Sujet Précédent Sujet Suivant

Rapport navilog

robi33brico -  
BP'S Messages postés 1607 Statut Membre -
Bonjour,
Un spécialiste, peut-il m'interpréter le rapport navilog ci-dessous, Merci d'avance
Search Navipromo version 3.7.6 commencé le 29/03/2009 à 9:47:39,84

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 14.03.2009 à 18h00 par IL-MAFIOSO

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : HP_Administrateur ( Administrator )
BOOT : Normal boot

Antivirus : avast! antivirus 4.8.1335 [VPS 090328-0] 4.8.1335 (Activated)

C:\ (Local Disk) - NTFS - Total:226 Go (Free:106 Go)
D:\ (Local Disk) - FAT32 - Total:6 Go (Free:0 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

Recherche executé en mode normal

*** Recherche dossiers dans "C:\WINDOWS" ***

*** Recherche dossiers dans "C:\Program Files" ***

*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***

*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***

*** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***

*** Recherche dossiers dans "C:\Documents and Settings\HP_Administrateur\applic~1" ***

*** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" ***

*** Recherche dossiers dans "C:\Documents and Settings\HP_Administrateur\locals~1\applic~1" ***

*** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" ***

*** Recherche dossiers dans "C:\Documents and Settings\HP_Administrateur\menudm~1\progra~1" ***

*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans "C:\WINDOWS\system32" *

* Recherche dans "C:\Documents and Settings\HP_Administrateur\locals~1\applic~1" *

* Recherche dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *

*** Recherche fichiers ***

*** Recherche clés spécifiques dans le Registre ***
!! Les clés trouvées ne sont pas forcément infectées !!

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"eqwyaiy"="\"c:\\documents and settings\\hp_administrateur\\local settings\\application data\\eqwyaiy.exe\" eqwyaiy"

*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :

2)Recherche Heuristique :

* Dans "C:\WINDOWS\system32" :

* Dans "C:\Documents and Settings\HP_Administrateur\locals~1\applic~1" :

eqwyaiy.exe trouvé !
eqwyaiy.dat trouvé !
eqwyaiy_nav.dat trouvé !
eqwyaiy_navps.dat trouvé !

* Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" :

3)Recherche Certificats :

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !

4)Recherche autres dossiers et fichiers connus :

*** Analyse terminée le 29/03/2009 à 9:52:03,42 ***

8 réponses

Réponse 1 / 8
vieu bison boiteu Messages postés 45522 Date d'inscription   Statut Contributeur Dernière intervention   Ambassadeur 3 556
 
salut robi33brico,

mafioso ne passe pas par ici , mais son navilog1 t'a trouvé

eqwyaiy.exe trouvé !
eqwyaiy.dat trouvé !
eqwyaiy_nav.dat trouvé !
eqwyaiy_navps.dat trouvé !

je transmets
mais rien n'empêche que quelqu'un de qualifié regarde

généralement , on commence par un "HijackThis"

à+
0
neo
 
salut,
excse moi, mais j un brobleme avec mon telechargement qui est tres lent je suis au maroc je travail avec un retour sagem de 4m wifi mais qund je telecharge ca telecharge avec 14a30kb/s des fois ca descand jusqua 1kb/s et ca me rend malade. aidez moi svp
0
vieu bison boiteu Messages postés 45522 Date d'inscription   Statut Contributeur Dernière intervention   3 556 > neo
 
salut

ce n'est pas la place ici pour ce type de message qui n'a pas de rapport avec le sujet
et pour la qualité de la ligne , d' ici , on ne peut pas la changer

à+
0
vieu bison boiteu Messages postés 45522 Date d'inscription   Statut Contributeur Dernière intervention   3 556
 
je vais faire des remarques avant ton log pour ne pas interférer avec la suite

tu as ces lignes
C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
et
O4 - Global Startup: e-Carte Bleue La Banque Postale.lnk = C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
tu fais tes opérations en ligne ???
dangereux , surtout avec "toolbar.ask.com"
je n'ai pas çà , pour ma part ( je préfère me déplacer )

pour Java , il n'est pas à jour ( le dernier = 20090117_JRE-6u13 )
C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe
téléchargement = https://www.java.com/fr/download/manual.jsp

aussi , tu ne serais pas redirigé vers des pages internet indésirables ???

comme antivirus , tu as Avast , c' est le payant ???

pour ces lignes , dans Navilog1
eqwyaiy.exe trouvé !
eqwyaiy.dat trouvé !
eqwyaiy_nav.dat trouvé !
eqwyaiy_navps.dat trouvé !
ces fichiers ont été supprimés
tu ne dois plus les trouver dans le répertoire indiqué

à+
0
robi33brico > vieu bison boiteu Messages postés 45522 Date d'inscription   Statut Contributeur Dernière intervention  
 
re,
Merci de ta réponse :
- C;bleue no problem c'est le systeme de la cb virtuelle a une seule transaction- aucun risques .
- pour java ok je télécharge la nouvelle mise a jour
- aVAST c'est la version gratuite
- ligne de navilog 1 : que dois-je faire ,

merci de ta collaboration
0
vieu bison boiteu Messages postés 45522 Date d'inscription   Statut Contributeur Dernière intervention   3 556 > robi33brico
 
OK pour le compte virtuel avec son numéro propre à chaque commande ( n° pour un montant donné )

personnellement , je me méfie grandement de ces lignes avec "toolbar.ask.com"
je laisse faire BP'S

à+
0
Réponse 2 / 8
vieu bison boiteu Messages postés 45522 Date d'inscription   Statut Contributeur Dernière intervention   Ambassadeur 3 556
 
Fais une analyse avec HijackThis:

1)- Télécharge Hijackthis (Trend Secure) ==> HijackThis™ 2.0 .2 < http://www.trendsecure.com/portal/en-US/threat_analytics/hijackthis.php?page=download >
Sur la page, choisis « Download HijackThis Installer » et enregistre-le sur le bureau. Tu dois voir une nouvelle icône « HJTInstall.exe » sur le bureau.

2)- Installation : clic-droit sur l’ icône « HJTInstall.exe » présente sur ton bureau et choisis : "Exécuter en tant qu'administrateur" dans le menu déroulant qui s'affiche.
- Ensuite, clic sur « Exécuter », puis sur « Install ».
- Accepte la licence en cliquant sur le bouton "I Accept"
- Le programme s’installe de lui-même dans un dossier dédié.
- Par défaut, il s'installera en C:\Program Files\Trend Micro\HijackThis
- Et un raccourci pour lancer l’analyse apparaît sur le bureau.

