Problème trojan ou autres virus
Fermé
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
-
14 nov. 2005 à 15:32
Utilisateur anonyme - 23 déc. 2005 à 15:43
Utilisateur anonyme - 23 déc. 2005 à 15:43
A voir également:
- Problème trojan ou autres virus
- Trojan remover - Télécharger - Antivirus & Antimalwares
- Message virus iphone site adulte - Forum iPhone
- Trojan wacatac ✓ - Forum Virus
- Youtu.be virus - Accueil - Guide virus
- Svchost.exe virus - Guide
18 réponses
Utilisateur anonyme
14 nov. 2005 à 17:12
14 nov. 2005 à 17:12
salut
ouch ! belle infection, tres belle meme
Télécharge lopxp ici:
http://cjoint.com/?lkw4SB2o7O
2) dezippe le (clic droit dessus > extraire tout)
et lance lopxp.bat
le bloc note va s'ouvrir, copie et colle le contenu ici
A+
ouch ! belle infection, tres belle meme
Télécharge lopxp ici:
http://cjoint.com/?lkw4SB2o7O
2) dezippe le (clic droit dessus > extraire tout)
et lance lopxp.bat
le bloc note va s'ouvrir, copie et colle le contenu ici
A+
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
14 nov. 2005 à 23:42
14 nov. 2005 à 23:42
Salut Regis,
escuses le retard je t'envoie le rapport si je n'ai pas fait de bétises merci pour tes conseils
Rapport fait à 23:33:29,34 le 14/11/2005
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\All Users\Application Data
13/11/2005 19:24 <REP> Spybot - Search & Destroy
13/11/2005 19:18 <REP> ..
13/11/2005 19:18 <REP> .
11/11/2005 14:54 <REP> Yahoo! Companion
10/11/2005 23:42 <REP> Microsoft
06/11/2005 00:17 <REP> Messenger Plus!
06/11/2005 00:17 <REP> stupid hold idol bend
26/10/2005 11:33 <REP> Adobe
27/07/2005 15:26 <REP> Windows Genuine Advantage
11/06/2005 16:44 <REP> QuickTime
31/03/2005 13:24 <REP> Apple Computer
28/02/2005 20:41 <REP> Sony Corporation
13/02/2005 14:14 <REP> Creative
28/12/2004 21:59 <REP> CyberLink
24/11/2004 12:04 <REP> Logitech
08/10/2004 10:44 <REP> SBT
03/10/2004 15:45 <REP> Kaspersky Anti-Virus Personal
03/10/2004 15:43 <REP> Symantec
02/10/2004 19:34 <REP> MSN6
02/10/2004 12:07 62 desktop.ini
1 fichier(s) 62 octets
19 R‚p(s) 15078731776 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\Default User\Application Data
02/10/2004 12:07 <REP> ..
02/10/2004 12:07 62 desktop.ini
02/10/2004 12:07 <REP> .
02/10/2004 11:21 <REP> Microsoft
1 fichier(s) 62 octets
3 R‚p(s) 15077994496 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\jppons\Application Data
11/11/2005 15:44 <REP> Play List
11/11/2005 11:39 <REP> MEALBIKEFOUR
10/11/2005 23:43 <REP> Microsoft
06/11/2005 00:17 <REP> ..
06/11/2005 00:17 <REP> .
29/10/2005 18:57 <REP> ArcSoft
26/10/2005 11:31 <REP> Adobe
26/10/2005 11:31 1814 AdobeDLM.log
26/10/2005 11:31 0 dm.ini
03/10/2005 10:09 <REP> AdobeUM
26/09/2005 14:03 <REP> Help
13/08/2005 19:55 <REP> COWON
31/03/2005 13:25 <REP> Apple Computer
17/03/2005 12:26 <REP> Motive
13/02/2005 14:13 <REP> Creative
13/02/2005 00:45 <REP> Leadertech
05/01/2005 14:54 <REP> Basta Computing
29/11/2004 16:34 <REP> CyberLink
24/11/2004 12:10 <REP> Logitech
18/10/2004 10:30 <REP> Steinberg
14/10/2004 14:27 <REP> InterTrust
08/10/2004 18:49 <REP> MSN6
08/10/2004 11:17 <REP> Ahead
08/10/2004 10:37 <REP> Microsoft Web Folders
05/10/2004 14:39 <REP> Sony Corporation
02/10/2004 14:17 <REP> Macromedia
02/10/2004 12:07 62 desktop.ini
02/10/2004 11:36 <REP> Symantec
02/10/2004 11:25 <REP> Identities
3 fichier(s) 1876 octets
26 R‚p(s) 15077994496 octets libres
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks
B01627289399D894.job
SA.DAT
desktop.ini
******************************************
Recherche dans Program files
Le dossier C:\Program Files\Adv n'existe pas
Le dossier C:\Program Files\C2Media n'existe pas
*************** Fin du rapport ****************
Rapport fait à 23:36:38,85 le 14/11/2005
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\All Users\Application Data
13/11/2005 19:24 <REP> Spybot - Search & Destroy
13/11/2005 19:18 <REP> ..
13/11/2005 19:18 <REP> .
11/11/2005 14:54 <REP> Yahoo! Companion
10/11/2005 23:42 <REP> Microsoft
06/11/2005 00:17 <REP> Messenger Plus!
06/11/2005 00:17 <REP> stupid hold idol bend
26/10/2005 11:33 <REP> Adobe
27/07/2005 15:26 <REP> Windows Genuine Advantage
11/06/2005 16:44 <REP> QuickTime
31/03/2005 13:24 <REP> Apple Computer
28/02/2005 20:41 <REP> Sony Corporation
13/02/2005 14:14 <REP> Creative
28/12/2004 21:59 <REP> CyberLink
24/11/2004 12:04 <REP> Logitech
08/10/2004 10:44 <REP> SBT
03/10/2004 15:45 <REP> Kaspersky Anti-Virus Personal
03/10/2004 15:43 <REP> Symantec
02/10/2004 19:34 <REP> MSN6
02/10/2004 12:07 62 desktop.ini
1 fichier(s) 62 octets
19 R‚p(s) 15073505280 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\Default User\Application Data
02/10/2004 12:07 <REP> ..
02/10/2004 12:07 62 desktop.ini
02/10/2004 12:07 <REP> .
02/10/2004 11:21 <REP> Microsoft
1 fichier(s) 62 octets
3 R‚p(s) 15073505280 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\jppons\Application Data
11/11/2005 15:44 <REP> Play List
11/11/2005 11:39 <REP> MEALBIKEFOUR
10/11/2005 23:43 <REP> Microsoft
06/11/2005 00:17 <REP> ..
06/11/2005 00:17 <REP> .
29/10/2005 18:57 <REP> ArcSoft
26/10/2005 11:31 <REP> Adobe
26/10/2005 11:31 1814 AdobeDLM.log
26/10/2005 11:31 0 dm.ini
03/10/2005 10:09 <REP> AdobeUM
26/09/2005 14:03 <REP> Help
13/08/2005 19:55 <REP> COWON
31/03/2005 13:25 <REP> Apple Computer
17/03/2005 12:26 <REP> Motive
13/02/2005 14:13 <REP> Creative
13/02/2005 00:45 <REP> Leadertech
05/01/2005 14:54 <REP> Basta Computing
29/11/2004 16:34 <REP> CyberLink
24/11/2004 12:10 <REP> Logitech
18/10/2004 10:30 <REP> Steinberg
14/10/2004 14:27 <REP> InterTrust
08/10/2004 18:49 <REP> MSN6
08/10/2004 11:17 <REP> Ahead
08/10/2004 10:37 <REP> Microsoft Web Folders
05/10/2004 14:39 <REP> Sony Corporation
02/10/2004 14:17 <REP> Macromedia
02/10/2004 12:07 62 desktop.ini
02/10/2004 11:36 <REP> Symantec
02/10/2004 11:25 <REP> Identities
3 fichier(s) 1876 octets
26 R‚p(s) 15073505280 octets libres
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks
B01627289399D894.job
SA.DAT
desktop.ini
******************************************
Recherche dans Program files
Le dossier C:\Program Files\Adv n'existe pas
Le dossier C:\Program Files\C2Media n'existe pas
*************** Fin du rapport ****************
escuses le retard je t'envoie le rapport si je n'ai pas fait de bétises merci pour tes conseils
Rapport fait à 23:33:29,34 le 14/11/2005
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\All Users\Application Data
13/11/2005 19:24 <REP> Spybot - Search & Destroy
13/11/2005 19:18 <REP> ..
13/11/2005 19:18 <REP> .
11/11/2005 14:54 <REP> Yahoo! Companion
10/11/2005 23:42 <REP> Microsoft
06/11/2005 00:17 <REP> Messenger Plus!
06/11/2005 00:17 <REP> stupid hold idol bend
26/10/2005 11:33 <REP> Adobe
27/07/2005 15:26 <REP> Windows Genuine Advantage
11/06/2005 16:44 <REP> QuickTime
31/03/2005 13:24 <REP> Apple Computer
28/02/2005 20:41 <REP> Sony Corporation
13/02/2005 14:14 <REP> Creative
28/12/2004 21:59 <REP> CyberLink
24/11/2004 12:04 <REP> Logitech
08/10/2004 10:44 <REP> SBT
03/10/2004 15:45 <REP> Kaspersky Anti-Virus Personal
03/10/2004 15:43 <REP> Symantec
02/10/2004 19:34 <REP> MSN6
02/10/2004 12:07 62 desktop.ini
1 fichier(s) 62 octets
19 R‚p(s) 15078731776 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\Default User\Application Data
02/10/2004 12:07 <REP> ..
02/10/2004 12:07 62 desktop.ini
02/10/2004 12:07 <REP> .
02/10/2004 11:21 <REP> Microsoft
1 fichier(s) 62 octets
3 R‚p(s) 15077994496 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\jppons\Application Data
11/11/2005 15:44 <REP> Play List
11/11/2005 11:39 <REP> MEALBIKEFOUR
10/11/2005 23:43 <REP> Microsoft
06/11/2005 00:17 <REP> ..
06/11/2005 00:17 <REP> .
29/10/2005 18:57 <REP> ArcSoft
26/10/2005 11:31 <REP> Adobe
26/10/2005 11:31 1814 AdobeDLM.log
26/10/2005 11:31 0 dm.ini
03/10/2005 10:09 <REP> AdobeUM
26/09/2005 14:03 <REP> Help
13/08/2005 19:55 <REP> COWON
31/03/2005 13:25 <REP> Apple Computer
17/03/2005 12:26 <REP> Motive
13/02/2005 14:13 <REP> Creative
13/02/2005 00:45 <REP> Leadertech
05/01/2005 14:54 <REP> Basta Computing
29/11/2004 16:34 <REP> CyberLink
24/11/2004 12:10 <REP> Logitech
18/10/2004 10:30 <REP> Steinberg
14/10/2004 14:27 <REP> InterTrust
08/10/2004 18:49 <REP> MSN6
08/10/2004 11:17 <REP> Ahead
08/10/2004 10:37 <REP> Microsoft Web Folders
05/10/2004 14:39 <REP> Sony Corporation
02/10/2004 14:17 <REP> Macromedia
02/10/2004 12:07 62 desktop.ini
02/10/2004 11:36 <REP> Symantec
02/10/2004 11:25 <REP> Identities
3 fichier(s) 1876 octets
26 R‚p(s) 15077994496 octets libres
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks
B01627289399D894.job
SA.DAT
desktop.ini
******************************************
Recherche dans Program files
Le dossier C:\Program Files\Adv n'existe pas
Le dossier C:\Program Files\C2Media n'existe pas
*************** Fin du rapport ****************
Rapport fait à 23:36:38,85 le 14/11/2005
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\All Users\Application Data
13/11/2005 19:24 <REP> Spybot - Search & Destroy
13/11/2005 19:18 <REP> ..
