2009-02-20 09:50 --------- d---a-w c:\program files\Services en ligne
    2009-02-20 09:28 --------- d-----w c:\documents and settings\All Users\Application Data\Installations
    2009-02-20 09:20 --------- d-----w c:\program files\Zylom Games
    2009-02-20 09:17 --------- d-----w c:\program files\Alwil Software
    2009-02-20 00:14 --------- d---a-w c:\program files\Fichiers communs\HP
    2009-02-19 23:09 --------- d-----w c:\program files\Fichiers communs\Logitech
    2009-02-19 23:06 --------- d-----w c:\program files\Logitech
    2009-02-19 17:24 4,846 --sha-r c:\windows\system32\drivers\HP_DN157A-ABF a340.fr_YC_Pavi_QCZB343_E34FRwsBLF2_4_IA7N8X-LA_SASUSTeK Computer INC._VRev 1.xx_B3.05_T030917_W1_L40C_M256_J80_7AMD_8Athlon XP 2600+_92,08_110DE006E_N10DE0066_P_Z14F12F00_K_A10DE006A_U10DE0067_G10025961.MRK
    2009-02-19 17:17 --------- d---a-w c:\program files\InterVideo
    2009-02-19 17:15 --------- d-----w c:\program files\ArcSoft
    2009-02-19 17:08 --------- d---a-w c:\program files\Easy Internet signup
    2009-01-30 18:42 1,409 ----a-w c:\windows\Fonts\SncfPre.fot
    2009-01-30 18:41 1,409 ----a-w c:\windows\Fonts\sncf09.fot
    2008-12-27 15:11 --------- d-----w c:\program files\Windows Live
    2008-12-27 15:11 --------- d-----w c:\program files\Microsoft Silverlight
    2008-12-27 15:11 --------- d-----w c:\program files\Microsoft
    2008-12-27 15:04 --------- d-----w c:\program files\Windows Live Toolbar
    2008-12-27 15:03 --------- d-----w c:\program files\Microsoft Sync Framework
    2008-12-27 15:02 --------- d-----w c:\program files\Microsoft SQL Server Compact Edition
    2008-12-27 14:59 --------- d-----w c:\program files\Windows Live SkyDrive
    2008-12-27 14:48 --------- d-----w c:\program files\Fichiers communs\Windows Live
    2008-12-24 13:16 --------- d---a-w c:\documents and settings\Invité\Application Data\Sonic
    2008-12-20 22:47 826,368 ----a-w c:\windows\system32\wininet(4)(3).dll
    2008-12-20 22:47 105,984 ----a-w c:\windows\system32\url(4)(3).dll
    2008-12-20 22:47 1,160,192 ----a-w c:\windows\system32\urlmon(4)(3).dll
    2008-12-20 22:46 267,776 ----a-w c:\windows\system32\iertutil(2)(2)(2).dll
    2008-12-04 23:11 308,584 -c--a-w c:\windows\WLXPGSS.SCR
    2008-12-02 21:37 49,480 ----a-w c:\windows\system32\sirenacm.dll
    2003-01-01 22:40 32 --sha-w c:\windows\{2CF173C4-36FA-4F70-B9C9-F4E2013BB5A4}.dat
    2007-02-15 23:09 56 -csh--r c:\windows\system32\D581AA88EE.sys
    2007-02-15 23:09 3,766 -csha-w c:\windows\system32\KGyGaAvL.sys
    2003-01-01 22:40 32 --sha-w c:\windows\system32\{7CC9B21B-B4DA-4BFE-8E3C-55CD6CDAF6F7}.dat
    .