3)Analyse :
•-Important à faire en priorité si tu possèdes le logiciel Spybot S&D > Désactive le Tea Timer de Spybot en passant par les options de Spybot: il faut aller dans le menu "Mode" => coche "Mode avancé" => "Outils"(en bas de page)=> "Résident" => et tu décoches cette case: "Résident Tea Timer" .
- Tu ne dois plus voir l'icône du Tea Timer dans la barre de tâches (Systray près de l’horloge)!

•-Arrête tous les programmes en cours et ferme toutes les fenêtres.
•- Puis, double-clic sur le raccourci HJT créé sur le bureau, et clic sur "Do a system scan and save a logfile" pour lancer l'analyse.
- À la fin du scan le bloc-notes va s'ouvrir sur le bureau
- Tu fais un copier/coller de tout son contenu.
- Et tu le postes sur le forum.
- Il sera enregistré dans le dossier C:\Program Files\Trend Micro\HijackThis, sous hijackthis.log.

à+
0
robi33brico
 
Merci de ton aide , ci-dessous le rapport hyjacthis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:04:09, on 29/03/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ECB.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\PeerGuardian2\pg2.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TomTom HOME 2\HOMERunner.exe
C:\Program Files\Free Download Manager\fdm.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\documents and settings\hp_administrateur\local settings\application data\eqwyaiy.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\arservice.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\FileZilla Server\FileZilla Server.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\SLEE503.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\HP\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\HP\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\Program Files\No-IP\DUC20.exe
C:\Program Files\HP\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\HP\Digital Imaging\Bin\hpoSTS08.exe
C:\WINDOWS\system32\wuauclt.exe
c:\windows\system\hpsysdrv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe
C:\Program Files\Fichiers communs\Adobe\Updater5\AdobeUpdater.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/webhp?hl=fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedirect?o=13165&gct=&gc=1&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/...
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedirect?o=13165&gct=&gc=1&q=
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://toolbar.ask.com/toolbarv/askRedirect?o=13165&gct=&gc=1&q=%s
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O1 - Hosts: 212.150.54.250 dv-networks.com
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar2.dll
O2 - BHO: sarpbho Class - {28457FA7-4AB0-4DE2-925F-8E49DB98A3FF} - c:\windows\system32\sarp.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Share Accelerator MM Toolbar - {4596013b-6c31-408b-a266-deae5c086dc2} - C:\Program Files\Share_Accelerator_MM\tbSha1.dll
O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\kb127\Dealio.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Share Accelerator MM Toolbar - {4596013b-6c31-408b-a266-deae5c086dc2} - C:\Program Files\Share_Accelerator_MM\tbSha1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\Program Files\Dealio\kb127\Dealio.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar2.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [DMAScheduler] "c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
O4 - HKLM\..\Run: [eCarteBleue-LP-P1] "C:\Program Files\ECB.exe" /dontopenmycards
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [FileZilla Server Interface] "C:\Program Files\FileZilla Server\FileZilla Server Interface.exe"
O4 - HKLM\..\Run: [ContentTransferWMDetector.exe] C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [au] C:\Program Files\Dealio\DealioAU.exe
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [SFS6] "C:\Program Files\Steganos Secure FileSharing 6\sfs.exe" /booting
O4 - HKCU\..\Run: [PeerGuardian] C:\Program Files\PeerGuardian2\pg2.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe"
O4 - HKCU\..\Run: [Free Download Manager] "C:\Program Files\Free Download Manager\fdm.exe" -autorun
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [eqwyaiy] "c:\documents and settings\hp_administrateur\local settings\application data\eqwyaiy.exe" eqwyaiy
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - .DEFAULT User Startup: PinMcLnk.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
O4 - Startup: No-IP DUC.lnk = C:\Program Files\No-IP\DUC20.exe
O4 - Global Startup: e-Carte Bleue La Banque Postale.lnk = C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
O4 - Global Startup: FileZilla FTP Client
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Compare Prices with &Dealio - C:\Documents and Settings\HP_Administrateur\Application Data\Dealio\kb127\res\DealioSearch.html
O8 - Extra context menu item: Locate Spot on Map by GPS - C:\Program Files\Opanda\IExif 2.3\IExifMap.htm
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: View Exif/GPS/IPTC with IExif - C:\Program Files\Opanda\IExif 2.3\IExifCom.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll
O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: bw+0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FileZilla Server FTP server (FileZilla Server) - FileZilla Project - C:\Program Files\FileZilla Server\FileZilla Server.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Unknown owner - c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe (file missing)
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Steganos Live Encryption Engine (Version 503) [Service] (SLEE_503_SERVICE) - Unknown owner - C:\WINDOWS\system32\SLEE503.exe
0
Réponse 3 / 8
BP'S Messages postés 1607 Statut Membre 314
 
hello,

Relances navilog , cette fois-ci choisis l otion 2 et repostes le rapport stp
0
Réponse 4 / 8
robi33brico
 
Merci, ci dessous nouveau log avec l'option 2
Clean Navipromo version 3.7.6 commencé le 29/03/2009 à 15:53:04,48

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 14.03.2009 à 18h00 par IL-MAFIOSO

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : HP_Administrateur ( Administrator )
BOOT : Normal boot

Antivirus : avast! antivirus 4.8.1335 [VPS 090328-0] 4.8.1335 (Activated)

C:\ (Local Disk) - NTFS - Total:226 Go (Free:106 Go)
D:\ (Local Disk) - FAT32 - Total:6 Go (Free:0 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
K:\ (Local Disk) - FAT32 - Total:465 Go (Free:451 Go)

Mode suppression automatique
avec prise en charge résultats Catchme et GNS

Nettoyage exécuté au redémarrage de l'ordinateur

*** fsbl1.txt non trouvé ***
(Assurez-vous que Catchme n'avait rien trouvé lors de la recherche)

*** Suppression avec sauvegardes résultats GenericNaviSearch ***

* Suppression dans "C:\WINDOWS\System32" *

* Suppression dans "C:\Documents and Settings\HP_Administrateur\locals~1\applic~1" *

* Suppression dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *

*** Suppression dossiers dans "C:\WINDOWS" ***

*** Suppression dossiers dans "C:\Program Files" ***

*** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***

*** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***

*** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" ***

*** Suppression dossiers dans "C:\Documents and Settings\HP_Administrateur\applic~1" ***

*** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" ***

*** Suppression dossiers dans "C:\Documents and Settings\HP_Administrateur\locals~1\applic~1" ***

*** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" ***

*** Suppression dossiers dans "C:\Documents and Settings\HP_Administrateur\menudm~1\progra~1" ***

*** Suppression fichiers ***

*** Suppression fichiers temporaires ***

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\HP_Administrateur\locals~1\Temp effectué !