13/11/2005 19:18 <REP> .
11/11/2005 14:54 <REP> Yahoo! Companion
10/11/2005 23:42 <REP> Microsoft
06/11/2005 00:17 <REP> Messenger Plus!
06/11/2005 00:17 <REP> stupid hold idol bend
26/10/2005 11:33 <REP> Adobe
27/07/2005 15:26 <REP> Windows Genuine Advantage
11/06/2005 16:44 <REP> QuickTime
31/03/2005 13:24 <REP> Apple Computer
28/02/2005 20:41 <REP> Sony Corporation
13/02/2005 14:14 <REP> Creative
28/12/2004 21:59 <REP> CyberLink
24/11/2004 12:04 <REP> Logitech
08/10/2004 10:44 <REP> SBT
03/10/2004 15:45 <REP> Kaspersky Anti-Virus Personal
03/10/2004 15:43 <REP> Symantec
02/10/2004 19:34 <REP> MSN6
02/10/2004 12:07 62 desktop.ini
1 fichier(s) 62 octets
19 R‚p(s) 15073505280 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\Default User\Application Data
02/10/2004 12:07 <REP> ..
02/10/2004 12:07 62 desktop.ini
02/10/2004 12:07 <REP> .
02/10/2004 11:21 <REP> Microsoft
1 fichier(s) 62 octets
3 R‚p(s) 15073505280 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\jppons\Application Data
11/11/2005 15:44 <REP> Play List
11/11/2005 11:39 <REP> MEALBIKEFOUR
10/11/2005 23:43 <REP> Microsoft
06/11/2005 00:17 <REP> ..
06/11/2005 00:17 <REP> .
29/10/2005 18:57 <REP> ArcSoft
26/10/2005 11:31 <REP> Adobe
26/10/2005 11:31 1814 AdobeDLM.log
26/10/2005 11:31 0 dm.ini
03/10/2005 10:09 <REP> AdobeUM
26/09/2005 14:03 <REP> Help
13/08/2005 19:55 <REP> COWON
31/03/2005 13:25 <REP> Apple Computer
17/03/2005 12:26 <REP> Motive
13/02/2005 14:13 <REP> Creative
13/02/2005 00:45 <REP> Leadertech
05/01/2005 14:54 <REP> Basta Computing
29/11/2004 16:34 <REP> CyberLink
24/11/2004 12:10 <REP> Logitech
18/10/2004 10:30 <REP> Steinberg
14/10/2004 14:27 <REP> InterTrust
08/10/2004 18:49 <REP> MSN6
08/10/2004 11:17 <REP> Ahead
08/10/2004 10:37 <REP> Microsoft Web Folders
05/10/2004 14:39 <REP> Sony Corporation
02/10/2004 14:17 <REP> Macromedia
02/10/2004 12:07 62 desktop.ini
02/10/2004 11:36 <REP> Symantec
02/10/2004 11:25 <REP> Identities
3 fichier(s) 1876 octets
26 R‚p(s) 15073505280 octets libres
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks
B01627289399D894.job
SA.DAT
desktop.ini
******************************************
Recherche dans Program files
Le dossier C:\Program Files\Adv n'existe pas
Le dossier C:\Program Files\C2Media n'existe pas
*************** Fin du rapport ****************
Utilisateur anonyme
15 nov. 2005 à 14:15
15 nov. 2005 à 14:15
re,
tu peux remettre un hijack this stp
Par contre je vois un pare feu mais pas d antivirus, tu en as pas d installer?
Sinon, installe s en un, avast !
Car si on te nettoie cela, si t es pas protege dans 2 jours on peut recommencer....
le lien pour avast:
http://www.avast.com/eng/download-avast-home.html
a+
tu peux remettre un hijack this stp
Par contre je vois un pare feu mais pas d antivirus, tu en as pas d installer?
Sinon, installe s en un, avast !
Car si on te nettoie cela, si t es pas protege dans 2 jours on peut recommencer....
le lien pour avast:
http://www.avast.com/eng/download-avast-home.html
a+
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
15 nov. 2005 à 17:20
15 nov. 2005 à 17:20
Salut Regis,
tu vois le pare feu de ZA mais j'ai Kapersky normalment installé, je vois l'icone en bas à droite et j'ai fait une analyse complète hier matin encore ...
Je t'envoie à nouveau le hijack this : merci pour ton avis
Logfile of HijackThis v1.99.1
Scan saved at 17:15:17, on 15/11/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
C:\Program Files\Logiciel Bluetooth\BTTray.exe
c:\progra~1\intern~1\iexplore.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Numericable\Mon Assistant Internet\bin\mpbtn.exe
C:\Program Files\Creative\MediaSource\RemoteControl\OSDMenu.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\FICHIE~1\MICROS~1\Msinfo\OFFPROV.EXE
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Hijackthis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.kqspxhclqmczfxcetwkv.com/TYDnJLb02oKcV4B1W0hkhSayswX7N2a1xKDwhlcEKpK/xI5BN1wDTrCauJH/gicd.asp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {B93E31A6-2E86-5AA4-EF76-B547B23D09CF} - C:\DOCUME~1\jppons\APPLIC~1\MEALBI~1\delete 2.exe (file missing)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [service updaer] qualityz.exe
O4 - HKLM\..\Run: [Win32 USB2 Driver] pomedsrv.exe
O4 - HKLM\..\Run: [Microsoft Update] esplorer.exe
O4 - HKLM\..\Run: [Sygate Personal Firewall] sysgut.exe
O4 - HKLM\..\Run: [Microsoft Services] lssrv.exe
O4 - HKLM\..\Run: [Windows Update Manager] updmgr.exe
O4 - HKLM\..\Run: [System Update] C:\WINDOWS\System32\etlqpm.exe
O4 - HKLM\..\Run: [Security Patches] msndr.exe
O4 - HKLM\..\Run: [NTFS16] ntfs16.exe
O4 - HKLM\..\Run: [Personal Firwall] ptmedsrv.exe
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [SbUsb AudCtrl] RunDll32 sbusbdll.dll,RCMonitor
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [idolbendgluelite] C:\Documents and Settings\All Users\Application Data\stupid hold idol bend\Downloadcopy.exe
O4 - HKLM\..\RunServices: [service updaer] qualityz.exe
O4 - HKLM\..\RunServices: [Win32 USB2 Driver] pomedsrv.exe
O4 - HKLM\..\RunServices: [Microsoft Update] esplorer.exe
O4 - HKLM\..\RunServices: [Sygate Personal Firewall] sysgut.exe
O4 - HKLM\..\RunServices: [Microsoft Services] lssrv.exe
O4 - HKLM\..\RunServices: [Windows Update Manager] updmgr.exe
O4 - HKLM\..\RunServices: [Security Patches] msndr.exe
O4 - HKLM\..\RunServices: [NTFS16] ntfs16.exe
O4 - HKLM\..\RunServices: [Personal Firwall] ptmedsrv.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Win32 USB2 Driver] pomedsrv.exe
O4 - HKCU\..\Run: [Microsoft Update] esplorer.exe
O4 - HKCU\..\Run: [Sygate Personal Firewall] sysgut.exe
O4 - HKCU\..\Run: [NTFS16] ntfs16.exe
O4 - HKCU\..\Run: [Personal Firwall] ptmedsrv.exe
O4 - HKCU\..\Run: [0rder Data] C:\WINDOWS\System32\weqs1e7\f1g.exe C:\WINDOWS\System32\weqs1e7\dirote.exe
O4 - HKCU\..\Run: [InstantTray] C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [RemoteCenter] C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
O4 - HKCU\..\Run: [Settingsstore] C:\DOCUME~1\jppons\APPLIC~1\PLAYLI~1\ThunkAbout.exe
O4 - HKCU\..\RunServices: [0rder Data] C:\WINDOWS\System32\weqs1e7\f1g.exe C:\WINDOWS\System32\weqs1e7\dirote.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Mon Assistant Internet.lnk = C:\Program Files\Numericable\Mon Assistant Internet\bin\matcli.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la Liste à Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E2941E3-8E63-11D4-9D5A-00902742D6E0} (iNotes Class) - https://extraweb-emea.ey.com/home/extraweb/iNotes.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1096722591187
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Win32 USB2 Driver (blargh) - Unknown owner - C:\WINDOWS\System32\pomedsrv.exe" -netsvcs (file missing)
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Windows Update Manager (Update Manager ) - Unknown owner - C:\WINDOWS\System32\updmgr.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
tu vois le pare feu de ZA mais j'ai Kapersky normalment installé, je vois l'icone en bas à droite et j'ai fait une analyse complète hier matin encore ...
Je t'envoie à nouveau le hijack this : merci pour ton avis
Logfile of HijackThis v1.99.1
Scan saved at 17:15:17, on 15/11/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
C:\Program Files\Logiciel Bluetooth\BTTray.exe
c:\progra~1\intern~1\iexplore.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Numericable\Mon Assistant Internet\bin\mpbtn.exe
C:\Program Files\Creative\MediaSource\RemoteControl\OSDMenu.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\FICHIE~1\MICROS~1\Msinfo\OFFPROV.EXE
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Hijackthis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.kqspxhclqmczfxcetwkv.com/TYDnJLb02oKcV4B1W0hkhSayswX7N2a1xKDwhlcEKpK/xI5BN1wDTrCauJH/gicd.asp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {B93E31A6-2E86-5AA4-EF76-B547B23D09CF} - C:\DOCUME~1\jppons\APPLIC~1\MEALBI~1\delete 2.exe (file missing)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [service updaer] qualityz.exe
O4 - HKLM\..\Run: [Win32 USB2 Driver] pomedsrv.exe
O4 - HKLM\..\Run: [Microsoft Update] esplorer.exe
O4 - HKLM\..\Run: [Sygate Personal Firewall] sysgut.exe
O4 - HKLM\..\Run: [Microsoft Services] lssrv.exe
O4 - HKLM\..\Run: [Windows Update Manager] updmgr.exe
O4 - HKLM\..\Run: [System Update] C:\WINDOWS\System32\etlqpm.exe
O4 - HKLM\..\Run: [Security Patches] msndr.exe
O4 - HKLM\..\Run: [NTFS16] ntfs16.exe
O4 - HKLM\..\Run: [Personal Firwall] ptmedsrv.exe
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [SbUsb AudCtrl] RunDll32 sbusbdll.dll,RCMonitor
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [idolbendgluelite] C:\Documents and Settings\All Users\Application Data\stupid hold idol bend\Downloadcopy.exe
O4 - HKLM\..\RunServices: [service updaer] qualityz.exe
O4 - HKLM\..\RunServices: [Win32 USB2 Driver] pomedsrv.exe
O4 - HKLM\..\RunServices: [Microsoft Update] esplorer.exe
O4 - HKLM\..\RunServices: [Sygate Personal Firewall] sysgut.exe
O4 - HKLM\..\RunServices: [Microsoft Services] lssrv.exe
O4 - HKLM\..\RunServices: [Windows Update Manager] updmgr.exe
O4 - HKLM\..\RunServices: [Security Patches] msndr.exe
O4 - HKLM\..\RunServices: [NTFS16] ntfs16.exe
O4 - HKLM\..\RunServices: [Personal Firwall] ptmedsrv.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Win32 USB2 Driver] pomedsrv.exe
O4 - HKCU\..\Run: [Microsoft Update] esplorer.exe
O4 - HKCU\..\Run: [Sygate Personal Firewall] sysgut.exe
O4 - HKCU\..\Run: [NTFS16] ntfs16.exe
O4 - HKCU\..\Run: [Personal Firwall] ptmedsrv.exe
O4 - HKCU\..\Run: [0rder Data] C:\WINDOWS\System32\weqs1e7\f1g.exe C:\WINDOWS\System32\weqs1e7\dirote.exe
O4 - HKCU\..\Run: [InstantTray] C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [RemoteCenter] C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
O4 - HKCU\..\Run: [Settingsstore] C:\DOCUME~1\jppons\APPLIC~1\PLAYLI~1\ThunkAbout.exe
O4 - HKCU\..\RunServices: [0rder Data] C:\WINDOWS\System32\weqs1e7\f1g.exe C:\WINDOWS\System32\weqs1e7\dirote.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Mon Assistant Internet.lnk = C:\Program Files\Numericable\Mon Assistant Internet\bin\matcli.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la Liste à Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E2941E3-8E63-11D4-9D5A-00902742D6E0} (iNotes Class) - https://extraweb-emea.ey.com/home/extraweb/iNotes.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1096722591187
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Win32 USB2 Driver (blargh) - Unknown owner - C:\WINDOWS\System32\pomedsrv.exe" -netsvcs (file missing)
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Windows Update Manager (Update Manager ) - Unknown owner - C:\WINDOWS\System32\updmgr.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Utilisateur anonyme
15 nov. 2005 à 18:57
15 nov. 2005 à 18:57
Bonjour,
desole pour mon erreur..