    ------- Sigcheck -------

    2004-08-04 07:00 29056 4448006b6bc60e6c027932cfc38d6855 c:\windows\ServicePackFiles\i386\ip6fw.sys
    2008-04-13 19:53 36608 3bb22519a194418d5fec05d800a19ad0 c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\ip6fw.sys
    2008-04-13 19:53 36608 3bb22519a194418d5fec05d800a19ad0 c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\ip6fw.sys
    2004-08-04 07:00 29056 4448006b6bc60e6c027932cfc38d6855 c:\windows\system32\dllcache\ip6fw.sys
    2004-08-04 07:00 29056 4448006b6bc60e6c027932cfc38d6855 c:\windows\system32\drivers\ip6fw.sys
    .
    ((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2002-08-21 1511453]
    "msnmsgr"="c:\program files\MSN Messenger\MsnMsgr.Exe" [2005-04-27 6856704]
    "NVIEW"="nview.dll" [2003-05-03 c:\windows\system32\nview.dll]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736]
    "HotKeysCmds"="c:\windows\System32\hkcmd.exe" [2003-04-07 114688]
    "CamMonitor"="c:\program files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe" [2002-10-07 90112]
    "HPHUPD05"="c:\program files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe" [2003-05-23 49152]
    "HPHmon05"="c:\windows\System32\hphmon05.exe" [2003-05-23 483328]
    "KBD"="c:\hp\KBD\KBD.EXE" [2003-02-12 61440]
    "StorageGuard"="c:\program files\Fichiers communs\Sonic\Update Manager\sgtray.exe" [2003-02-13 155648]
    "Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2002-09-14 212992]
    "NvCplDaemon"="c:\windows\System32\NvCpl.dll" [2003-05-03 4640768]
    "ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2003-07-19 335872]
    "Sunkist2k"="c:\program files\Multimedia Card Reader\shwicon2k.exe" [2003-08-09 139264]
    "PS2"="c:\windows\system32\ps2.exe" [2002-10-16 81920]
    "LogitechCameraAssistant"="c:\program files\Logitech\Video\CameraAssistant.exe" [2005-12-07 489472]
    "LogitechVideo[inspector]"="c:\program files\Logitech\Video\InstallHelper.exe" [2005-12-07 10:33 73728]
    "LogitechCameraService(E)"="c:\windows\System32\ElkCtrl.exe" [2004-11-01 262144]
    "VTTimer"="VTTimer.exe" [2003-05-08 c:\windows\system32\VTTimer.exe]
    "ATIModeChange"="Ati2mdxx.exe" [2001-09-05 c:\windows\system32\Ati2mdxx.exe]

    c:\windows\system32\config\systemprofile\Menu D‚marrer\Programmes\D‚marrage\
    AutoTBar.exe [2003-06-21 53248]
    mod_sm.lnk - c:\hp\bin\cloaker.exe [1999-11-07 27136]

    c:\documents and settings\Administrateur\Menu D‚marrer\Programmes\D‚marrage\
    mod_sm.lnk - c:\hp\bin\cloaker.exe [1999-11-07 27136]

    c:\windows\system32\config\systemprofile\Menu D‚marrer\Programmes\D‚marrage\
    AutoTBar.exe [2003-06-21 53248]
    mod_sm.lnk - c:\hp\bin\cloaker.exe [1999-11-07 27136]

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "c:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=

    R3 RTL8187B;TRENDnet TEW-424UB 54M USB Dongle;c:\windows\system32\drivers\RTL8187B.sys [2009-02-20 215040]
    R3 SjyPkt;SjyPkt;c:\windows\system32\drivers\SjyPkt.sys [2002-10-02 13532]

    --- Autres Services/Pilotes en mémoire ---

    *NewlyCreated* - AEGISP
    *NewlyCreated* - SJYPKT
    .
    Contenu du dossier 'Tâches planifiées'

    2009-02-20 c:\windows\Tasks\HPpromotions journeysoftware.job
    - c:\program files\hp\digital imaging\bin\hp promotions\journeysoftware\HPpromo.exe [2005-04-22 17:36]
    .
    - - - - ORPHELINS SUPPRIMES - - - -

    HKCU-Run-BackupNotify - c:\program files\Hewlett-Packard\Digital Imaging\bin\backupnotify.exe

    .
    ------- Examen supplémentaire -------
    .
    uDefault_Search_URL = hxxp://srch-fr9.hpwis.com/
    mStart Page = hxxp://fr9.hpwis.com/
    mSearch Bar = hxxp://srch-fr9.hpwis.com/
    IE: {{c95fe080-8f5d-11d2-a20b-00aa003c157a} - %SystemRoot%\web\related.htm
    Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    FF - ProfilePath -
    .