*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Suppression avec sauvegardes nouveaux fichiers Instant Access :

2)Recherche, création sauvegardes et suppression Heuristique :

* Dans "C:\WINDOWS\system32" *

* Dans "C:\Documents and Settings\HP_Administrateur\locals~1\applic~1" *

eqwyaiy.exe trouvé !
Copie eqwyaiy.exe réalisée avec succès !
eqwyaiy.exe supprimé !

eqwyaiy.dat trouvé !
Copie eqwyaiy.dat réalisée avec succès !
eqwyaiy.dat supprimé !

eqwyaiy_nav.dat trouvé !
Copie eqwyaiy_nav.dat réalisée avec succès !
eqwyaiy_nav.dat supprimé !

eqwyaiy_navps.dat trouvé !
Copie eqwyaiy_navps.dat réalisée avec succès !
eqwyaiy_navps.dat supprimé !

* Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *

*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok

*** Certificats ***

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltdt absent !

*** Recherche autres dossiers et fichiers connus ***

*** Nettoyage terminé le 29/03/2009 à 15:58:42,67 ***
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 8
BP'S Messages postés 1607 Statut Membre 314
 
re

Télécharge Toolbar-S&D sur ton Bureau :
https://forums.cnetfrance.fr

* Lance l'installation du programme en exécutant le fichier téléchargé.
* Sélectionne la langue puis valide.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Copie/colle le contenu du rapport
0
robi33brico
 
Merci de l'aide ci-dessous rapport bp's

-----------\\ ToolBar S&D 1.2.6 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : HP_Administrateur ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090329-0] 4.8.1335 (Activated)
C:\ (Local Disk) - NTFS - Total:226 Go (Free:106 Go)
D:\ (Local Disk) - FAT32 - Total:6 Go (Free:0 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

"C:\ToolBar SD" ( MAJ : 04-12-2008|20:40 )
Option : [1] ( 30/03/2009|12:19 )

-----------\\ Recherche de Fichiers / Dossiers ...