Méthode à suivre dans l'ordre...
----------------------------------------------------------------------------
¤Télécharge ces logiciels mais que tu n‘utilises pas tout de suite:
1/
Spybot S&D 1.4 <<nouvelle version.
http://www.safer-networking.org/fr/index.html
Démo d’utilisation (merci à Balltrap34 pour cette réalisation).
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
2/
Ad-Aware SE 1.06 <<nouvelle version.
http://www.lavasoftusa.com/software/adaware/
-Une aide:
http://www.tutopat.com/viewtopic.php?t=1191
- installe le patch français, tu pourras le trouver ici:
http://download.lavasoft.de.edgesuite.net/public/pllangs.exe
et une petite vidéo d'utilisation ici:(merci à Moe31 pour cette réalisation).
http://pageperso.aol.fr/balltrap34/adawrevid.asf
----------------------------------------------------------------------------
¤Affiche tous les fichiers et dossiers :
Clique sur démarrer/panneau de configuration/outil/option des dossiers/affichage
Coche « afficher les fichiers et dossiers cachés »
Décoche la case "Masquer les fichiers protégés du système d'exploitation (recommandé)"
Décoche « masquer les extensions dont le type est connu »
Puis fais «Ok» pour valider les changements.
Et appliquer !
----------------------------------------------------------------------------
¤Relance HijackThis, coche les cases devant ces lignes et ensuite clique sur fix checked :
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.kqspxhclqmczfxcetwkv.com/TYDnJLb02oKcV4B1W0hkhSayswX7N2a1xKDwhlcEKpK/ xI5BN1wDTrCauJH/gicd.asp
O2 - BHO: (no name) - {B93E31A6-2E86-5AA4-EF76-B547B23D09CF} - C:\DOCUME~1\jppons\APPLIC~1\MEALBI~1\delete 2.exe (file missing)
O4 - HKLM\..\Run: [Win32 USB2 Driver] pomedsrv.exe
O4 - HKLM\..\Run: [Microsoft Update] esplorer.exe
O4 - HKLM\..\Run: [Sygate Personal Firewall] sysgut.exe
O4 - HKLM\..\Run: [Microsoft Services] lssrv.exe
O4 - HKLM\..\Run: [Windows Update Manager] updmgr.exe
O4 - HKLM\..\Run: [System Update] C:\WINDOWS\System32\etlqpm.exe
O4 - HKLM\..\Run: [Security Patches] msndr.exe
O4 - HKLM\..\Run: [NTFS16] ntfs16.exe
O4 - HKLM\..\Run: [Personal Firwall] ptmedsrv.exe
O4 - HKLM\..\Run: [idolbendgluelite] C:\Documents and Settings\All Users\Application Data\stupid hold idol bend\Downloadcopy.exe
O4 - HKLM\..\RunServices: [service updaer] qualityz.exe
O4 - HKLM\..\RunServices: [Win32 USB2 Driver] pomedsrv.exe
O4 - HKLM\..\RunServices: [Microsoft Update] esplorer.exe
O4 - HKLM\..\RunServices: [Sygate Personal Firewall] sysgut.exe
O4 - HKLM\..\RunServices: [Microsoft Services] lssrv.exe
O4 - HKLM\..\RunServices: [Windows Update Manager] updmgr.exe
O4 - HKLM\..\RunServices: [Security Patches] msndr.exe
O4 - HKLM\..\RunServices: [NTFS16] ntfs16.exe
O4 - HKLM\..\RunServices: [Personal Firwall] ptmedsrv.exe
O4 - HKCU\..\Run: [Win32 USB2 Driver] pomedsrv.exe
O4 - HKCU\..\Run: [Microsoft Update] esplorer.exe
O4 - HKCU\..\Run: [Sygate Personal Firewall] sysgut.exe
O4 - HKCU\..\Run: [NTFS16] ntfs16.exe
O4 - HKCU\..\Run: [Personal Firwall] ptmedsrv.exe
O4 - HKCU\..\Run: [0rder Data] C:\WINDOWS\System32\weqs1e7\f1g.exe C:\WINDOWS\System32\weqs1e7\dirote
----------------------------------------------------------------------------
¤Démarre en mode sans échec :
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
(Si F8 ne marche pas utilise la touche F5).
----------------------------------------------------------------------------
¤Vide tes fichiers temps et temporary internet file:
:: Supprimer les fichiers temporaires ::
vider tout le contenu de ces dossiers.
* C:\Documents and Settings\ton compte\Local Settings\Temp
* C:\Documents and Settings\tous les autres comptes\Local Settings\Temp
* C:\Windows\Temp
:: Le contenu du dossier prefetch ::
* C:\WINDOWS\Prefetch <= sauf le fichier layout.ini
* Ne pas oublier de vider la corbeille !
----------------------------------------------------------------------------
¤Recherche et supprime ceci:
attention seulement les fichiers (si présents).
pomedsrv.exe
esplorer.exe
sysgut.exe
lssrv.exe
updmgr.exe
C:\WINDOWS\System32\etlqpm.exe
msndr.exe
ntfs16.exe
ptmedsrv.exe
C:\WINDOWS\System32\weqs1e7
----------------------------------------------------------------------------
¤ Passe Ad-Aware et supprime tout ce qu’il trouve + supprime les quarantaines…
----------------------------------------------------------------------------
¤ Passe Spybot et corrige tout ce qu’il trouve + vaccine + supprime les quarantaines…
----------------------------------------------------------------------------
¤ Vide ta Corbeille.
----------------------------------------------------------------------------
¤ Redémarre en mode normal, relance Hijackthis et copie/colle un nouveau rapport sur le forum.
Précise tes soucis s’il en reste....
Tiens-moi au courant
A+
PS: met ceci egalement stp:
Télécharge lopxp ici:
http://cjoint.com/?lkw4SB2o7O
2) dezippe le (clic droit dessus > extraire tout)
et lance lopxp.bat
le bloc note va s'ouvrir, copie et colle le contenu ici
desole pour mon erreur..
Méthode à suivre dans l'ordre...
----------------------------------------------------------------------------
¤Télécharge ces logiciels mais que tu n‘utilises pas tout de suite:
1/
Spybot S&D 1.4 <<nouvelle version.
http://www.safer-networking.org/fr/index.html
Démo d’utilisation (merci à Balltrap34 pour cette réalisation).
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
2/
Ad-Aware SE 1.06 <<nouvelle version.
http://www.lavasoftusa.com/software/adaware/
-Une aide:
http://www.tutopat.com/viewtopic.php?t=1191
- installe le patch français, tu pourras le trouver ici:
http://download.lavasoft.de.edgesuite.net/public/pllangs.exe
et une petite vidéo d'utilisation ici:(merci à Moe31 pour cette réalisation).
http://pageperso.aol.fr/balltrap34/adawrevid.asf
----------------------------------------------------------------------------
¤Affiche tous les fichiers et dossiers :
Clique sur démarrer/panneau de configuration/outil/option des dossiers/affichage
Coche « afficher les fichiers et dossiers cachés »
Décoche la case "Masquer les fichiers protégés du système d'exploitation (recommandé)"
Décoche « masquer les extensions dont le type est connu »
Puis fais «Ok» pour valider les changements.
Et appliquer !
----------------------------------------------------------------------------
¤Relance HijackThis, coche les cases devant ces lignes et ensuite clique sur fix checked :
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.kqspxhclqmczfxcetwkv.com/TYDnJLb02oKcV4B1W0hkhSayswX7N2a1xKDwhlcEKpK/ xI5BN1wDTrCauJH/gicd.asp
O2 - BHO: (no name) - {B93E31A6-2E86-5AA4-EF76-B547B23D09CF} - C:\DOCUME~1\jppons\APPLIC~1\MEALBI~1\delete 2.exe (file missing)
O4 - HKLM\..\Run: [Win32 USB2 Driver] pomedsrv.exe
O4 - HKLM\..\Run: [Microsoft Update] esplorer.exe
O4 - HKLM\..\Run: [Sygate Personal Firewall] sysgut.exe
O4 - HKLM\..\Run: [Microsoft Services] lssrv.exe
O4 - HKLM\..\Run: [Windows Update Manager] updmgr.exe
O4 - HKLM\..\Run: [System Update] C:\WINDOWS\System32\etlqpm.exe
O4 - HKLM\..\Run: [Security Patches] msndr.exe
O4 - HKLM\..\Run: [NTFS16] ntfs16.exe
O4 - HKLM\..\Run: [Personal Firwall] ptmedsrv.exe
O4 - HKLM\..\Run: [idolbendgluelite] C:\Documents and Settings\All Users\Application Data\stupid hold idol bend\Downloadcopy.exe
O4 - HKLM\..\RunServices: [service updaer] qualityz.exe
O4 - HKLM\..\RunServices: [Win32 USB2 Driver] pomedsrv.exe
O4 - HKLM\..\RunServices: [Microsoft Update] esplorer.exe
O4 - HKLM\..\RunServices: [Sygate Personal Firewall] sysgut.exe
O4 - HKLM\..\RunServices: [Microsoft Services] lssrv.exe
O4 - HKLM\..\RunServices: [Windows Update Manager] updmgr.exe
O4 - HKLM\..\RunServices: [Security Patches] msndr.exe
O4 - HKLM\..\RunServices: [NTFS16] ntfs16.exe
O4 - HKLM\..\RunServices: [Personal Firwall] ptmedsrv.exe
O4 - HKCU\..\Run: [Win32 USB2 Driver] pomedsrv.exe
O4 - HKCU\..\Run: [Microsoft Update] esplorer.exe
O4 - HKCU\..\Run: [Sygate Personal Firewall] sysgut.exe
O4 - HKCU\..\Run: [NTFS16] ntfs16.exe
O4 - HKCU\..\Run: [Personal Firwall] ptmedsrv.exe
O4 - HKCU\..\Run: [0rder Data] C:\WINDOWS\System32\weqs1e7\f1g.exe C:\WINDOWS\System32\weqs1e7\dirote
----------------------------------------------------------------------------
¤Démarre en mode sans échec :
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
(Si F8 ne marche pas utilise la touche F5).