    **************************************************************************

    catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-02-21 09:37:19
    Windows 5.1.2600 Service Pack 1 NTFS

    Recherche de processus cachés ...

    Recherche d'éléments en démarrage automatique cachés ...

    Recherche de fichiers cachés ...

    Scan terminé avec succès
    Fichiers cachés: 0

    **************************************************************************
    .
    --------------------- DLLs chargées dans les processus actifs ---------------------

    - - - - - - - > 'winlogon.exe'(1004)
    c:\windows\System32\ODBC32.dll
    c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

    - - - - - - - > 'lsass.exe'(1060)
    c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
    c:\windows\System32\dssenh.dll
    .
    Heure de fin: 2009-02-21 9:39:52
    ComboFix-quarantined-files.txt 2009-02-21 08:39:48

    Avant-CF: 26ÿ411ÿ941ÿ888 octets libres
    AprÞs-CF: 26,769,321,984 octets libres

    271
    0
  19. lilounotoobad Messages postés 110 Statut Membre 1
     
    Bonjour, je ne sais pas si c'est normal mais après avoir fais combofix, je n'avais plus d'image de fond d'écran ni même me connecter via mon navigateur alors que j'avais ma connection.

    J'ai donc fais une restauration de système (je sais pas si j'ai bien fais) qui m'as permis de mettre à jour mon hp chose que je n'arrivais pas à fair evia mon windows update.

    Bon week end.
    0
  20. plopus Messages postés 49 Date d'inscription   Statut Contributeur sécurité Dernière intervention   293
     
    oui c'est grave si tu a fait un erestauration systeme car tout ce qu'on vient de faire n'as servi a rien...

    edit : sa va encore on pas fait grand chose en fait :)

    tu te repris toutes tes me*des le fond ecran c'est normal combofix modifie les parametre de ton PC, c'est a dire que pour ta connection, en general il suffit simplement de remettre ta passerelle par default en tout cas chez moi c'est ce qui se passe combofix enleve ma passerelle dans les config windows donc du coup si tu es en IP fix tu perd internet mais il faut simplement la remettre

    bon...poste un nouveau hijackthis pour voir si on retrouve nos amis
    0
    1. lilounotoobad Messages postés 110 Statut Membre 1
       
      Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 12:22:22, on 21/02/2009
      Platform: Windows XP SP1 (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
      Boot mode: Normal