C:\Program Files\AskBarDis
C:\Program Files\AskBarDis\bar
C:\Program Files\AskBarDis\unins000.dat
C:\Program Files\AskBarDis\unins000.exe
C:\Program Files\AskBarDis\unins001.dat
C:\Program Files\AskBarDis\unins001.exe
C:\Program Files\AskBarDis\bar\bin
C:\Program Files\AskBarDis\bar\Cache
C:\Program Files\AskBarDis\bar\History
C:\Program Files\AskBarDis\bar\Settings
C:\Program Files\AskBarDis\bar\bin\askBar.dll
C:\Program Files\AskBarDis\bar\bin\askBar1.dll
C:\Program Files\AskBarDis\bar\bin\askPopStp.dll
C:\Program Files\AskBarDis\bar\bin\askPopStp1.dll
C:\Program Files\AskBarDis\bar\bin\askPopStp2.dll
C:\Program Files\AskBarDis\bar\bin\psvince.dll
C:\Program Files\AskBarDis\bar\Cache\000F8DA0
C:\Program Files\AskBarDis\bar\Cache\000F9F63.bin
C:\Program Files\AskBarDis\bar\Cache\000FA8F8.bin
C:\Program Files\AskBarDis\bar\Cache\000FB126.bin
C:\Program Files\AskBarDis\bar\Cache\000FB84A.bin
C:\Program Files\AskBarDis\bar\Cache\000FBD4C.bin
C:\Program Files\AskBarDis\bar\Cache\files.ini
C:\Program Files\AskBarDis\bar\History\search
C:\Program Files\AskBarDis\bar\Settings\config.dat
C:\Program Files\AskBarDis\bar\Settings\config.dat.bak
C:\Program Files\AskBarDis\bar\Settings\prevcfg.htm
C:\Program Files\AskTBar
C:\Program Files\AskTBar\bar
C:\Program Files\AskTBar\PopSwatr
C:\Program Files\AskTBar\bar\History
C:\Program Files\AskTBar\bar\Settings
C:\Program Files\AskTBar\bar\History\search2
C:\Program Files\AskTBar\PopSwatr\History
C:\Program Files\AskTBar\PopSwatr\History\allowed
C:\Program Files\AskTBar\PopSwatr\History\notallow
C:\Program Files\BrowsingAdvisor
C:\Program Files\BrowsingAdvisor\BrowsingAdvisor.dat
C:\Program Files\BrowsingAdvisor\pcre3.dll
C:\Program Files\BrowsingAdvisor\uninstall.exe
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\dinstallhelper.0D8995122E4E4C04A7EB5EEF80539C9B.dll
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\dinstallhelper.324E838C3D4F434EA4C66558F4F62FA1.dll
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\dinstallhelper.361E64D871554036B1E214D724B84FC1.dll
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\temp
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\alerts.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\alerts_over.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\alerts_rec.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\alerts_rec_over.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\chevron-small.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\DealioSearch.html
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\deals-leftcap.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\deal_report.jpg
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\ebay_login.jpg
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\err_mainwindow.html
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\err_toolbar.html
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\global_scripts.js
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\headerbgthin.jpg
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\highlight-bg.png
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\logo.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\logo_over.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\man_toolbar.css
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\man_toolbar.html
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\man_toolbar.js
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\man_toolbarl.js
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\post-this-deal.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\post-this-deal_over.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\scripts.js
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\scroller.js
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\search-chevron.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\search-chevron_over.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\search_bg_blink.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\separator.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\settings.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\settings_over.gif
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\res\yahoo-search.png
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\index.76.35
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.10.76
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.109.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.110.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.12.52
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.13.58
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.130.58
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.135.50
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.153.44
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.155.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.156.49
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.16.60
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.161.52
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.178.66
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.184.55
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.188.52
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.189.45
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.196.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.198.56
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.199.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.200.53
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.201.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.202.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.203.71
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.205.62
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.213.71
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.214.49
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.215.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.216.67
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.217.67
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.218.52
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.219.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.220.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.221.57
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.222.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.223.68
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.226.68
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.227.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.228.62
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.229.76
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.23.63
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.239.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.24.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.240.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.241.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.242.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.243.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.244.63
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.245.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.247.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.248.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.249.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.250.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.251.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.252.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.253.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.254.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.255.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.256.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.257.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.279.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.28.58
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.282.75
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.283.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.284.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.289.67
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.290.62
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.291.61
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.296.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.297.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.304.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.307.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.308.75
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.31.47
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.310.46
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.311.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.315.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.316.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.317.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.318.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.319.49
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.32.48
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.334.44
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.335.60
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.336.44
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.337.44
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.338.75
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.339.47
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.34.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.340.47
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.341.47
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.349.50
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.35.48
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.350.50
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.351.51
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.352.54
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.353.51
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.354.51
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.357.62
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.358.52
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.359.52
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.360.53
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.361.54
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.362.68
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.363.58
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.364.54
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.365.53
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.367.56
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.368.58
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.369.55
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.370.56
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.371.56
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.372.57
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.373.55
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.375.56
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.376.57
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.377.55
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.378.65
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.384.58