----------------------------------------------------------------------------
¤Vide tes fichiers temps et temporary internet file:
:: Supprimer les fichiers temporaires ::
vider tout le contenu de ces dossiers.
* C:\Documents and Settings\ton compte\Local Settings\Temp
* C:\Documents and Settings\tous les autres comptes\Local Settings\Temp
* C:\Windows\Temp
:: Le contenu du dossier prefetch ::
* C:\WINDOWS\Prefetch <= sauf le fichier layout.ini
* Ne pas oublier de vider la corbeille !
----------------------------------------------------------------------------
¤Recherche et supprime ceci:
attention seulement les fichiers (si présents).
pomedsrv.exe
esplorer.exe
sysgut.exe
lssrv.exe
updmgr.exe
C:\WINDOWS\System32\etlqpm.exe
msndr.exe
ntfs16.exe
ptmedsrv.exe
C:\WINDOWS\System32\weqs1e7
----------------------------------------------------------------------------
¤ Passe Ad-Aware et supprime tout ce qu’il trouve + supprime les quarantaines…
----------------------------------------------------------------------------
¤ Passe Spybot et corrige tout ce qu’il trouve + vaccine + supprime les quarantaines…
----------------------------------------------------------------------------
¤ Vide ta Corbeille.
----------------------------------------------------------------------------
¤ Redémarre en mode normal, relance Hijackthis et copie/colle un nouveau rapport sur le forum.
Précise tes soucis s’il en reste....
Tiens-moi au courant
A+
PS: met ceci egalement stp:
Télécharge lopxp ici:
http://cjoint.com/?lkw4SB2o7O
2) dezippe le (clic droit dessus > extraire tout)
et lance lopxp.bat
le bloc note va s'ouvrir, copie et colle le contenu ici
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
16 nov. 2005 à 12:25
16 nov. 2005 à 12:25
Re bonjour regis,
je n'arrète pas ce matin de recommencer tout ce que tu m'as dit de faire hier ( j'avais oublié hier de supprimer la première ligne R1 HKCU ) et malheureusement rien n'y fait j'ai toujours les mêmes problèmes fenêtres intempestives de toute nature, dans mes favoris un paquet de sites que je n'arrive pas à retirer du genre cool stuff, travel, shipping gifts, internet, computers, online gaming, movies, games, web hosting, casino online ...une fenêtre microsoft 2000 qui s'ouvre en même temps que yahoo et qui me demande d'inserer le disque pour l'installer ..., et le problème outlook dont j'ai parlé plus haut depuis les manip d'hier, ce matin j'ai réussi à envoyer un message à une de mes boites mails par outlook donc dans le sens envoi celà devrait marcher mais dans le sens réception celà mouline et j'ai reçu un message d'erreur que je te lis /
QUOTE /
Impossible de récupérer un message à partir du serveur. C’est le cas lorsque la connexion au serveur est perdue à cause de problèmes au niveau du serveur ou du réseau. Si le problème persiste contactez votre administrateur.
Erreur TCP/IP lors de l’envoi des données au serveur ( compte pop.numericable.fr, serveur POP3 : pop. numericable.fr numéro de l’erreur 0x800ccc13
UNQUOTE/
Qu'en penses tu ? , c'est vraiment une galère et je ne m'en sors pas...Merci à toi et à tous les autres qui pourraient m'aider
je n'arrète pas ce matin de recommencer tout ce que tu m'as dit de faire hier ( j'avais oublié hier de supprimer la première ligne R1 HKCU ) et malheureusement rien n'y fait j'ai toujours les mêmes problèmes fenêtres intempestives de toute nature, dans mes favoris un paquet de sites que je n'arrive pas à retirer du genre cool stuff, travel, shipping gifts, internet, computers, online gaming, movies, games, web hosting, casino online ...une fenêtre microsoft 2000 qui s'ouvre en même temps que yahoo et qui me demande d'inserer le disque pour l'installer ..., et le problème outlook dont j'ai parlé plus haut depuis les manip d'hier, ce matin j'ai réussi à envoyer un message à une de mes boites mails par outlook donc dans le sens envoi celà devrait marcher mais dans le sens réception celà mouline et j'ai reçu un message d'erreur que je te lis /
QUOTE /
Impossible de récupérer un message à partir du serveur. C’est le cas lorsque la connexion au serveur est perdue à cause de problèmes au niveau du serveur ou du réseau. Si le problème persiste contactez votre administrateur.
Erreur TCP/IP lors de l’envoi des données au serveur ( compte pop.numericable.fr, serveur POP3 : pop. numericable.fr numéro de l’erreur 0x800ccc13
UNQUOTE/
Qu'en penses tu ? , c'est vraiment une galère et je ne m'en sors pas...Merci à toi et à tous les autres qui pourraient m'aider
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
15 nov. 2005 à 21:09
15 nov. 2005 à 21:09
merci regis pour tout, je t'envoie le rapport hijack this après manip et le lopxp pour info il reste des trucs bizarres quand j'ouvre yahoo par exemple j'ai toujours des bandeaux intempestifs et de plus dans le même temps il m'ouvre une fenêtre microsoft office 2000 SR 1 Professionnel et me demande d'inserer le disque ! je n'ai rien vérifier pour le reste mais je vois toujours les pubs s'afficher en tout cas je suis tes demandes et je dois dire que dans le dossier windows prefetch il y avait un paquet de fichiers peut être en ai-je oublié ?, tu me diras quand tu liras le rapport merci encore et à plus
Jean Pierre
Logfile of HijackThis v1.99.1
Scan saved at 20:39:50, on 15/11/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
c:\progra~1\intern~1\iexplore.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Numericable\Mon Assistant Internet\bin\mpbtn.exe
C:\Program Files\Creative\MediaSource\RemoteControl\OSDMenu.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\FICHIE~1\MICROS~1\Msinfo\OFFPROV.EXE
C:\WINDOWS\system32\msiexec.exe
C:\Hijackthis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.kqspxhclqmczfxcetwkv.com/TYDnJLb02oKcV4B1W0hkhSayswX7N2a1xKDwhlcEKpK/xI5BN1wDTrCauJH/gicd.asp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [service updaer] qualityz.exe
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [SbUsb AudCtrl] RunDll32 sbusbdll.dll,RCMonitor
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [InstantTray] C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [RemoteCenter] C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
O4 - HKCU\..\Run: [Settingsstore] C:\DOCUME~1\jppons\APPLIC~1\PLAYLI~1\ThunkAbout.exe
O4 - HKCU\..\RunServices: [0rder Data] C:\WINDOWS\System32\weqs1e7\f1g.exe C:\WINDOWS\System32\weqs1e7\dirote.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Mon Assistant Internet.lnk = C:\Program Files\Numericable\Mon Assistant Internet\bin\matcli.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la Liste à Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E2941E3-8E63-11D4-9D5A-00902742D6E0} (iNotes Class) - https://extraweb-emea.ey.com/home/extraweb/iNotes.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1096722591187
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Win32 USB2 Driver (blargh) - Unknown owner - C:\WINDOWS\System32\pomedsrv.exe" -netsvcs (file missing)
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Windows Update Manager (Update Manager ) - Unknown owner - C:\WINDOWS\System32\updmgr.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
copie du rapport lopxp
Rapport fait à 21:01:24,04 le 15/11/2005
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\All Users\Application Data
15/11/2005 18:30 <REP> Microsoft
13/11/2005 19:24 <REP> Spybot - Search & Destroy
13/11/2005 19:18 <REP> ..
13/11/2005 19:18 <REP> .
11/11/2005 14:54 <REP> Yahoo! Companion
06/11/2005 00:17 <REP> Messenger Plus!
06/11/2005 00:17 <REP> stupid hold idol bend
26/10/2005 11:33 <REP> Adobe
27/07/2005 15:26 <REP> Windows Genuine Advantage
11/06/2005 16:44 <REP> QuickTime
31/03/2005 13:24 <REP> Apple Computer
28/02/2005 20:41 <REP> Sony Corporation
13/02/2005 14:14 <REP> Creative
28/12/2004 21:59 <REP> CyberLink
24/11/2004 12:04 <REP> Logitech
08/10/2004 10:44 <REP> SBT
03/10/2004 15:45 <REP> Kaspersky Anti-Virus Personal
03/10/2004 15:43 <REP> Symantec
02/10/2004 19:34 <REP> MSN6
02/10/2004 12:07 62 desktop.ini
1 fichier(s) 62 octets
19 R‚p(s) 13204168704 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\Default User\Application Data
02/10/2004 12:07 <REP> ..
02/10/2004 12:07 62 desktop.ini
02/10/2004 12:07 <REP> .
02/10/2004 11:21 <REP> Microsoft
1 fichier(s) 62 octets
3 R‚p(s) 13204156416 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\jppons\Application Data
15/11/2005 18:30 <REP> Lavasoft
15/11/2005 18:30 <REP> ..
15/11/2005 18:30 <REP> .
11/11/2005 15:44 <REP> Play List
11/11/2005 11:39 <REP> MEALBIKEFOUR
10/11/2005 23:43 <REP> Microsoft
29/10/2005 18:57 <REP> ArcSoft
26/10/2005 11:31 <REP> Adobe
26/10/2005 11:31 1814 AdobeDLM.log
26/10/2005 11:31 0 dm.ini
03/10/2005 10:09 <REP> AdobeUM
26/09/2005 14:03 <REP> Help
13/08/2005 19:55 <REP> COWON
31/03/2005 13:25 <REP> Apple Computer
17/03/2005 12:26 <REP> Motive
13/02/2005 14:13 <REP> Creative
13/02/2005 00:45 <REP> Leadertech
05/01/2005 14:54 <REP> Basta Computing
29/11/2004 16:34 <REP> CyberLink
24/11/2004 12:10 <REP> Logitech
18/10/2004 10:30 <REP> Steinberg
14/10/2004 14:27 <REP> InterTrust
08/10/2004 18:49 <REP> MSN6
08/10/2004 11:17 <REP> Ahead
08/10/2004 10:37 <REP> Microsoft Web Folders
05/10/2004 14:39 <REP> Sony Corporation
02/10/2004 14:17 <REP> Macromedia
02/10/2004 12:07 62 desktop.ini
02/10/2004 11:36 <REP> Symantec
02/10/2004 11:25 <REP> Identities
3 fichier(s) 1876 octets
27 R‚p(s) 13204156416 octets libres
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks
B01627289399D894.job
SA.DAT
desktop.ini
******************************************
Recherche dans Program files
Le dossier C:\Program Files\Adv n'existe pas
Le dossier C:\Program Files\C2Media n'existe pas
Jean Pierre
Logfile of HijackThis v1.99.1
Scan saved at 20:39:50, on 15/11/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
c:\progra~1\intern~1\iexplore.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Numericable\Mon Assistant Internet\bin\mpbtn.exe
C:\Program Files\Creative\MediaSource\RemoteControl\OSDMenu.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\FICHIE~1\MICROS~1\Msinfo\OFFPROV.EXE
C:\WINDOWS\system32\msiexec.exe
C:\Hijackthis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.kqspxhclqmczfxcetwkv.com/TYDnJLb02oKcV4B1W0hkhSayswX7N2a1xKDwhlcEKpK/xI5BN1wDTrCauJH/gicd.asp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [service updaer] qualityz.exe
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [SbUsb AudCtrl] RunDll32 sbusbdll.dll,RCMonitor
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [InstantTray] C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [RemoteCenter] C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
O4 - HKCU\..\Run: [Settingsstore] C:\DOCUME~1\jppons\APPLIC~1\PLAYLI~1\ThunkAbout.exe
O4 - HKCU\..\RunServices: [0rder Data] C:\WINDOWS\System32\weqs1e7\f1g.exe C:\WINDOWS\System32\weqs1e7\dirote.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Mon Assistant Internet.lnk = C:\Program Files\Numericable\Mon Assistant Internet\bin\matcli.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la Liste à Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E2941E3-8E63-11D4-9D5A-00902742D6E0} (iNotes Class) - https://extraweb-emea.ey.com/home/extraweb/iNotes.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1096722591187
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Win32 USB2 Driver (blargh) - Unknown owner - C:\WINDOWS\System32\pomedsrv.exe" -netsvcs (file missing)
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Windows Update Manager (Update Manager ) - Unknown owner - C:\WINDOWS\System32\updmgr.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
copie du rapport lopxp
Rapport fait à 21:01:24,04 le 15/11/2005
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\All Users\Application Data
15/11/2005 18:30 <REP> Microsoft
13/11/2005 19:24 <REP> Spybot - Search & Destroy
13/11/2005 19:18 <REP> ..