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\spoolsv.exe
      c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
      C:\windows\system\hpsysdrv.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
      C:\WINDOWS\System32\hphmon05.exe
      C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe
      C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      C:\Program Files\Multimedia Card Reader\shwicon2k.exe
      C:\WINDOWS\System32\LVCOMSX.EXE
      C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
      C:\Program Files\Logitech\Video\CameraAssistant.exe
      C:\WINDOWS\System32\ElkCtrl.exe
      C:\HP\KBD\KBD.EXE
      C:\WINDOWS\System32\ctfmon.exe
      C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\MSN Messenger\MsnMsgr.Exe
      C:\WINDOWS\System32\HPZipm12.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
      C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqimzone.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
      C:\Program Files\Mozilla Firefox\firefox.exe
      C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.hpe.com/h41271/404D.aspx?cc=us&ll=en&url=http://domainredirects.ext.hpe.com/fr9.hpwis.com/
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-fr9.hpwis.com/
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?cc=fr&toHttps=1&redig=D4322FEE7CF74A348CB9CE970F098EF5
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://srch-fr9.hpwis.com/
      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.hpe.com/h41271/404D.aspx?cc=us&ll=en&url=http://domainredirects.ext.hpe.com/fr9.hpwis.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-fr9.hpwis.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-fr9.hpwis.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://srch-fr9.hpwis.com/
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.hpe.com/h41271/404D.aspx?cc=us&ll=en&url=http://domainredirects.ext.hpe.com/fr9.hpwis.com/
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
      O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - c:\Program Files\Microsoft Money\System\mnyside.dll
      O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
      O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
      O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
      O3 - Toolbar: (no name) - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - (no file)
      O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
      O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
      O4 - HKLM\..\Run: [CamMonitor] c:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
      O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
      O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
      O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
      O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
      O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
      O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
      O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
      O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      O4 - HKLM\..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe
      O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
      O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
      O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
      O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
      O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
      O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\System32\ElkCtrl.exe /automation
      O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
      O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
      O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
      O4 - HKCU\..\Run: [BackupNotify] c:\Program Files\Hewlett-Packard\Digital Imaging\bin\backupnotify.exe
      O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
      O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
      O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM')
      O4 - S-1-5-18 Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'SYSTEM')
      O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user')
      O4 - .DEFAULT Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
      O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
      O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
      O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
      O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
      O4 - Global Startup: BTTray.lnk = ?
      O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqthb08.exe
      O4 - Global Startup: GStartup.lnk = C:\Program Files\Fichiers communs\GMT\GMT.exe
      O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
      O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
      O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
      O4 - Global Startup: Wireless Configuration Utility HW.14.lnk = C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
      O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
      O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
      O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - c:\Program Files\Microsoft Money\System\mnyside.dll
      O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
      O18 - Protocol: bw+0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw+0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw-0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw-0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw00 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw00s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw10 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw10s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw20 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw20s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw30 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw30s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw40 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw40s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw50 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw50s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw60 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw60s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw70 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw70s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw80 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw80s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw90 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw90s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwa0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwa0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwb0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwb0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwc0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwc0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwd0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwd0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwe0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwe0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwf0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwf0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
      O18 - Protocol: bwg0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwg0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwh0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwh0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwi0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwi0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwj0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwj0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwk0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwk0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwl0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwl0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwm0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwm0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwn0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwn0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwo0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwo0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwp0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwp0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwq0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwq0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwr0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwr0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bws0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bws0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwt0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwt0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwu0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwu0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwv0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwv0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bww0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bww0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwx0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwx0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwy0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwy0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwz0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwz0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: offline-8876480 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
      O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
      O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
      O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
      0
    2. lilounotoobad Messages postés 110 Statut Membre 1
       
      Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 12:22:22, on 21/02/2009
      Platform: Windows XP SP1 (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
      Boot mode: Normal