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.386.71
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.387.59
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.388.59
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.389.59
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.390.60
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.391.60
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.392.60
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.393.60
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.394.60
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.396.61
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.397.61
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.398.60
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.399.60
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.403.61
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.404.63
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.405.61
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.406.61
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.407.76
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.408.63
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.409.61
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.412.62
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.413.62
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.414.62
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.415.62
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.416.62
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.417.62
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.418.62
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.419.62
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.420.62
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.421.62
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.423.63
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.424.63
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.425.63
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.426.63
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.427.63
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.428.65
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.429.63
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.430.63
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.432.65
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.433.64
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.434.65
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.435.64
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.436.76
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.437.64
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.438.71
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.439.71
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.440.75
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.442.73
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.443.73
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.444.73
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.445.68
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.446.69
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.450.67
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.451.67
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.452.68
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.453.68
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.454.69
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.456.69
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.457.75
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.458.70
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.459.70
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.460.69
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.462.74
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.463.69
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.464.70
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.465.68
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.468.70
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.469.70
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.470.70
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.471.73
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.472.70
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.478.74
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.479.73
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.480.68
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.481.71
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.482.74
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.49.67
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.50.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.500.71
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.501.74
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.502.71
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.51.69
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.52.72
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.520.76
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.521.76
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.522.76
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.53.51
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.531.76
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.532.75
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.534.75
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.54.47
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.55.45
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.56.69
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.57.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.58.47
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.593.76
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.595.76
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.63.57
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.66.47
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.70.75
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\rules\rules.1.71.43
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\temp\dealio-14295.log
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\temp\dod_cache.xml
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\temp\_toolbar_tmp_2120_4680_7.html
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\temp\_toolbar_tmp_2120_4680_9.html
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\temp\_toolbar_tmp_2120_708_3.html
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\temp\_toolbar_tmp_3244_3552_8.html
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127\temp\_toolbar_tmp_3244_3788_5.html
C:\Program Files\Dealio
C:\Program Files\Dealio\DealioAU.exe
C:\Program Files\Dealio\kb127
C:\Program Files\Dealio\SearchSettingsKit.exe
C:\Program Files\Dealio\kb127\Dealio Deskbar.exe
C:\Program Files\Dealio\kb127\Dealio.dll
C:\Program Files\Dealio\kb127\DealioRes409.dll
C:\Program Files\Dealio\kb127\res
C:\Program Files\Dealio\kb127\resDN
C:\Program Files\Dealio\kb127\rules
C:\Program Files\Dealio\kb127\temp
C:\Program Files\Dealio\kb127\res\alerts.gif
C:\Program Files\Dealio\kb127\res\alerts_over.gif
C:\Program Files\Dealio\kb127\res\alerts_rec.gif
C:\Program Files\Dealio\kb127\res\alerts_rec_over.gif
C:\Program Files\Dealio\kb127\res\chevron-small.gif
C:\Program Files\Dealio\kb127\res\DealioSearch.html
C:\Program Files\Dealio\kb127\res\deals-leftcap.gif
C:\Program Files\Dealio\kb127\res\deal_report.jpg
C:\Program Files\Dealio\kb127\res\ebay_login.jpg
C:\Program Files\Dealio\kb127\res\err_mainwindow.html
C:\Program Files\Dealio\kb127\res\err_toolbar.html
C:\Program Files\Dealio\kb127\res\global_scripts.js
C:\Program Files\Dealio\kb127\res\headerbgthin.jpg
C:\Program Files\Dealio\kb127\res\highlight-bg.png
C:\Program Files\Dealio\kb127\res\logo.gif
C:\Program Files\Dealio\kb127\res\logo_over.gif
C:\Program Files\Dealio\kb127\res\man_toolbar.css
C:\Program Files\Dealio\kb127\res\man_toolbar.html
C:\Program Files\Dealio\kb127\res\man_toolbar.js
C:\Program Files\Dealio\kb127\res\man_toolbarl.js
C:\Program Files\Dealio\kb127\res\post-this-deal.gif
C:\Program Files\Dealio\kb127\res\post-this-deal_over.gif
C:\Program Files\Dealio\kb127\res\scripts.js
C:\Program Files\Dealio\kb127\res\scroller.js
C:\Program Files\Dealio\kb127\res\search-chevron.gif
C:\Program Files\Dealio\kb127\res\search-chevron_over.gif
C:\Program Files\Dealio\kb127\res\search_bg_blink.gif
C:\Program Files\Dealio\kb127\res\separator.gif
C:\Program Files\Dealio\kb127\res\settings.gif
C:\Program Files\Dealio\kb127\res\settings_over.gif
C:\Program Files\Dealio\kb127\res\yahoo-search.png
C:\Program Files\Dealio\kb127\resDN\bottom.gif
C:\Program Files\Dealio\kb127\resDN\chevron_down.gif
C:\Program Files\Dealio\kb127\resDN\chevron_up.gif
C:\Program Files\Dealio\kb127\resDN\close.gif
C:\Program Files\Dealio\kb127\resDN\deskbar.css
C:\Program Files\Dealio\kb127\resDN\deskbar.js
C:\Program Files\Dealio\kb127\resDN\dispatch_helper.js
C:\Program Files\Dealio\kb127\resDN\ebay_compatible.jpg
C:\Program Files\Dealio\kb127\resDN\logo.gif
C:\Program Files\Dealio\kb127\resDN\logo_chevron_bkg.gif
C:\Program Files\Dealio\kb127\resDN\losing.gif
C:\Program Files\Dealio\kb127\resDN\lost.gif
C:\Program Files\Dealio\kb127\resDN\man_deskbar.html
C:\Program Files\Dealio\kb127\resDN\menu_arrow.gif
C:\Program Files\Dealio\kb127\resDN\menu_check.gif
C:\Program Files\Dealio\kb127\resDN\no_image.gif
C:\Program Files\Dealio\kb127\resDN\prod_img.gif
C:\Program Files\Dealio\kb127\resDN\search_chevron.gif
C:\Program Files\Dealio\kb127\resDN\spacer.gif
C:\Program Files\Dealio\kb127\resDN\textfield_bkg.gif
C:\Program Files\Dealio\kb127\resDN\top.gif
C:\Program Files\Dealio\kb127\resDN\unknown.gif
C:\Program Files\Dealio\kb127\resDN\winning.gif
C:\Program Files\Dealio\kb127\resDN\won.gif
C:\Program Files\Dealio\kb127\rules\index.76.35
C:\Program Files\Dealio\kb127\rules\rules.1.10.76
C:\Program Files\Dealio\kb127\rules\rules.1.109.43
C:\Program Files\Dealio\kb127\rules\rules.1.110.43
C:\Program Files\Dealio\kb127\rules\rules.1.12.52
C:\Program Files\Dealio\kb127\rules\rules.1.13.58
C:\Program Files\Dealio\kb127\rules\rules.1.130.58
C:\Program Files\Dealio\kb127\rules\rules.1.135.50
C:\Program Files\Dealio\kb127\rules\rules.1.153.44
C:\Program Files\Dealio\kb127\rules\rules.1.155.43
C:\Program Files\Dealio\kb127\rules\rules.1.156.49
C:\Program Files\Dealio\kb127\rules\rules.1.16.60
C:\Program Files\Dealio\kb127\rules\rules.1.161.52
C:\Program Files\Dealio\kb127\rules\rules.1.178.66
C:\Program Files\Dealio\kb127\rules\rules.1.184.55
C:\Program Files\Dealio\kb127\rules\rules.1.188.52
C:\Program Files\Dealio\kb127\rules\rules.1.189.45
C:\Program Files\Dealio\kb127\rules\rules.1.196.43
C:\Program Files\Dealio\kb127\rules\rules.1.198.56
C:\Program Files\Dealio\kb127\rules\rules.1.199.43
C:\Program Files\Dealio\kb127\rules\rules.1.200.53
C:\Program Files\Dealio\kb127\rules\rules.1.201.43
C:\Program Files\Dealio\kb127\rules\rules.1.202.43
C:\Program Files\Dealio\kb127\rules\rules.1.203.71
C:\Program Files\Dealio\kb127\rules\rules.1.205.62
C:\Program Files\Dealio\kb127\rules\rules.1.213.71
C:\Program Files\Dealio\kb127\rules\rules.1.214.49