13/11/2005 19:18 <REP> .
11/11/2005 14:54 <REP> Yahoo! Companion
06/11/2005 00:17 <REP> Messenger Plus!
06/11/2005 00:17 <REP> stupid hold idol bend
26/10/2005 11:33 <REP> Adobe
27/07/2005 15:26 <REP> Windows Genuine Advantage
11/06/2005 16:44 <REP> QuickTime
31/03/2005 13:24 <REP> Apple Computer
28/02/2005 20:41 <REP> Sony Corporation
13/02/2005 14:14 <REP> Creative
28/12/2004 21:59 <REP> CyberLink
24/11/2004 12:04 <REP> Logitech
08/10/2004 10:44 <REP> SBT
03/10/2004 15:45 <REP> Kaspersky Anti-Virus Personal
03/10/2004 15:43 <REP> Symantec
02/10/2004 19:34 <REP> MSN6
02/10/2004 12:07 62 desktop.ini
1 fichier(s) 62 octets
19 R‚p(s) 13204168704 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\Default User\Application Data
02/10/2004 12:07 <REP> ..
02/10/2004 12:07 62 desktop.ini
02/10/2004 12:07 <REP> .
02/10/2004 11:21 <REP> Microsoft
1 fichier(s) 62 octets
3 R‚p(s) 13204156416 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\jppons\Application Data
15/11/2005 18:30 <REP> Lavasoft
15/11/2005 18:30 <REP> ..
15/11/2005 18:30 <REP> .
11/11/2005 15:44 <REP> Play List
11/11/2005 11:39 <REP> MEALBIKEFOUR
10/11/2005 23:43 <REP> Microsoft
29/10/2005 18:57 <REP> ArcSoft
26/10/2005 11:31 <REP> Adobe
26/10/2005 11:31 1814 AdobeDLM.log
26/10/2005 11:31 0 dm.ini
03/10/2005 10:09 <REP> AdobeUM
26/09/2005 14:03 <REP> Help
13/08/2005 19:55 <REP> COWON
31/03/2005 13:25 <REP> Apple Computer
17/03/2005 12:26 <REP> Motive
13/02/2005 14:13 <REP> Creative
13/02/2005 00:45 <REP> Leadertech
05/01/2005 14:54 <REP> Basta Computing
29/11/2004 16:34 <REP> CyberLink
24/11/2004 12:10 <REP> Logitech
18/10/2004 10:30 <REP> Steinberg
14/10/2004 14:27 <REP> InterTrust
08/10/2004 18:49 <REP> MSN6
08/10/2004 11:17 <REP> Ahead
08/10/2004 10:37 <REP> Microsoft Web Folders
05/10/2004 14:39 <REP> Sony Corporation
02/10/2004 14:17 <REP> Macromedia
02/10/2004 12:07 62 desktop.ini
02/10/2004 11:36 <REP> Symantec
02/10/2004 11:25 <REP> Identities
3 fichier(s) 1876 octets
27 R‚p(s) 13204156416 octets libres
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks
B01627289399D894.job
SA.DAT
desktop.ini
******************************************
Recherche dans Program files
Le dossier C:\Program Files\Adv n'existe pas
Le dossier C:\Program Files\C2Media n'existe pas
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
15 nov. 2005 à 22:08
15 nov. 2005 à 22:08
regis,
juste pour info depuis les manip. je ne peux plus lire mes messages entrants dans outlook je vois que j'ai une reception en bas à droite qui mouline sans arrêt mais le message ne s'affiche pas ...
Même chose dans le sens envoi un message ne peut être envoyé , n'aurais je pas supprimé un fichier concernant outlook ?
juste pour info depuis les manip. je ne peux plus lire mes messages entrants dans outlook je vois que j'ai une reception en bas à droite qui mouline sans arrêt mais le message ne s'affiche pas ...
Même chose dans le sens envoi un message ne peut être envoyé , n'aurais je pas supprimé un fichier concernant outlook ?
balltrap34
Messages postés
16240
Date d'inscription
jeudi 8 janvier 2004
Statut
Contributeur sécurité
Dernière intervention
28 novembre 2009
331
15 nov. 2005 à 22:17
15 nov. 2005 à 22:17
salut
avec spyboot tu na virer que se qui etais en rouge
et avec adaware tu nas pas virer les risque negligables au moin
avec spyboot tu na virer que se qui etais en rouge
et avec adaware tu nas pas virer les risque negligables au moin
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
16 nov. 2005 à 10:11
16 nov. 2005 à 10:11
Salut à vous,
Rien ne s'arrange manifestement ce matin j'ai essayé outlook sans succes et de plus les même cochonneries s'affichent je viens de refaire à l'instant un ad ware et un spybot tout normalement a été effacé je renvoie un hijack this :
Logfile of HijackThis v1.99.1
Scan saved at 10:10:13, on 16/11/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
c:\progra~1\intern~1\iexplore.exe
C:\Program Files\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Numericable\Mon Assistant Internet\bin\mpbtn.exe
C:\Program Files\Creative\MediaSource\RemoteControl\OSDMenu.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\FICHIE~1\MICROS~1\Msinfo\OFFPROV.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\msiexec.exe
C:\Hijackthis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.kqspxhclqmczfxcetwkv.com/TYDnJLb02oKcV4B1W0hkhSayswX7N2a1xKDwhlcEKpK/xI5BN1wDTrCauJH/gicd.asp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [service updaer] qualityz.exe
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [SbUsb AudCtrl] RunDll32 sbusbdll.dll,RCMonitor
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [InstantTray] C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [RemoteCenter] C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
O4 - HKCU\..\Run: [Settingsstore] C:\DOCUME~1\jppons\APPLIC~1\PLAYLI~1\ThunkAbout.exe
O4 - HKCU\..\RunServices: [0rder Data] C:\WINDOWS\System32\weqs1e7\f1g.exe C:\WINDOWS\System32\weqs1e7\dirote.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Mon Assistant Internet.lnk = C:\Program Files\Numericable\Mon Assistant Internet\bin\matcli.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la Liste à Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E2941E3-8E63-11D4-9D5A-00902742D6E0} (iNotes Class) - https://extraweb-emea.ey.com/home/extraweb/iNotes.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1096722591187
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Win32 USB2 Driver (blargh) - Unknown owner - C:\WINDOWS\System32\pomedsrv.exe" -netsvcs (file missing)
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Windows Update Manager (Update Manager ) - Unknown owner - C:\WINDOWS\System32\updmgr.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
où est l'erreur ? merci à vous
Rien ne s'arrange manifestement ce matin j'ai essayé outlook sans succes et de plus les même cochonneries s'affichent je viens de refaire à l'instant un ad ware et un spybot tout normalement a été effacé je renvoie un hijack this :
Logfile of HijackThis v1.99.1
Scan saved at 10:10:13, on 16/11/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
c:\progra~1\intern~1\iexplore.exe
C:\Program Files\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Numericable\Mon Assistant Internet\bin\mpbtn.exe
C:\Program Files\Creative\MediaSource\RemoteControl\OSDMenu.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\FICHIE~1\MICROS~1\Msinfo\OFFPROV.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\msiexec.exe
C:\Hijackthis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.kqspxhclqmczfxcetwkv.com/TYDnJLb02oKcV4B1W0hkhSayswX7N2a1xKDwhlcEKpK/xI5BN1wDTrCauJH/gicd.asp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [service updaer] qualityz.exe
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [SbUsb AudCtrl] RunDll32 sbusbdll.dll,RCMonitor
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [InstantTray] C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [RemoteCenter] C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
O4 - HKCU\..\Run: [Settingsstore] C:\DOCUME~1\jppons\APPLIC~1\PLAYLI~1\ThunkAbout.exe
O4 - HKCU\..\RunServices: [0rder Data] C:\WINDOWS\System32\weqs1e7\f1g.exe C:\WINDOWS\System32\weqs1e7\dirote.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Mon Assistant Internet.lnk = C:\Program Files\Numericable\Mon Assistant Internet\bin\matcli.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la Liste à Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E2941E3-8E63-11D4-9D5A-00902742D6E0} (iNotes Class) - https://extraweb-emea.ey.com/home/extraweb/iNotes.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1096722591187
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Win32 USB2 Driver (blargh) - Unknown owner - C:\WINDOWS\System32\pomedsrv.exe" -netsvcs (file missing)
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Windows Update Manager (Update Manager ) - Unknown owner - C:\WINDOWS\System32\updmgr.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
où est l'erreur ? merci à vous
Utilisateur anonyme
16 nov. 2005 à 14:25
16 nov. 2005 à 14:25
Bonjour,
Stress pas, on va virer ces pubs et tes favoris...
Imprime, ou enregistre la manip dans un fichier dans le bloc notes pour être sur ne rien oublier et de tout faire dans l'ordre.
1/Telecharge ceci: Clean Up 40:
http://pageperso.aol.fr/balltrap34/CleanUp40.exe
-aide en image:(merci à Balltrap34).
http://pageperso.aol.fr/balltrap34/democleanup.htm
Déconnecte toi d'Internet et ferme tout les programmes en cours.
Redémarre en mode sans échec
Redémarre le pc, laisse passer l'écran du bios, puis tapote sur la touche F8 avant qu'apparaisse l'écran de chargement de windows.
Choisis le mode sans échec dans les options et valide avec entrée.