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\spoolsv.exe
      c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
      C:\windows\system\hpsysdrv.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
      C:\WINDOWS\System32\hphmon05.exe
      C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe
      C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      C:\Program Files\Multimedia Card Reader\shwicon2k.exe
      C:\WINDOWS\System32\LVCOMSX.EXE
      C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
      C:\Program Files\Logitech\Video\CameraAssistant.exe
      C:\WINDOWS\System32\ElkCtrl.exe
      C:\HP\KBD\KBD.EXE
      C:\WINDOWS\System32\ctfmon.exe
      C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\MSN Messenger\MsnMsgr.Exe
      C:\WINDOWS\System32\HPZipm12.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
      C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqimzone.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
      C:\Program Files\Mozilla Firefox\firefox.exe
      C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.hpe.com/h41271/404D.aspx?cc=us&ll=en&url=http://domainredirects.ext.hpe.com/fr9.hpwis.com/
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-fr9.hpwis.com/
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?cc=fr&toHttps=1&redig=D4322FEE7CF74A348CB9CE970F098EF5
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://srch-fr9.hpwis.com/
      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.hpe.com/h41271/404D.aspx?cc=us&ll=en&url=http://domainredirects.ext.hpe.com/fr9.hpwis.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-fr9.hpwis.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-fr9.hpwis.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://srch-fr9.hpwis.com/
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.hpe.com/h41271/404D.aspx?cc=us&ll=en&url=http://domainredirects.ext.hpe.com/fr9.hpwis.com/
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
      O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - c:\Program Files\Microsoft Money\System\mnyside.dll
      O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
      O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
      O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
      O3 - Toolbar: (no name) - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - (no file)
      O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
      O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
      O4 - HKLM\..\Run: [CamMonitor] c:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
      O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
      O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
      O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
      O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
      O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
      O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
      O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
      O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      O4 - HKLM\..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe
      O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
      O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
      O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
      O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
      O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
      O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\System32\ElkCtrl.exe /automation
      O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
      O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
      O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
      O4 - HKCU\..\Run: [BackupNotify] c:\Program Files\Hewlett-Packard\Digital Imaging\bin\backupnotify.exe
      O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
      O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
      O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM')
      O4 - S-1-5-18 Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'SYSTEM')
      O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user')
      O4 - .DEFAULT Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
      O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
      O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
      O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
      O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
      O4 - Global Startup: BTTray.lnk = ?
      O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqthb08.exe
      O4 - Global Startup: GStartup.lnk = C:\Program Files\Fichiers communs\GMT\GMT.exe
      O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
      O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
      O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
      O4 - Global Startup: Wireless Configuration Utility HW.14.lnk = C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
      O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
      O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
      O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - c:\Program Files\Microsoft Money\System\mnyside.dll
      O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
      O18 - Protocol: bw+0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw+0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw-0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw-0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw00 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw00s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw10 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw10s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw20 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw20s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw30 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw30s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw40 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw40s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw50 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw50s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw60 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw60s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw70 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw70s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw80 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw80s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw90 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw90s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwa0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwa0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwb0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwb0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwc0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwc0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwd0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwd0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwe0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwe0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwf0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwf0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
      O18 - Protocol: bwg0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwg0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwh0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwh0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwi0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwi0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwj0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwj0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwk0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwk0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwl0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwl0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwm0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwm0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwn0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwn0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwo0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwo0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwp0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwp0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwq0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwq0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwr0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwr0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bws0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bws0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwt0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwt0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwu0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwu0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwv0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwv0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bww0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bww0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwx0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwx0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwy0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwy0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwz0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwz0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: offline-8876480 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
      O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
      O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
      O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
      0
    3. lilounotoobad Messages postés 110 Statut Membre 1
       
      je comprends pas mes msg ne sont pas passés bon je remet le raport et je fais bit defender en ligne car je peux maintenant..

      Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 15:38:08, on 21/02/2009
      Platform: Windows XP SP1 (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
      Boot mode: Normal