C:\Program Files\Dealio\kb127\rules\rules.1.215.43
C:\Program Files\Dealio\kb127\rules\rules.1.216.67
C:\Program Files\Dealio\kb127\rules\rules.1.217.67
C:\Program Files\Dealio\kb127\rules\rules.1.218.52
C:\Program Files\Dealio\kb127\rules\rules.1.219.43
C:\Program Files\Dealio\kb127\rules\rules.1.220.43
C:\Program Files\Dealio\kb127\rules\rules.1.221.57
C:\Program Files\Dealio\kb127\rules\rules.1.222.43
C:\Program Files\Dealio\kb127\rules\rules.1.223.68
C:\Program Files\Dealio\kb127\rules\rules.1.226.68
C:\Program Files\Dealio\kb127\rules\rules.1.227.43
C:\Program Files\Dealio\kb127\rules\rules.1.228.62
C:\Program Files\Dealio\kb127\rules\rules.1.229.76
C:\Program Files\Dealio\kb127\rules\rules.1.23.63
C:\Program Files\Dealio\kb127\rules\rules.1.239.43
C:\Program Files\Dealio\kb127\rules\rules.1.24.43
C:\Program Files\Dealio\kb127\rules\rules.1.240.43
C:\Program Files\Dealio\kb127\rules\rules.1.241.43
C:\Program Files\Dealio\kb127\rules\rules.1.242.43
C:\Program Files\Dealio\kb127\rules\rules.1.243.43
C:\Program Files\Dealio\kb127\rules\rules.1.244.63
C:\Program Files\Dealio\kb127\rules\rules.1.245.43
C:\Program Files\Dealio\kb127\rules\rules.1.247.43
C:\Program Files\Dealio\kb127\rules\rules.1.248.43
C:\Program Files\Dealio\kb127\rules\rules.1.249.43
C:\Program Files\Dealio\kb127\rules\rules.1.250.43
C:\Program Files\Dealio\kb127\rules\rules.1.251.43
C:\Program Files\Dealio\kb127\rules\rules.1.252.43
C:\Program Files\Dealio\kb127\rules\rules.1.253.43
C:\Program Files\Dealio\kb127\rules\rules.1.254.43
C:\Program Files\Dealio\kb127\rules\rules.1.255.43
C:\Program Files\Dealio\kb127\rules\rules.1.256.43
C:\Program Files\Dealio\kb127\rules\rules.1.257.43
C:\Program Files\Dealio\kb127\rules\rules.1.279.43
C:\Program Files\Dealio\kb127\rules\rules.1.28.58
C:\Program Files\Dealio\kb127\rules\rules.1.282.75
C:\Program Files\Dealio\kb127\rules\rules.1.283.43
C:\Program Files\Dealio\kb127\rules\rules.1.284.43
C:\Program Files\Dealio\kb127\rules\rules.1.289.67
C:\Program Files\Dealio\kb127\rules\rules.1.290.62
C:\Program Files\Dealio\kb127\rules\rules.1.291.61
C:\Program Files\Dealio\kb127\rules\rules.1.296.43
C:\Program Files\Dealio\kb127\rules\rules.1.297.43
C:\Program Files\Dealio\kb127\rules\rules.1.304.43
C:\Program Files\Dealio\kb127\rules\rules.1.307.43
C:\Program Files\Dealio\kb127\rules\rules.1.308.75
C:\Program Files\Dealio\kb127\rules\rules.1.31.47
C:\Program Files\Dealio\kb127\rules\rules.1.310.46
C:\Program Files\Dealio\kb127\rules\rules.1.311.43
C:\Program Files\Dealio\kb127\rules\rules.1.315.43
C:\Program Files\Dealio\kb127\rules\rules.1.316.43
C:\Program Files\Dealio\kb127\rules\rules.1.317.43
C:\Program Files\Dealio\kb127\rules\rules.1.318.43
C:\Program Files\Dealio\kb127\rules\rules.1.319.49
C:\Program Files\Dealio\kb127\rules\rules.1.32.48
C:\Program Files\Dealio\kb127\rules\rules.1.334.44
C:\Program Files\Dealio\kb127\rules\rules.1.335.60
C:\Program Files\Dealio\kb127\rules\rules.1.336.44
C:\Program Files\Dealio\kb127\rules\rules.1.337.44
C:\Program Files\Dealio\kb127\rules\rules.1.338.75
C:\Program Files\Dealio\kb127\rules\rules.1.339.47
C:\Program Files\Dealio\kb127\rules\rules.1.34.43
C:\Program Files\Dealio\kb127\rules\rules.1.340.47
C:\Program Files\Dealio\kb127\rules\rules.1.341.47
C:\Program Files\Dealio\kb127\rules\rules.1.349.50
C:\Program Files\Dealio\kb127\rules\rules.1.35.48
C:\Program Files\Dealio\kb127\rules\rules.1.350.50
C:\Program Files\Dealio\kb127\rules\rules.1.351.51
C:\Program Files\Dealio\kb127\rules\rules.1.352.54
C:\Program Files\Dealio\kb127\rules\rules.1.353.51
C:\Program Files\Dealio\kb127\rules\rules.1.354.51
C:\Program Files\Dealio\kb127\rules\rules.1.357.62
C:\Program Files\Dealio\kb127\rules\rules.1.358.52
C:\Program Files\Dealio\kb127\rules\rules.1.359.52
C:\Program Files\Dealio\kb127\rules\rules.1.360.53
C:\Program Files\Dealio\kb127\rules\rules.1.361.54
C:\Program Files\Dealio\kb127\rules\rules.1.362.68
C:\Program Files\Dealio\kb127\rules\rules.1.363.58
C:\Program Files\Dealio\kb127\rules\rules.1.364.54
C:\Program Files\Dealio\kb127\rules\rules.1.365.53
C:\Program Files\Dealio\kb127\rules\rules.1.367.56
C:\Program Files\Dealio\kb127\rules\rules.1.368.58
C:\Program Files\Dealio\kb127\rules\rules.1.369.55
C:\Program Files\Dealio\kb127\rules\rules.1.370.56
C:\Program Files\Dealio\kb127\rules\rules.1.371.56
C:\Program Files\Dealio\kb127\rules\rules.1.372.57
C:\Program Files\Dealio\kb127\rules\rules.1.373.55
C:\Program Files\Dealio\kb127\rules\rules.1.375.56
C:\Program Files\Dealio\kb127\rules\rules.1.376.57
C:\Program Files\Dealio\kb127\rules\rules.1.377.55
C:\Program Files\Dealio\kb127\rules\rules.1.378.65
C:\Program Files\Dealio\kb127\rules\rules.1.384.58
C:\Program Files\Dealio\kb127\rules\rules.1.386.71
C:\Program Files\Dealio\kb127\rules\rules.1.387.59
C:\Program Files\Dealio\kb127\rules\rules.1.388.59
C:\Program Files\Dealio\kb127\rules\rules.1.389.59
C:\Program Files\Dealio\kb127\rules\rules.1.390.60
C:\Program Files\Dealio\kb127\rules\rules.1.391.60
C:\Program Files\Dealio\kb127\rules\rules.1.392.60
C:\Program Files\Dealio\kb127\rules\rules.1.393.60
C:\Program Files\Dealio\kb127\rules\rules.1.394.60
C:\Program Files\Dealio\kb127\rules\rules.1.396.61
C:\Program Files\Dealio\kb127\rules\rules.1.397.61
C:\Program Files\Dealio\kb127\rules\rules.1.398.60
C:\Program Files\Dealio\kb127\rules\rules.1.399.60
C:\Program Files\Dealio\kb127\rules\rules.1.403.61
C:\Program Files\Dealio\kb127\rules\rules.1.404.63
C:\Program Files\Dealio\kb127\rules\rules.1.405.61
C:\Program Files\Dealio\kb127\rules\rules.1.406.61
C:\Program Files\Dealio\kb127\rules\rules.1.407.76
C:\Program Files\Dealio\kb127\rules\rules.1.408.63
C:\Program Files\Dealio\kb127\rules\rules.1.409.61
C:\Program Files\Dealio\kb127\rules\rules.1.412.62
C:\Program Files\Dealio\kb127\rules\rules.1.413.62
C:\Program Files\Dealio\kb127\rules\rules.1.414.62
C:\Program Files\Dealio\kb127\rules\rules.1.415.62
C:\Program Files\Dealio\kb127\rules\rules.1.416.62
C:\Program Files\Dealio\kb127\rules\rules.1.417.62
C:\Program Files\Dealio\kb127\rules\rules.1.418.62
C:\Program Files\Dealio\kb127\rules\rules.1.419.62
C:\Program Files\Dealio\kb127\rules\rules.1.420.62
C:\Program Files\Dealio\kb127\rules\rules.1.421.62
C:\Program Files\Dealio\kb127\rules\rules.1.423.63
C:\Program Files\Dealio\kb127\rules\rules.1.424.63
C:\Program Files\Dealio\kb127\rules\rules.1.425.63
C:\Program Files\Dealio\kb127\rules\rules.1.426.63
C:\Program Files\Dealio\kb127\rules\rules.1.427.63
C:\Program Files\Dealio\kb127\rules\rules.1.428.65
C:\Program Files\Dealio\kb127\rules\rules.1.429.63
C:\Program Files\Dealio\kb127\rules\rules.1.430.63
C:\Program Files\Dealio\kb127\rules\rules.1.432.65
C:\Program Files\Dealio\kb127\rules\rules.1.433.64
C:\Program Files\Dealio\kb127\rules\rules.1.434.65
C:\Program Files\Dealio\kb127\rules\rules.1.435.64
C:\Program Files\Dealio\kb127\rules\rules.1.436.76
C:\Program Files\Dealio\kb127\rules\rules.1.437.64
C:\Program Files\Dealio\kb127\rules\rules.1.438.71
C:\Program Files\Dealio\kb127\rules\rules.1.439.71
C:\Program Files\Dealio\kb127\rules\rules.1.440.75
C:\Program Files\Dealio\kb127\rules\rules.1.442.73
C:\Program Files\Dealio\kb127\rules\rules.1.443.73
C:\Program Files\Dealio\kb127\rules\rules.1.444.73
C:\Program Files\Dealio\kb127\rules\rules.1.445.68
C:\Program Files\Dealio\kb127\rules\rules.1.446.69
C:\Program Files\Dealio\kb127\rules\rules.1.450.67
C:\Program Files\Dealio\kb127\rules\rules.1.451.67
C:\Program Files\Dealio\kb127\rules\rules.1.452.68
C:\Program Files\Dealio\kb127\rules\rules.1.453.68
C:\Program Files\Dealio\kb127\rules\rules.1.454.69
C:\Program Files\Dealio\kb127\rules\rules.1.456.69
C:\Program Files\Dealio\kb127\rules\rules.1.457.75
C:\Program Files\Dealio\kb127\rules\rules.1.458.70
C:\Program Files\Dealio\kb127\rules\rules.1.459.70
C:\Program Files\Dealio\kb127\rules\rules.1.460.69
C:\Program Files\Dealio\kb127\rules\rules.1.462.74
C:\Program Files\Dealio\kb127\rules\rules.1.463.69
C:\Program Files\Dealio\kb127\rules\rules.1.464.70
C:\Program Files\Dealio\kb127\rules\rules.1.465.68
C:\Program Files\Dealio\kb127\rules\rules.1.468.70
C:\Program Files\Dealio\kb127\rules\rules.1.469.70
C:\Program Files\Dealio\kb127\rules\rules.1.470.70
C:\Program Files\Dealio\kb127\rules\rules.1.471.73
C:\Program Files\Dealio\kb127\rules\rules.1.472.70
C:\Program Files\Dealio\kb127\rules\rules.1.478.74
C:\Program Files\Dealio\kb127\rules\rules.1.479.73
C:\Program Files\Dealio\kb127\rules\rules.1.480.68
C:\Program Files\Dealio\kb127\rules\rules.1.481.71
C:\Program Files\Dealio\kb127\rules\rules.1.482.74
C:\Program Files\Dealio\kb127\rules\rules.1.49.67
C:\Program Files\Dealio\kb127\rules\rules.1.50.43
C:\Program Files\Dealio\kb127\rules\rules.1.500.71
C:\Program Files\Dealio\kb127\rules\rules.1.501.74
C:\Program Files\Dealio\kb127\rules\rules.1.502.71
C:\Program Files\Dealio\kb127\rules\rules.1.51.69
C:\Program Files\Dealio\kb127\rules\rules.1.52.72
C:\Program Files\Dealio\kb127\rules\rules.1.520.76
C:\Program Files\Dealio\kb127\rules\rules.1.521.76
C:\Program Files\Dealio\kb127\rules\rules.1.522.76
C:\Program Files\Dealio\kb127\rules\rules.1.53.51
C:\Program Files\Dealio\kb127\rules\rules.1.531.76
C:\Program Files\Dealio\kb127\rules\rules.1.532.75
C:\Program Files\Dealio\kb127\rules\rules.1.534.75
C:\Program Files\Dealio\kb127\rules\rules.1.54.47
C:\Program Files\Dealio\kb127\rules\rules.1.55.45
C:\Program Files\Dealio\kb127\rules\rules.1.56.69
C:\Program Files\Dealio\kb127\rules\rules.1.57.43
C:\Program Files\Dealio\kb127\rules\rules.1.58.47
C:\Program Files\Dealio\kb127\rules\rules.1.593.76
C:\Program Files\Dealio\kb127\rules\rules.1.595.76
C:\Program Files\Dealio\kb127\rules\rules.1.63.57
C:\Program Files\Dealio\kb127\rules\rules.1.66.47
C:\Program Files\Dealio\kb127\rules\rules.1.70.75
C:\Program Files\Dealio\kb127\rules\rules.1.71.43
C:\DOCUME~1\ALLUSE~1\MENUDÉ~1\PROGRA~1\Dealio
C:\Program Files\FBrowserAdvisor
C:\Program Files\FBrowsingAdvisor
C:\Program Files\FBrowsingAdvisor\IXPCOMEvents.xpt
C:\Program Files\FBrowsingAdvisor\Logo.png
C:\Program Files\FBrowsingAdvisor\main.db
C:\Program Files\FBrowsingAdvisor\unins000.dat
C:\Program Files\FBrowsingAdvisor\unins000.exe
C:\Program Files\FBrowsingAdvisor\XPCOMEvents.dll
C:\Program Files\PlayMP3z
C:\Program Files\PlayMP3z\uninstall.exe
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb127
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb127\res
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb127\temp
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb127\temp\ws-14329.log
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb127\temp\ws-14330.log
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb127\temp\ws-14331.log
C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb127\temp\ws-14332.log
C:\Program Files\Search Settings
C:\Program Files\Search Settings\kb127
C:\Program Files\Search Settings\SearchSettings.exe
C:\Program Files\Search Settings\kb127\res
C:\Program Files\Search Settings\kb127\SearchSettingsRes409.dll
C:\Program Files\Search Settings\kb127\temp
C:\DOCUME~1\HP_ADM~1\APPLIC~1\ShoppingReport
C:\DOCUME~1\HP_ADM~1\APPLIC~1\ShoppingReport\cs
C:\DOCUME~1\HP_ADM~1\APPLIC~1\ShoppingReport\cs\Config.xml
C:\Program Files\ShoppingReport
C:\Program Files\ShoppingReport\Bin
C:\Program Files\ShoppingReport\Uninst.exe
C:\Program Files\ShoppingReport\Bin\2.0.22

