[Virus] Msclt.exe, comment s'en débarasser?
Fermé
Ratfe
-
^^Marie^^ Messages postés 126523 Date d'inscription Statut Membre Dernière intervention -
^^Marie^^ Messages postés 126523 Date d'inscription Statut Membre Dernière intervention -
Bonjour
Depuis hier soir, lorsque je fait ctrl+alt+del et que je regarde le gestionnaire de taches, j'ai un "Msclt.exe" que je n'ai encore jamais vu. J'ai cherché a savoir c'est quoi mais je n'ai rien trouvé.
J'utilise windows xp.
Quelqu'un peut-il m'aider s'il vous plait
Depuis hier soir, lorsque je fait ctrl+alt+del et que je regarde le gestionnaire de taches, j'ai un "Msclt.exe" que je n'ai encore jamais vu. J'ai cherché a savoir c'est quoi mais je n'ai rien trouvé.
J'utilise windows xp.
Quelqu'un peut-il m'aider s'il vous plait
A voir également:
- [Virus] Msclt.exe, comment s'en débarasser?
- Virus mcafee - Accueil - Piratage
- Virus facebook demande d'amis - Accueil - Facebook
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
5 réponses
Bonjour,
Fais ceci :
https://www.commentcamarche.net/faq/2490-supprimer-les-adwares-publicites-intempestives-pop-up-etc
N'oublie pas de coller les 3 rapports
A++
Fais ceci :
https://www.commentcamarche.net/faq/2490-supprimer-les-adwares-publicites-intempestives-pop-up-etc
N'oublie pas de coller les 3 rapports
A++
Raport Ewido:
---------------------------------------------------------
ewido anti-malware - Rapport de scan
---------------------------------------------------------
+ Créé le: 17:52:12, 13/05/2006
+ Somme de contrôle: 9CEE9456
+ Résultats du scan:
HKLM\SOFTWARE\Classes\CLSID\{A17B153F-2267-4161-A165-73DCD6C31BEF} -> Adware.Generic : Nettoyer et sauvegarder
HKLM\SYSTEM\CurrentControlSet\Services\delprot -> Adware.iSearch : Nettoyer et sauvegarder
HKLM\SYSTEM\CurrentControlSet\Services\delprot\Security -> Adware.iSearch : Nettoyer et sauvegarder
HKLM\SYSTEM\CurrentControlSet\Services\delprot\Enum -> Adware.iSearch : Nettoyer et sauvegarder
C:\4.dat -> Trojan.Small.bb : Nettoyer et sauvegarder
C:\Documents and Settings\All Users\Documents\bmsvc32.exe -> Backdoor.Agobot : Nettoyer et sauvegarder
C:\Documents and Settings\All Users\Documents\msinstl.exe -> Trojan.Zapchast : Nettoyer et sauvegarder
C:\Documents and Settings\All Users\Documents\msnmsgr.exe -> Backdoor.Agobot.uc : Nettoyer et sauvegarder
C:\Documents and Settings\All Users\Documents\NortonAntiVirus.exe -> Backdoor.Agobot.nq : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Application Data\ctro.exe -> Adware.PurityScan : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@ad.adition[2].txt -> TrackingCookie.Adition : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@ad1.clickhype[1].txt -> TrackingCookie.Clickhype : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@ads.realcastmedia[2].txt -> TrackingCookie.Realcastmedia : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@as.casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@axa.addcontrol[1].txt -> TrackingCookie.Addcontrol : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@billboard-mysimon.com[1].txt -> TrackingCookie.Com : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@burstnet[2].txt -> TrackingCookie.Burstnet : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@c.enhance[1].txt -> TrackingCookie.Enhance : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@cnn.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@com[2].txt -> TrackingCookie.Com : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@data3.perf.overture[1].txt -> TrackingCookie.Overture : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@e-2dj6wfkocpd5ebq.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@e-2dj6wfl4apdpecp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@e-2dj6wjlywjcpabp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@gde.adocean[2].txt -> TrackingCookie.Adocean : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@goodyear.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@image.masterstats[1].txt -> TrackingCookie.Masterstats : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@ivwbox[1].txt -> TrackingCookie.Ivwbox : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@kmpads[1].txt -> TrackingCookie.Kmpads : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@komtrack[2].txt -> TrackingCookie.Komtrack : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@max.i12[2].txt -> TrackingCookie.I12 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@metacafe.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@microsofteup.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@oewabox[1].txt -> TrackingCookie.Oewabox : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@paypopup[1].txt -> TrackingCookie.Paypopup : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@ppms.popularix[2].txt -> TrackingCookie.Popularix : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@premiumtv.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@redcats.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@rotator.adjuggler[1].txt -> TrackingCookie.Adjuggler : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@server3.web-stat[1].txt -> TrackingCookie.Web-stat : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@tacoda[1].txt -> TrackingCookie.Tacoda : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@www.burstbeacon[1].txt -> TrackingCookie.Burstbeacon : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@yadro[2].txt -> TrackingCookie.Yadro : Nettoyer et sauvegarder