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\spoolsv.exe
      c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
      C:\windows\system\hpsysdrv.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
      C:\WINDOWS\System32\hphmon05.exe
      C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      C:\Program Files\Multimedia Card Reader\shwicon2k.exe
      C:\WINDOWS\System32\LVCOMSX.EXE
      C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
      C:\Program Files\Logitech\Video\CameraAssistant.exe
      C:\WINDOWS\System32\ElkCtrl.exe
      C:\HP\KBD\KBD.EXE
      C:\WINDOWS\System32\ctfmon.exe
      C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\MSN Messenger\MsnMsgr.Exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
      C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqimzone.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr9.hpwis.com/
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-fr9.hpwis.com/
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.fr/spbasic.htm
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://srch-fr9.hpwis.com/
      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr9.hpwis.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-fr9.hpwis.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-fr9.hpwis.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://srch-fr9.hpwis.com/
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr9.hpwis.com/
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
      O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - c:\Program Files\Microsoft Money\System\mnyside.dll
      O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
      O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
      O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
      O3 - Toolbar: (no name) - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - (no file)
      O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
      O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
      O4 - HKLM\..\Run: [CamMonitor] c:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
      O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
      O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
      O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
      O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
      O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
      O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
      O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
      O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
      O4 - HKLM\..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe
      O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
      O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
      O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
      O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
      O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
      O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\System32\ElkCtrl.exe /automation
      O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
      O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
      O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
      O4 - HKCU\..\Run: [BackupNotify] c:\Program Files\Hewlett-Packard\Digital Imaging\bin\backupnotify.exe
      O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
      O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
      O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM')
      O4 - S-1-5-18 Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'SYSTEM')
      O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user')
      O4 - .DEFAULT Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
      O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
      O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
      O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
      O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
      O4 - Global Startup: BTTray.lnk = ?
      O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqthb08.exe
      O4 - Global Startup: GStartup.lnk = C:\Program Files\Fichiers communs\GMT\GMT.exe
      O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
      O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
      O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
      O4 - Global Startup: Wireless Configuration Utility HW.14.lnk = C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
      O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
      O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
      O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
      O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
      O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - c:\Program Files\Microsoft Money\System\mnyside.dll
      O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
      O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
      O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
      O18 - Protocol: bw+0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw+0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw-0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw-0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw00 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw00s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw10 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw10s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw20 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw20s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw30 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw30s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw40 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw40s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw50 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw50s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw60 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw60s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw70 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw70s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw80 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw80s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw90 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw90s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwa0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwa0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwb0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwb0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwc0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwc0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwd0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwd0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwe0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwe0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwf0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwf0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
      O18 - Protocol: bwg0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwg0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwh0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwh0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwi0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwi0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwj0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwj0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwk0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwk0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwl0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwl0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwm0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwm0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwn0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwn0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwo0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwo0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwp0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwp0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwq0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwq0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwr0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwr0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bws0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bws0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwt0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwt0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwu0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwu0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwv0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwv0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bww0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bww0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwx0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwx0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwy0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwy0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwz0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwz0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: offline-8876480 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
      O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
      O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
      O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
      0
    4. lilounotoobad Messages postés 110 Statut Membre 1
       
      Bonjour, Voilà les 2 rapports que tu m'as demandé bon je m'y connais pas trop mais par rapport a la toute première analyse malwarebytes, je n'avais plus que 4 dossiers infectés contre 40..Je te poste les 2 rapports demandé, je fais une analyse bitdefender en ligne et je te la post après.

      Merci de prendre un petit peu de temps sur ton week end pour m'aider.

      Error: Unable to interpret <:> in the current context!
      ========== PROCESSES ==========
      Process explorer.exe killed successfully.
      ========== FILES ==========
      File/Folder c:\windows\Readme.txt not found.
      LoadLibrary failed for c:\windows\system32\iAlmcoin.dll
      c:\windows\system32\iAlmcoin.dll NOT unregistered.
      c:\windows\system32\iAlmcoin.dll moved successfully.
      ========== COMMANDS ==========
      File delete failed. C:\DOCUME~1\PROPRI~1.LIN\LOCALS~1\Temp\hpodvd09.log scheduled to be deleted on reboot.
      File delete failed. C:\DOCUME~1\PROPRI~1.LIN\LOCALS~1\Temp\~DFAC0F.tmp scheduled to be deleted on reboot.
      User's Temp folder emptied.
      User's Temporary Internet Files folder emptied.
      User's Internet Explorer cache folder emptied.
      File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
      File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Historique\History.IE5\index.dat scheduled to be deleted on reboot.
      File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
      Local Service Temp folder emptied.
      Local Service Temporary Internet Files folder emptied.
      Windows Temp folder emptied.
      FireFox cache emptied.
      Temp folders emptied.
      Explorer started successfully

      OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 02212009_221348

      Files moved on Reboot...
      C:\DOCUME~1\PROPRI~1.LIN\LOCALS~1\Temp\hpodvd09.log moved successfully.
      File C:\DOCUME~1\PROPRI~1.LIN\LOCALS~1\Temp\~DFAC0F.tmp not found!
      File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat scheduled to be moved on reboot.
      File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Historique\History.IE5\index.dat scheduled to be moved on reboot.
      File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be moved on reboot.