-----------\\ Extensions

(HP_Administrateur) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(HP_Administrateur) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
(HP_Administrateur) - {E9A1DEE0-C623-4439-8932-001E7D17607D} => ajtoolbar


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="https://www.google.fr/?gws_rd=ssl"
"Search Page"="https://www.google.com/?gws_rd=ssl"
"Default_Page_URL"="https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF"
"Default_Search_URL"="http://www.google.com/toolbar/ie8/sidebar.html"
"First Home Page"="http://www.microsoft.com/isapi/redir.dll?Prd=ie&Pver=5.0&Ar=ie5update&O1=b1"
"Search Bar"="http://www.google.com/toolbar/ie8/sidebar.html"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF"
"Search Page"="https://fr.search.yahoo.com/?fr=cb-hp06"
"Start Page"="https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF"


--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\HP_ADM~1\Mes documents\NERO GRAVEUR CD DVD\keygen.exe



1 - "C:\ToolBar SD\TB_1.txt" - 30/03/2009|12:20 - Option : [1]

-----------\\ Fin du rapport a 12:20:24,21
0
Réponse 6 / 8
BP'S Messages postés 1607 Statut Membre 314
 
re

tu vas pouvoir relancer toolbar SD et passer a l option 2 , poste le nouveau rapport
0
robi33brico
 
Merci, ci dessous nouverau rapport

-----------\\ ToolBar S&D 1.2.6 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : HP_Administrateur ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090330-0] 4.8.1335 (Activated)
C:\ (Local Disk) - NTFS - Total:226 Go (Free:106 Go)
D:\ (Local Disk) - FAT32 - Total:6 Go (Free:0 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

"C:\ToolBar SD" ( MAJ : 04-12-2008|20:40 )
Option : [2] ( 30/03/2009|20:52 )