(Si F8 ne marche pas, essai F5)
Rend visible les fichiers cachés et système
panneau de configuration > options des dossiers > onglet affichage
Cocher la case devant " afficher les fichiers et dossiers cachés "
Décocher la case devant " masquer les extensions des fichiers dont le type est connu"
Décocher la case devant " masquer les fichiers protégés du système"
clic sur [Appliquer] puis sur [ok] pour valider
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
Lance hijackthis et clic sur [do a system scan only]
cocher la case au début des lignes suivantes:
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.kqspxhclqmczfxcetwkv.com/TYDnJLb02oKcV4B1W0hkhSayswX7N2a1xKDwhlcEKpK/ xI5BN1wDTrCauJH/gicd.asp
O4 - HKLM\..\Run: [service updaer] qualityz.exe
O4 - HKCU\..\Run: [Settingsstore] C:\DOCUME~1\jppons\APPLIC~1\PLAYLI~1\ThunkAbout.exe
O4 - HKCU\..\RunServices: [0rder Data] C:\WINDOWS\System32\weqs1e7\f1g.exe C:\WINDOWS\System32\weqs1e7\dirote.exe
O23 - Service: Win32 USB2 Driver (blargh) - Unknown owner - C:\WINDOWS\System32\pomedsrv.exe" -netsvcs (file missing)
O23 - Service: Windows Update Manager (Update Manager ) - Unknown owner - C:\WINDOWS\System32\updmgr.exe (file missing)
valider en cliquant sur le bouton [fix checked]
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
Recherche et supprime ces dossiers:
Supprimer les fichiers en suivant le chemin des fichiers infectés si possible, plutot que d'utiliser la fonction "Rechercher"
S'ils sont présents, supprime:
qualityz.exe
C:\Documents and Settings\jppons\Application Data\Play List
C:\WINDOWS\System32\weqs1e7\
C:\WINDOWS\System32\pomedsrv.exe
C:\WINDOWS\System32\updmgr.exe
***
----------------------------------------------------------------------------
¤Arrête ces services :
Clique sur Démarrer->exécuter->tape: services.msc
Double-clique: Service: Win32 USB2 Driver
Règle-le sur "Arrêté" et "Désactivé".
De meme avec ceci
Windows Update Manager
----------------------------------------------------------------------------
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
Ensuite fais Démarrer > exécuter et tape cmd
puis valide avec ok
dans la fenêtre qui va s'ouvrir, copie et colle ceci:
del /a C:\WINDOWS\tasks\B01627289399D894.job
et valide en appuyant sur entrée
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
Ensuite, très important:
:: Supprimer les fichiers temporaires ::
Exécute cleanup40.
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
Vide ta poubelle
Redémarre normalement et reposte un Hijackthis sur le poste…
Précises moi ou en sont tes soucis…
A+
Stress pas, on va virer ces pubs et tes favoris...
Imprime, ou enregistre la manip dans un fichier dans le bloc notes pour être sur ne rien oublier et de tout faire dans l'ordre.
1/Telecharge ceci: Clean Up 40:
http://pageperso.aol.fr/balltrap34/CleanUp40.exe
-aide en image:(merci à Balltrap34).
http://pageperso.aol.fr/balltrap34/democleanup.htm
Déconnecte toi d'Internet et ferme tout les programmes en cours.
Redémarre en mode sans échec
Redémarre le pc, laisse passer l'écran du bios, puis tapote sur la touche F8 avant qu'apparaisse l'écran de chargement de windows.
Choisis le mode sans échec dans les options et valide avec entrée.
(Si F8 ne marche pas, essai F5)
Rend visible les fichiers cachés et système
panneau de configuration > options des dossiers > onglet affichage
Cocher la case devant " afficher les fichiers et dossiers cachés "
Décocher la case devant " masquer les extensions des fichiers dont le type est connu"
Décocher la case devant " masquer les fichiers protégés du système"
clic sur [Appliquer] puis sur [ok] pour valider
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
Lance hijackthis et clic sur [do a system scan only]
cocher la case au début des lignes suivantes:
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.kqspxhclqmczfxcetwkv.com/TYDnJLb02oKcV4B1W0hkhSayswX7N2a1xKDwhlcEKpK/ xI5BN1wDTrCauJH/gicd.asp
O4 - HKLM\..\Run: [service updaer] qualityz.exe
O4 - HKCU\..\Run: [Settingsstore] C:\DOCUME~1\jppons\APPLIC~1\PLAYLI~1\ThunkAbout.exe
O4 - HKCU\..\RunServices: [0rder Data] C:\WINDOWS\System32\weqs1e7\f1g.exe C:\WINDOWS\System32\weqs1e7\dirote.exe
O23 - Service: Win32 USB2 Driver (blargh) - Unknown owner - C:\WINDOWS\System32\pomedsrv.exe" -netsvcs (file missing)
O23 - Service: Windows Update Manager (Update Manager ) - Unknown owner - C:\WINDOWS\System32\updmgr.exe (file missing)
valider en cliquant sur le bouton [fix checked]
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
Recherche et supprime ces dossiers:
Supprimer les fichiers en suivant le chemin des fichiers infectés si possible, plutot que d'utiliser la fonction "Rechercher"
S'ils sont présents, supprime:
qualityz.exe
C:\Documents and Settings\jppons\Application Data\Play List
C:\WINDOWS\System32\weqs1e7\
C:\WINDOWS\System32\pomedsrv.exe
C:\WINDOWS\System32\updmgr.exe
***
----------------------------------------------------------------------------
¤Arrête ces services :
Clique sur Démarrer->exécuter->tape: services.msc
Double-clique: Service: Win32 USB2 Driver
Règle-le sur "Arrêté" et "Désactivé".
De meme avec ceci
Windows Update Manager
----------------------------------------------------------------------------
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
Ensuite fais Démarrer > exécuter et tape cmd
puis valide avec ok
dans la fenêtre qui va s'ouvrir, copie et colle ceci:
del /a C:\WINDOWS\tasks\B01627289399D894.job
et valide en appuyant sur entrée
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
Ensuite, très important:
:: Supprimer les fichiers temporaires ::
Exécute cleanup40.
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
Vide ta poubelle
Redémarre normalement et reposte un Hijackthis sur le poste…
Précises moi ou en sont tes soucis…
A+
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
16 nov. 2005 à 15:43
16 nov. 2005 à 15:43
Bonjour Regis,
J'ai essayé de mettre en application ce que tu m'as demandé de faire je contaste
1. plus de bandeaux sur yahoo quand je l'ouvre
2. Plus de sites bizarres dans mes favoris
3. Couleur différente dans le bandeau du bas sur le bureau et format plus petit
Par contre pour info je n'ai pas pû supprimer :
C:\Documents and Settings\jppons\Application Data\Play List on m'indique : impossible de supprimer fichier impossible de lire à partir du fichier ou de la disquette source
également :
C:\WINDOWS\System32\weqs1e7\
C:\WINDOWS\System32\pomedsrv.exe
C:\WINDOWS\System32\updmgr.exe
on m'indique que le system 32 n'est pas un dossier valide
et à la fin impossible de mettre dans le carré noir le copier coller
del /a C:\WINDOWS\tasks\B01627289399D894.job on m'indique: " n'est pas reconnu en tant que commande interne ou externe un programme executa
J'ai essayé de mettre en application ce que tu m'as demandé de faire je contaste
1. plus de bandeaux sur yahoo quand je l'ouvre
2. Plus de sites bizarres dans mes favoris
3. Couleur différente dans le bandeau du bas sur le bureau et format plus petit
Par contre pour info je n'ai pas pû supprimer :
C:\Documents and Settings\jppons\Application Data\Play List on m'indique : impossible de supprimer fichier impossible de lire à partir du fichier ou de la disquette source
également :
C:\WINDOWS\System32\weqs1e7\
C:\WINDOWS\System32\pomedsrv.exe
C:\WINDOWS\System32\updmgr.exe
on m'indique que le system 32 n'est pas un dossier valide
et à la fin impossible de mettre dans le carré noir le copier coller
del /a C:\WINDOWS\tasks\B01627289399D894.job on m'indique: " n'est pas reconnu en tant que commande interne ou externe un programme executa
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
16 nov. 2005 à 15:47
16 nov. 2005 à 15:47
je contine j'ai été coupé:
executable ou un fichier de commandes
voilà le reste j'ai tout fait, j'ai encore le problème outlook qui ne s'est pas réglé je ne peux toujours pas recevoir.Je t'envoie le rapport hijack this :
Logfile of HijackThis v1.99.1
Scan saved at 15:46:01, on 16/11/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
C:\Program Files\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Numericable\Mon Assistant Internet\bin\mpbtn.exe
C:\Program Files\Creative\MediaSource\RemoteControl\OSDMenu.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Microsoft Office\Office\WINWORD.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\msagent\AgentSvr.exe
C:\Hijackthis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://mbzbdjcqsmlyqlkdklun.us/TYDnJLb02oKcV4B1W0hkhSayswX7N2a1xKDwhlcEKpJ1/Mi3obOaM7CauJH/gicd.cgi
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [SbUsb AudCtrl] RunDll32 sbusbdll.dll,RCMonitor
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [InstantTray] C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [RemoteCenter] C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Mon Assistant Internet.lnk = C:\Program Files\Numericable\Mon Assistant Internet\bin\matcli.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la Liste à Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E2941E3-8E63-11D4-9D5A-00902742D6E0} (iNotes Class) - https://extraweb-emea.ey.com/home/extraweb/iNotes.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1096722591187
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Win32 USB2 Driver (blargh) - Unknown owner - C:\WINDOWS\System32\pomedsrv.exe" -netsvcs (file missing)
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Windows Update Manager (Update Manager ) - Unknown owner - C:\WINDOWS\System32\updmgr.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
à bientôt de te lire merci pour tout regis
executable ou un fichier de commandes
voilà le reste j'ai tout fait, j'ai encore le problème outlook qui ne s'est pas réglé je ne peux toujours pas recevoir.Je t'envoie le rapport hijack this :
Logfile of HijackThis v1.99.1
Scan saved at 15:46:01, on 16/11/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
C:\Program Files\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Numericable\Mon Assistant Internet\bin\mpbtn.exe
C:\Program Files\Creative\MediaSource\RemoteControl\OSDMenu.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Microsoft Office\Office\WINWORD.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\msagent\AgentSvr.exe
C:\Hijackthis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://mbzbdjcqsmlyqlkdklun.us/TYDnJLb02oKcV4B1W0hkhSayswX7N2a1xKDwhlcEKpJ1/Mi3obOaM7CauJH/gicd.cgi
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [SbUsb AudCtrl] RunDll32 sbusbdll.dll,RCMonitor
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [InstantTray] C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [RemoteCenter] C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Mon Assistant Internet.lnk = C:\Program Files\Numericable\Mon Assistant Internet\bin\matcli.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la Liste à Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E2941E3-8E63-11D4-9D5A-00902742D6E0} (iNotes Class) - https://extraweb-emea.ey.com/home/extraweb/iNotes.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1096722591187
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Win32 USB2 Driver (blargh) - Unknown owner - C:\WINDOWS\System32\pomedsrv.exe" -netsvcs (file missing)
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Windows Update Manager (Update Manager ) - Unknown owner - C:\WINDOWS\System32\updmgr.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
à bientôt de te lire merci pour tout regis
Utilisateur anonyme
16 nov. 2005 à 16:24
16 nov. 2005 à 16:24
salut
remet un rapport lopxp stp
a+
remet un rapport lopxp stp
a+
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
16 nov. 2005 à 17:42
16 nov. 2005 à 17:42
je t'envoie comme convenu le rapport :
apport fait à 17:40:06,65 le 16/11/2005
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\All Users\Application Data
15/11/2005 18:30 <REP> Microsoft
13/11/2005 19:24 <REP> Spybot - Search & Destroy
13/11/2005 19:18 <REP> ..