      Malwarebytes' Anti-Malware 1.34
      Version de la base de données: 1788
      Windows 5.1.2600 Service Pack 2

      21/02/2009 22:54:38
      mbam-log-2009-02-21 (22-54-38).txt

      Type de recherche: Examen rapide
      Eléments examinés: 79534
      Temps écoulé: 10 minute(s), 58 second(s)

      Processus mémoire infecté(s): 0
      Module(s) mémoire infecté(s): 0
      Clé(s) du Registre infectée(s): 0
      Valeur(s) du Registre infectée(s): 0
      Elément(s) de données du Registre infecté(s): 0
      Dossier(s) infecté(s): 4
      Fichier(s) infecté(s): 1

      Processus mémoire infecté(s):
      (Aucun élément nuisible détecté)

      Module(s) mémoire infecté(s):
      (Aucun élément nuisible détecté)

      Clé(s) du Registre infectée(s):
      (Aucun élément nuisible détecté)

      Valeur(s) du Registre infectée(s):
      (Aucun élément nuisible détecté)

      Elément(s) de données du Registre infecté(s):
      (Aucun élément nuisible détecté)
      0
    5. lilounotoobad Messages postés 110 Statut Membre 1
       
      Ah oui j'ai oublié de te demandé losrque que j'ai cliqué sur Moveit, j'ai le msg suivant : L'application ou la DLL c:\windows\system32\iAlmcoin.dll n'est pas une image windows valide vérifier à l'aide de la disquette d'installation.

      C'est normal?

      Sinon pour combofix et la passerelle dans configuration windows, tu pourras m'expliquer au cas où?
      Merci
      0
  21. plopus Messages postés 49 Date d'inscription   Statut Contributeur sécurité Dernière intervention   293
     
    relance hijackthis choisit do a scan only et coche les cases a gauches des lignes :

    O3 - Toolbar: (no name) - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - (no file)
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
    O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
    O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user')
    O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
    O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: BTTray.lnk = ?
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
    O18 - Protocol: bw+0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: offline-8876480 - {30EFF9E7-F653-411D-937F-F34D1D78EC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

    puis clic sur fix checked

    desactive ton antivirus, deconnecte toi d'internet pour faire la manip qui suit

    • Télécharge OTMoveIt3 (de OldTimer) sur ton Bureau : http://oldtimer.geekstogo.com/OTMoveIt3.exe
    • Double-clique sur OTMoveIt3.exe afin de le lancer.
    • Copie/colle le texte suivant dans le cadre « Paste Instructions for Items to be Moved » et clique sur Moveit :

    :processes
    explorer.exe

    :files
    c:\windows\Readme.txt
    c:\windows\system32\iAlmcoin.dll

    :commands
    [purity]
    [emptytemp]
    [start explorer]
    [reboot]

    • Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer. Accepte en cliquant sur YES.

    • Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles
    Le nom du rapport correspond au moment de sa création : date_heure.log

    puis

    * Télécharge Malwarebytes https://www.androidworld.fr/
    * Tu auras un tutoriel à ta disposition pour l'installer et l'utiliser correctement.
    * Fais la mise à jour du logiciel (elle se fait normalement à l'installation)
    * Lance une analyse complète en cliquant sur "Exécuter un examen RAPIDE"
    * Sélectionnes les disques que tu veux analyser et cliques sur "Lancer l'examen"
    * L'analyse peut durer un bon moment.....
    * Une fois l'analyse terminée, cliques sur "OK" puis sur "Afficher les résultats"
    * Vérifies que tout est bien coché et cliques sur "Supprimer la sélection" => et ensuite sur "OK"
    * Un rapport va s'ouvrir dans le bloc note... Fais un copié/collé du rapport dans ta prochaine réponse sur le forum

    * Il se pourrait que certains fichiers devront être supprimés au redémarrage du PC... Faites le en cliquant sur "oui" à la question posée
    0
  • 1
  • 2