-----------\\ SUPPRESSION

Supprime! - C:\Program Files\AskBarDis\bar
Supprime! - C:\Program Files\AskBarDis\unins000.dat
Supprime! - C:\Program Files\AskBarDis\unins000.exe
Supprime! - C:\Program Files\AskBarDis\unins001.dat
Supprime! - C:\Program Files\AskBarDis\unins001.exe
Supprime! - C:\Program Files\AskTBar\bar
Supprime! - C:\Program Files\AskTBar\PopSwatr
Supprime! - C:\Program Files\BrowsingAdvisor\BrowsingAdvisor.dat
Supprime! - C:\Program Files\BrowsingAdvisor\pcre3.dll
Supprime! - C:\Program Files\BrowsingAdvisor\uninstall.exe
Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\dinstallhelper.0D8995122E4E4C04A7EB5EEF80539C9B.dll
Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\dinstallhelper.324E838C3D4F434EA4C66558F4F62FA1.dll
Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\dinstallhelper.361E64D871554036B1E214D724B84FC1.dll
Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio\kb127
Supprime! - C:\Program Files\Dealio\DealioAU.exe
Supprime! - C:\Program Files\Dealio\kb127
Supprime! - C:\Program Files\Dealio\SearchSettingsKit.exe
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDÉ~1\PROGRA~1\Dealio
Supprime! - C:\Program Files\FBrowsingAdvisor\IXPCOMEvents.xpt
Supprime! - C:\Program Files\FBrowsingAdvisor\Logo.png
Supprime! - C:\Program Files\FBrowsingAdvisor\main.db
Supprime! - C:\Program Files\FBrowsingAdvisor\unins000.dat
Supprime! - C:\Program Files\FBrowsingAdvisor\unins000.exe
Supprime! - C:\Program Files\FBrowsingAdvisor\XPCOMEvents.dll
Supprime! - C:\Program Files\PlayMP3z\uninstall.exe
Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb127
Supprime! - C:\Program Files\Search Settings\kb127
Supprime! - C:\Program Files\Search Settings\SearchSettings.exe
Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\ShoppingReport\cs
Supprime! - C:\Program Files\ShoppingReport\Bin
Supprime! - C:\Program Files\ShoppingReport\Uninst.exe
Supprime! - C:\Program Files\AskBarDis
Supprime! - C:\Program Files\AskTBar
Supprime! - C:\Program Files\BrowsingAdvisor
Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\Dealio
Supprime! - C:\Program Files\Dealio
Supprime! - C:\Program Files\FBrowserAdvisor
Supprime! - C:\Program Files\FBrowsingAdvisor
Supprime! - C:\Program Files\PlayMP3z
Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings
Supprime! - C:\Program Files\Search Settings
Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\ShoppingReport
Supprime! - C:\Program Files\ShoppingReport

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ Extensions

(HP_Administrateur) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(HP_Administrateur) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
(HP_Administrateur) - {E9A1DEE0-C623-4439-8932-001E7D17607D} => ajtoolbar


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="https://www.google.fr/?gws_rd=ssl"
"Search Page"="https://www.google.com/?gws_rd=ssl"
"Default_Page_URL"="https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF"
"Default_Search_URL"="http://www.google.com/toolbar/ie8/sidebar.html"
"First Home Page"="http://www.microsoft.com/isapi/redir.dll?Prd=ie&Pver=5.0&Ar=ie5update&O1=b1"
"Search Bar"="http://www.google.com/toolbar/ie8/sidebar.html"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF"
"Search Page"="https://fr.search.yahoo.com/?fr=cb-hp06"
"Start Page"="https://www.msn.com/fr-fr/"


--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\HP_ADM~1\Mes documents\NERO GRAVEUR CD DVD\keygen.exe



1 - "C:\ToolBar SD\TB_1.txt" - 30/03/2009|12:20 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 30/03/2009|20:54 - Option : [2]

-----------\\ Fin du rapport a 20:54:06,48
0
Réponse 7 / 8
BP'S Messages postés 1607 Statut Membre 314
 
re,

Désolé mais en ce moment , je suis pas mal pris , poste un nouveau rapport hijackthis stp
0
robi33brico
 
MERCI CI JOINT RAPPORT H
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:52:37, on 01/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ECB.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\PeerGuardian2\pg2.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TomTom HOME 2\HOMERunner.exe
C:\Program Files\Free Download Manager\fdm.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\arservice.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\FileZilla Server\FileZilla Server.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\SLEE503.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\HP\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\HP\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\Program Files\No-IP\DUC20.exe
C:\Program Files\HP\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\HP\Digital Imaging\Bin\hpoSTS08.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\system32\wuauclt.exe
c:\windows\system\hpsysdrv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Documents and Settings\HP_Administrateur\Bureau\icone non utilises\PhotoFiltre\PhotoFiltre.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/?fr=cb-hp06
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: sarpbho Class - {28457FA7-4AB0-4DE2-925F-8E49DB98A3FF} - c:\windows\system32\sarp.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Share Accelerator MM Toolbar - {4596013b-6c31-408b-a266-deae5c086dc2} - C:\Program Files\Share_Accelerator_MM\tbSha1.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Share Accelerator MM Toolbar - {4596013b-6c31-408b-a266-deae5c086dc2} - C:\Program Files\Share_Accelerator_MM\tbSha1.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [DMAScheduler] "c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
O4 - HKLM\..\Run: [eCarteBleue-LP-P1] "C:\Program Files\ECB.exe" /dontopenmycards
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [FileZilla Server Interface] "C:\Program Files\FileZilla Server\FileZilla Server Interface.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [SFS6] "C:\Program Files\Steganos Secure FileSharing 6\sfs.exe" /booting
O4 - HKCU\..\Run: [PeerGuardian] C:\Program Files\PeerGuardian2\pg2.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe"
O4 - HKCU\..\Run: [Free Download Manager] "C:\Program Files\Free Download Manager\fdm.exe" -autorun
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - .DEFAULT User Startup: PinMcLnk.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
O4 - Startup: No-IP DUC.lnk = C:\Program Files\No-IP\DUC20.exe
O4 - Global Startup: e-Carte Bleue La Banque Postale.lnk = C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
O4 - Global Startup: FileZilla FTP Client
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Locate Spot on Map by GPS - C:\Program Files\Opanda\IExif 2.3\IExifMap.htm
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: View Exif/GPS/IPTC with IExif - C:\Program Files\Opanda\IExif 2.3\IExifCom.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: bw+0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {3705E389-AEFE-4151-BC7B-19F34D1126A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FileZilla Server FTP server (FileZilla Server) - FileZilla Project - C:\Program Files\FileZilla Server\FileZilla Server.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Unknown owner - c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe (file missing)
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Steganos Live Encryption Engine (Version 503) [Service] (SLEE_503_SERVICE) - Unknown owner - C:\WINDOWS\system32\SLEE503.exe
0
Réponse 8 / 8
BP'S Messages postés 1607 Statut Membre 314
 
hello,

Bon c est pas mal tout ça , tu vas télécharger malwarebyte's , faire un scan de ton pc et poster le rapport .

Téléchargement de malwarebyte's ==> ici

une fois téléchargé et installé ,avant toute chose faire une mise a jour ensuite tu, coches la case Exécuter un examen complet, puis sur rechercher, sélectionnes les disques a analyser,une fois l'analyse terminée, cliques sur OK ensuite cliques sur afficher les résulats. Si des infections sont trouvées , controle que toutes les cases sont bien cochées puis cliques sur supprimer la selection et enfin valides par OK .

==>tutoriel si besoin d aide<==
0

Discussions similaires

Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport
Utilisateur anonyme -
TomH. -

13 réponses
écrire un rapport de travail
asi -
REGINALD -

3 réponses
impossible d'afficher le tableau dynamique sur un rapport existant
Pierre -
Adrien71 -

3 réponses
Problém affichage du tableau croisé dynamique
BK -
Raymond PENTIER -

2 réponses
Theme de rapport de stage option comptabilité
sana saydou -
Raymond PENTIER -

2 réponses