13/11/2005 19:18 <REP> .
11/11/2005 14:54 <REP> Yahoo! Companion
06/11/2005 00:17 <REP> Messenger Plus!
06/11/2005 00:17 <REP> stupid hold idol bend
26/10/2005 11:33 <REP> Adobe
27/07/2005 15:26 <REP> Windows Genuine Advantage
11/06/2005 16:44 <REP> QuickTime
31/03/2005 13:24 <REP> Apple Computer
28/02/2005 20:41 <REP> Sony Corporation
13/02/2005 14:14 <REP> Creative
28/12/2004 21:59 <REP> CyberLink
24/11/2004 12:04 <REP> Logitech
08/10/2004 10:44 <REP> SBT
03/10/2004 15:45 <REP> Kaspersky Anti-Virus Personal
03/10/2004 15:43 <REP> Symantec
02/10/2004 19:34 <REP> MSN6
02/10/2004 12:07 62 desktop.ini
1 fichier(s) 62 octets
19 R‚p(s) 13784014848 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\Default User\Application Data
02/10/2004 12:07 <REP> ..
02/10/2004 12:07 62 desktop.ini
02/10/2004 12:07 <REP> .
02/10/2004 11:21 <REP> Microsoft
1 fichier(s) 62 octets
3 R‚p(s) 13784002560 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\jppons\Application Data
16/11/2005 15:06 <REP> ..
16/11/2005 15:06 <REP> .
15/11/2005 18:30 <REP> Lavasoft
11/11/2005 11:39 <REP> MEALBIKEFOUR
10/11/2005 23:43 <REP> Microsoft
29/10/2005 18:57 <REP> ArcSoft
26/10/2005 11:31 <REP> Adobe
26/10/2005 11:31 1814 AdobeDLM.log
26/10/2005 11:31 0 dm.ini
03/10/2005 10:09 <REP> AdobeUM
26/09/2005 14:03 <REP> Help
13/08/2005 19:55 <REP> COWON
31/03/2005 13:25 <REP> Apple Computer
17/03/2005 12:26 <REP> Motive
13/02/2005 14:13 <REP> Creative
13/02/2005 00:45 <REP> Leadertech
05/01/2005 14:54 <REP> Basta Computing
29/11/2004 16:34 <REP> CyberLink
24/11/2004 12:10 <REP> Logitech
18/10/2004 10:30 <REP> Steinberg
14/10/2004 14:27 <REP> InterTrust
08/10/2004 18:49 <REP> MSN6
08/10/2004 11:17 <REP> Ahead
08/10/2004 10:37 <REP> Microsoft Web Folders
05/10/2004 14:39 <REP> Sony Corporation
02/10/2004 14:17 <REP> Macromedia
02/10/2004 12:07 62 desktop.ini
02/10/2004 11:36 <REP> Symantec
02/10/2004 11:25 <REP> Identities
3 fichier(s) 1876 octets
26 R‚p(s) 13784002560 octets libres
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks
B01627289399D894.job
SA.DAT
desktop.ini
******************************************
Recherche dans Program files
Le dossier C:\Program Files\Adv n'existe pas
Le dossier C:\Program Files\C2Media n'existe pas
*************** Fin du rapport ****************
a+ regis
apport fait à 17:40:06,65 le 16/11/2005
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\All Users\Application Data
15/11/2005 18:30 <REP> Microsoft
13/11/2005 19:24 <REP> Spybot - Search & Destroy
13/11/2005 19:18 <REP> ..
13/11/2005 19:18 <REP> .
11/11/2005 14:54 <REP> Yahoo! Companion
06/11/2005 00:17 <REP> Messenger Plus!
06/11/2005 00:17 <REP> stupid hold idol bend
26/10/2005 11:33 <REP> Adobe
27/07/2005 15:26 <REP> Windows Genuine Advantage
11/06/2005 16:44 <REP> QuickTime
31/03/2005 13:24 <REP> Apple Computer
28/02/2005 20:41 <REP> Sony Corporation
13/02/2005 14:14 <REP> Creative
28/12/2004 21:59 <REP> CyberLink
24/11/2004 12:04 <REP> Logitech
08/10/2004 10:44 <REP> SBT
03/10/2004 15:45 <REP> Kaspersky Anti-Virus Personal
03/10/2004 15:43 <REP> Symantec
02/10/2004 19:34 <REP> MSN6
02/10/2004 12:07 62 desktop.ini
1 fichier(s) 62 octets
19 R‚p(s) 13784014848 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\Default User\Application Data
02/10/2004 12:07 <REP> ..
02/10/2004 12:07 62 desktop.ini
02/10/2004 12:07 <REP> .
02/10/2004 11:21 <REP> Microsoft
1 fichier(s) 62 octets
3 R‚p(s) 13784002560 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est A8C6-3726
R‚pertoire de C:\Documents and Settings\jppons\Application Data
16/11/2005 15:06 <REP> ..
16/11/2005 15:06 <REP> .
15/11/2005 18:30 <REP> Lavasoft
11/11/2005 11:39 <REP> MEALBIKEFOUR
10/11/2005 23:43 <REP> Microsoft
29/10/2005 18:57 <REP> ArcSoft
26/10/2005 11:31 <REP> Adobe
26/10/2005 11:31 1814 AdobeDLM.log
26/10/2005 11:31 0 dm.ini
03/10/2005 10:09 <REP> AdobeUM
26/09/2005 14:03 <REP> Help
13/08/2005 19:55 <REP> COWON
31/03/2005 13:25 <REP> Apple Computer
17/03/2005 12:26 <REP> Motive
13/02/2005 14:13 <REP> Creative
13/02/2005 00:45 <REP> Leadertech
05/01/2005 14:54 <REP> Basta Computing
29/11/2004 16:34 <REP> CyberLink
24/11/2004 12:10 <REP> Logitech
18/10/2004 10:30 <REP> Steinberg
14/10/2004 14:27 <REP> InterTrust
08/10/2004 18:49 <REP> MSN6
08/10/2004 11:17 <REP> Ahead
08/10/2004 10:37 <REP> Microsoft Web Folders
05/10/2004 14:39 <REP> Sony Corporation
02/10/2004 14:17 <REP> Macromedia
02/10/2004 12:07 62 desktop.ini
02/10/2004 11:36 <REP> Symantec
02/10/2004 11:25 <REP> Identities
3 fichier(s) 1876 octets
26 R‚p(s) 13784002560 octets libres
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks
B01627289399D894.job
SA.DAT
desktop.ini
******************************************
Recherche dans Program files
Le dossier C:\Program Files\Adv n'existe pas
Le dossier C:\Program Files\C2Media n'existe pas
*************** Fin du rapport ****************
a+ regis
Utilisateur anonyme
16 nov. 2005 à 17:46
16 nov. 2005 à 17:46
re,
fixe ceci
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://mbzbdjcqsmlyqlkdklun.us/TYDnJLb02oKcV4B1W0hkhSayswX7N2a1xKDwhlcEKpJ1/Mi3obOaM7CauJH/gicd.cgi
Ensuite fais Démarrer > exécuter et tape cmd
puis valide avec ok
dans la fenêtre qui va s'ouvrir, copie et colle ceci:
del /a C:\WINDOWS\tasks\B01627289399D894.job
et valide en appuyant sur entrée
et remet un hijack this
fixe ceci
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://mbzbdjcqsmlyqlkdklun.us/TYDnJLb02oKcV4B1W0hkhSayswX7N2a1xKDwhlcEKpJ1/Mi3obOaM7CauJH/gicd.cgi
Ensuite fais Démarrer > exécuter et tape cmd
puis valide avec ok
dans la fenêtre qui va s'ouvrir, copie et colle ceci:
del /a C:\WINDOWS\tasks\B01627289399D894.job
et valide en appuyant sur entrée
et remet un hijack this
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
16 nov. 2005 à 18:08
16 nov. 2005 à 18:08
j'ai enfin réussi à copier coller ce que tu m'as demandé je te renvoie un hijackthis :
Logfile of HijackThis v1.99.1
Scan saved at 18:04:08, on 16/11/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
C:\Program Files\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Numericable\Mon Assistant Internet\bin\mpbtn.exe
C:\Program Files\Creative\MediaSource\RemoteControl\OSDMenu.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Hijackthis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [SbUsb AudCtrl] RunDll32 sbusbdll.dll,RCMonitor
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [InstantTray] C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [RemoteCenter] C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Mon Assistant Internet.lnk = C:\Program Files\Numericable\Mon Assistant Internet\bin\matcli.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la Liste à Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E2941E3-8E63-11D4-9D5A-00902742D6E0} (iNotes Class) - https://extraweb-emea.ey.com/home/extraweb/iNotes.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1096722591187
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Win32 USB2 Driver (blargh) - Unknown owner - C:\WINDOWS\System32\pomedsrv.exe" -netsvcs (file missing)
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Windows Update Manager (Update Manager ) - Unknown owner - C:\WINDOWS\System32\updmgr.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Qu'en penses tu pour info quand je me suis mis sur le mode sans echec pour faire la manip avant de fermer l'ordi j'ai vu le programme OUTLOOK.EXE ne répondait pas car il me demandait de fermer. une incidence sur les problèmes outlook peut être ?
Logfile of HijackThis v1.99.1
Scan saved at 18:04:08, on 16/11/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
C:\Program Files\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Numericable\Mon Assistant Internet\bin\mpbtn.exe
C:\Program Files\Creative\MediaSource\RemoteControl\OSDMenu.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Hijackthis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\NUMERI~1\MONASS~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBLive 24-Bit External\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [SbUsb AudCtrl] RunDll32 sbusbdll.dll,RCMonitor
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [InstantTray] C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [RemoteCenter] C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Mon Assistant Internet.lnk = C:\Program Files\Numericable\Mon Assistant Internet\bin\matcli.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la Liste à Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E2941E3-8E63-11D4-9D5A-00902742D6E0} (iNotes Class) - https://extraweb-emea.ey.com/home/extraweb/iNotes.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1096722591187
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {32AF19E5-7DB7-4EB6-A3FA-64BE8930B63A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Win32 USB2 Driver (blargh) - Unknown owner - C:\WINDOWS\System32\pomedsrv.exe" -netsvcs (file missing)
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Windows Update Manager (Update Manager ) - Unknown owner - C:\WINDOWS\System32\updmgr.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Qu'en penses tu pour info quand je me suis mis sur le mode sans echec pour faire la manip avant de fermer l'ordi j'ai vu le programme OUTLOOK.EXE ne répondait pas car il me demandait de fermer. une incidence sur les problèmes outlook peut être ?
Utilisateur anonyme
16 nov. 2005 à 18:19
16 nov. 2005 à 18:19
non, une coincidence lol
enfin kje sais pas
ou en sont tes soucis la
a+
enfin kje sais pas
ou en sont tes soucis la
a+
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
16 nov. 2005 à 18:29
16 nov. 2005 à 18:29
excepté le problème de la messagerie toutes les cochonneries ne sont plus là, les favoris indésirables ne sont plus là, plus de pubs récalcitrantes pour le moment franchement tu m'as rendu un fier service mais pour éviter de nouveaux soucis penses tu qu'il y ait une coincidence avec le fait que ma fille se soit mis sur msn 7.5 au lieu de la version précédente, car personnellement je n'ai jamais eu le moindre souci avent la semaine dernière pour éviter que celà se reproduise que dois je faire ?
que me conseilles tu de faire également pour récupérer ma messagerie car manifestement c'est un problème de serveur je n'ai pas de problème reseau , je vois que je reçois des messages en bas à droite celà mouline et me donne l'explication que je t'ai donné plus haut
Pour le reste grand grand merci à toi regis c'est vraiment génial d'avoir pû sans trop te déranger ( quoique ) obtenir ce résultat
A+
jp
que me conseilles tu de faire également pour récupérer ma messagerie car manifestement c'est un problème de serveur je n'ai pas de problème reseau , je vois que je reçois des messages en bas à droite celà mouline et me donne l'explication que je t'ai donné plus haut
Pour le reste grand grand merci à toi regis c'est vraiment génial d'avoir pû sans trop te déranger ( quoique ) obtenir ce résultat
A+
jp
Utilisateur anonyme
16 nov. 2005 à 21:35
16 nov. 2005 à 21:35
salut
le probleme des favoris et des pubs venait de msn.en effet lorsque tu l as installer, il ne faut pas accepter les sponsors, comme ceci
http://theroot.chez.tiscali.fr/imgs/tuto/msgplus.jpg
si tu les acceptes, tu chopes ce qu on a enlever
pour ta messagerie, c est quoi? outlook?
a+
le probleme des favoris et des pubs venait de msn.en effet lorsque tu l as installer, il ne faut pas accepter les sponsors, comme ceci
http://theroot.chez.tiscali.fr/imgs/tuto/msgplus.jpg
si tu les acceptes, tu chopes ce qu on a enlever
pour ta messagerie, c est quoi? outlook?
a+
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
17 nov. 2005 à 12:18
17 nov. 2005 à 12:18
Salut Regis,
C'est clair que lorsque ma fille a installé le msn 7.5 elle n'a pas dû regarder ce qu'elle acceptait comme sponsor , je vais le lui dire dès ce soir, mais tu me confirmes que si elle ne touche plus rien à son instal. je ne risque plus rien maintenant elle peut tchater comme elle veut ou bien je dois prendre quelques précautions d'usage genre envoyer le spybot et le cleaner de temps en temps plus mon analyse virus classique Kapersky ou bien dois je faire autre chose encore ?
Pour outlook qui est un logiciel vendu avec le pack microsoft office professionnel dans lequel tu as word, excell, powerpoint il te permet de centraliser tes rendez vous , ton calendrier et aussi de recevoir tous tes messages de toutes tes boites mails . Pour info j'ai resolu ce problème ce matin en découvrant que la fenêtre qui apparaissait tout le temps hier me demandant d'insérer le disque de microsoft professionnel sr1 avait sur une incidence sur le fonctionnement d'outlook, j'ai donc inseré mon disque ce matin et celui ci m'a remis ma messagerie à jour et je peux desormais recevoir mes messages
super donc, je te remercie encore pour tout regis, tu as été super mais n'hésites pas à me donner en retour quelques conseils de prévention pour éviter que tout celà recommence ...
a+
JP
C'est clair que lorsque ma fille a installé le msn 7.5 elle n'a pas dû regarder ce qu'elle acceptait comme sponsor , je vais le lui dire dès ce soir, mais tu me confirmes que si elle ne touche plus rien à son instal. je ne risque plus rien maintenant elle peut tchater comme elle veut ou bien je dois prendre quelques précautions d'usage genre envoyer le spybot et le cleaner de temps en temps plus mon analyse virus classique Kapersky ou bien dois je faire autre chose encore ?
Pour outlook qui est un logiciel vendu avec le pack microsoft office professionnel dans lequel tu as word, excell, powerpoint il te permet de centraliser tes rendez vous , ton calendrier et aussi de recevoir tous tes messages de toutes tes boites mails . Pour info j'ai resolu ce problème ce matin en découvrant que la fenêtre qui apparaissait tout le temps hier me demandant d'insérer le disque de microsoft professionnel sr1 avait sur une incidence sur le fonctionnement d'outlook, j'ai donc inseré mon disque ce matin et celui ci m'a remis ma messagerie à jour et je peux desormais recevoir mes messages
super donc, je te remercie encore pour tout regis, tu as été super mais n'hésites pas à me donner en retour quelques conseils de prévention pour éviter que tout celà recommence ...
a+
JP
Utilisateur anonyme
17 nov. 2005 à 20:08
17 nov. 2005 à 20:08
salut JPP2
Tu vas bien? surtout n engeule pas ta fille c est vraiment pas necessaire, tout le monde se fait avoir et franchement il faut vraiment le savoir pour voir qu il faut cocher la case, donc epargne la d eventuelles remontrances, merci lol
Oui, l affaire des pubs est reglée, elle peut chatter et faire tout ce qu elle veut avec ses copines, tu ne seras plus emebette
Sauf si tu reinstalle msn, la tu feras attention de pas cocher les sponsors? Tu vois?
Mais sinon, non plus de soucis de ce coté la !
Oui sur le net , il y a toujours des precautions d usages
Garder et mettre a jour ces logiciels: kaspersky/ad aware et spybot
Scanne ton pc avec ad aware et spybot toutes les semaines (+mises a jours)
Pour kaspersky pas la peine, car il travaille en temps reel donc inutile de faire un scan avec...
Evites les sites douteux et sites X qui ramenent d enormes infections.
Ne pas oublier de faire les mises a jour windows lorsqu elles sont disponibles, cela permet de corriger les failles d XP
Tu m en vois ravi et merci pour l info, cela pourra me reservir...
En tout cas de rien et si tu as besoin n hesites pas a me demander.
Les conseils de preventions, je te les ai donner au dessu mais si tu veux en avoir d autres, pas de soucis.
De plus, je vois que tu as un pare feu (zone alarm), je te felicite, c est excellent d avoir proteger ton pc !
Pour eviter que cela recommence, je dirais attention lorsque tu telecharge qqchose simplement.regarde bien la source, tes mails idem, si connu tu ouvres, sinon supprimes !
Et ton probleme venait tout simplement du telechargement de msn avec acceptation des sponsors donc la je ne peux pas te prevenir pour pas rechoper ces pubs car c est juste une case a decocher a l installation
a bientot
Tu vas bien? surtout n engeule pas ta fille c est vraiment pas necessaire, tout le monde se fait avoir et franchement il faut vraiment le savoir pour voir qu il faut cocher la case, donc epargne la d eventuelles remontrances, merci lol
C'est clair que lorsque ma fille a installé le msn 7.5 elle n'a pas dû regarder ce qu'elle acceptait comme sponsor , je vais le lui dire dès ce soir, mais tu me confirmes que si elle ne touche plus rien à son instal. je ne risque plus rien maintenant elle peut tchater
Oui, l affaire des pubs est reglée, elle peut chatter et faire tout ce qu elle veut avec ses copines, tu ne seras plus emebette
Sauf si tu reinstalle msn, la tu feras attention de pas cocher les sponsors? Tu vois?
Mais sinon, non plus de soucis de ce coté la !
je dois prendre quelques précautions d'usage genre envoyer le spybot et le cleaner de temps en temps plus mon analyse virus classique Kapersky ou bien dois je faire autre chose encore ?
Oui sur le net , il y a toujours des precautions d usages
Garder et mettre a jour ces logiciels: kaspersky/ad aware et spybot
Scanne ton pc avec ad aware et spybot toutes les semaines (+mises a jours)
Pour kaspersky pas la peine, car il travaille en temps reel donc inutile de faire un scan avec...
Evites les sites douteux et sites X qui ramenent d enormes infections.
Ne pas oublier de faire les mises a jour windows lorsqu elles sont disponibles, cela permet de corriger les failles d XP
Pour outlook qui est un logiciel vendu avec le pack microsoft office professionnel dans lequel tu as word, excell, powerpoint il te permet de centraliser tes rendez vous , ton calendrier et aussi de recevoir tous tes messages de toutes tes boites mails . Pour info j'ai resolu ce problème ce matin en découvrant que la fenêtre qui apparaissait tout le temps hier me demandant d'insérer le disque de microsoft professionnel sr1 avait sur une incidence sur le fonctionnement d'outlook, j'ai donc inseré mon disque ce matin et celui ci m'a remis ma messagerie à jour et je peux desormais recevoir mes messages
Tu m en vois ravi et merci pour l info, cela pourra me reservir...
super donc, je te remercie encore pour tout regis, tu as été super mais n'hésites pas à me donner en retour quelques conseils de prévention pour éviter que tout celà recommence ...
En tout cas de rien et si tu as besoin n hesites pas a me demander.
Les conseils de preventions, je te les ai donner au dessu mais si tu veux en avoir d autres, pas de soucis.
De plus, je vois que tu as un pare feu (zone alarm), je te felicite, c est excellent d avoir proteger ton pc !
Pour eviter que cela recommence, je dirais attention lorsque tu telecharge qqchose simplement.regarde bien la source, tes mails idem, si connu tu ouvres, sinon supprimes !
Et ton probleme venait tout simplement du telechargement de msn avec acceptation des sponsors donc la je ne peux pas te prevenir pour pas rechoper ces pubs car c est juste une case a decocher a l installation
a bientot
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
18 nov. 2005 à 11:16
18 nov. 2005 à 11:16
merci pour tout une nouvelle fois , pour ta dispo et ta gentillesse
à bientôt,
Jean Pierre
à bientôt,
Jean Pierre
Utilisateur anonyme
18 nov. 2005 à 13:24
18 nov. 2005 à 13:24
Salut Jean pierre
ce fut un plaisir de te renseigner
si tu as besoin de nouveau, n hesites pas a demander...
a+
ps: pendant que j y pense, tu as fait un point de restauration depuis que tu n as plus de soucis
ce fut un plaisir de te renseigner
si tu as besoin de nouveau, n hesites pas a demander...
a+
ps: pendant que j y pense, tu as fait un point de restauration depuis que tu n as plus de soucis
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
18 nov. 2005 à 18:46
18 nov. 2005 à 18:46
Regis,
J'ai oublié de te demander quand je fais Poste de travail/disque local:C / Documents and settings /Mon compte / Local settings / Temporary internet files, dois-je effacer tous les dossiers qui se trouvent dans temporary internet files parce que j'en ai un paquet?
Merci à toi
J'ai oublié de te demander quand je fais Poste de travail/disque local:C / Documents and settings /Mon compte / Local settings / Temporary internet files, dois-je effacer tous les dossiers qui se trouvent dans temporary internet files parce que j'en ai un paquet?
Merci à toi
Utilisateur anonyme
18 nov. 2005 à 18:52
18 nov. 2005 à 18:52
salut
dans temporay internet files, c est tes traces de surfs
Fais ceci
demarer < panneau de configuration <option internet
onglet general,
supprime cookies + historique + supprimer les fichiers (et la tu ne retrouveras plus la liste)
a+
dans temporay internet files, c est tes traces de surfs
Fais ceci
demarer < panneau de configuration <option internet
onglet general,
supprime cookies + historique + supprimer les fichiers (et la tu ne retrouveras plus la liste)
a+
JPP2
Messages postés
92
Date d'inscription
vendredi 16 septembre 2005
Statut
Membre
Dernière intervention
12 septembre 2006
23 déc. 2005 à 15:09
23 déc. 2005 à 15:09
Regis, j'ai ouvert un nouveau sujet car je n'arrive pas à te joindre après ta réponse sur mon mail direct, mon sujet ordinateur trop lent a été effacé et je ne peux te répondre regardes à " ordinateur trop lent bis " ouvert en fin de matinée,
merci à toi
merci à toi