C:\Program Files\ICOO Loader\addons\crack22.exe -> Downloader.Small.aqt : Nettoyer et sauvegarder
C:\WINDOWS\NDNuninstall7_14.exe -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\WINDOWS\system32\oszan.dll -> Adware.PurityScan : Nettoyer et sauvegarder
C:\WINDOWS\system32\P2ECOM.dll -> Trojan.P2E.r : Nettoyer et sauvegarder
C:\WINDOWS\system32\rk.bin -> Adware.RK : Nettoyer et sauvegarder
::Fin du rapport
Raport BitDefender:
BitDefender Online Scanner
Scan report generated at: Sat, May 13, 2006 - 19:22:52
Scan path: A:\;C:\;D:\;E:\;
Statistics
Time
01:29:45
Files
398772
Folders
7592
Boot Sectors
2
Archives
2642
Packed Files
33373
Results
Identified Viruses
5
Infected Files
11
Suspect Files
0
Warnings
0
Disinfected
3
Deleted Files
8
Engines Info
Virus Definitions
374597
Engine build
AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)
Scan plugins
13
Archive plugins
40
Unpack plugins
4
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Eamon-Eamon - Fuck It.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Ebru Gündes - 05 - Yanar Döner Geceler.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Ege - 06-Evlilik Yaramamis Sana.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\ekinleryenib.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Elena-PopStar Türkiye-Elena - Neler Oluyor Bize.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Elephant Man - Jook Gal.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Eminem - Like Toy Soldiers.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Eminem - Mockingbird.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Eminem -Ass Like That.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Eminem Is Back-Eminem-(01) Eminem - Hellbound.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Eminem-Encore-Eminem - Just Lose It.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Emre Altug - Bu Kadar mi.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Emre Altug-Sicak-Emre Altug - Sicak.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Eser-PopStar Türkiye-Eser - Bebegim.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Evanescence -Fallen (Retail) -Evanescence - going_under-rns.omg
Clean
C:\Documents and Settings\All Users\Documents\Ma musique\winiso\winiso key gen.exe
Infected with: Win32.Gael.3666
C:\Documents and Settings\All Users\Documents\Ma musique\winiso\winiso key gen.exe
Disinfected
C:\Documents and Settings\All Users\Documents\Ma musique\winiso\WINISO53.EXE
Infected with: Win32.Gael.3666
C:\Documents and Settings\All Users\Documents\Ma musique\winiso\WINISO53.EXE
Disinfected
C:\Documents and Settings\All Users\Documents\uninstall.exe
Infected with: Win32.Gael.3666
C:\Documents and Settings\All Users\Documents\uninstall.exe
Disinfected
C:\Documents and Settings\fatih\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\ar3.jar-6e37709f-27da68ce.zip=>Beyond.class
Infected with: Java.Trojan.ClassLoader.K
C:\Documents and Settings\fatih\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\ar3.jar-6e37709f-27da68ce.zip=>Beyond.class
Disinfection failed
C:\Documents and Settings\fatih\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\ar3.jar-6e37709f-27da68ce.zip=>Beyond.class
Deleted
C:\Documents and Settings\fatih\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\ar3.jar-6e37709f-27da68ce.zip
Updated
C:\Program Files\ewido anti-malware\Quarantine\fil065E4440.dat=>(gzip)
Infected with: Win32.Gael.3666
C:\Program Files\ewido anti-malware\Quarantine\fil065E4440.dat=>(gzip)
Disinfection failed
C:\Program Files\ewido anti-malware\Quarantine\fil065E4440.dat=>(gzip)
Deleted
C:\Program Files\ewido anti-malware\Quarantine\fil065E4440.dat
Update failed
C:\Program Files\ewido anti-malware\Quarantine\fil26C3DDE4.dat=>(gzip)
Infected with: Win32.Gael.3666
C:\Program Files\ewido anti-malware\Quarantine\fil26C3DDE4.dat=>(gzip)
Disinfection failed
C:\Program Files\ewido anti-malware\Quarantine\fil26C3DDE4.dat=>(gzip)
Deleted
C:\Program Files\ewido anti-malware\Quarantine\fil26C3DDE4.dat
Update failed
C:\Program Files\ewido anti-malware\Quarantine\fil96910871.dat=>(gzip)
Infected with: Win32.Gael.3666
C:\Program Files\ewido anti-malware\Quarantine\fil96910871.dat=>(gzip)
Disinfection failed
C:\Program Files\ewido anti-malware\Quarantine\fil96910871.dat=>(gzip)
Deleted
C:\Program Files\ewido anti-malware\Quarantine\fil96910871.dat
Update failed
C:\Program Files\ewido anti-malware\Quarantine\fil9C3B0131.dat=>(gzip)
Infected with: Win32.Gael.3666
C:\Program Files\ewido anti-malware\Quarantine\fil9C3B0131.dat=>(gzip)
Disinfection failed
C:\Program Files\ewido anti-malware\Quarantine\fil9C3B0131.dat=>(gzip)
Deleted
C:\Program Files\ewido anti-malware\Quarantine\fil9C3B0131.dat
Update failed
C:\System Volume Information\_restore{F283705D-02D7-4ACB-AA05-327FA9FEB813}\RP441\A0113505.exe
Infected with: Trojan.Purityad.M
C:\System Volume Information\_restore{F283705D-02D7-4ACB-AA05-327FA9FEB813}\RP441\A0113505.exe
Disinfection failed
C:\System Volume Information\_restore{F283705D-02D7-4ACB-AA05-327FA9FEB813}\RP441\A0113505.exe
Deleted
C:\System Volume Information\_restore{F283705D-02D7-4ACB-AA05-327FA9FEB813}\RP441\A0113509.dll
Infected with: Trojan.P2e.R
C:\System Volume Information\_restore{F283705D-02D7-4ACB-AA05-327FA9FEB813}\RP441\A0113509.dll
Disinfection failed
C:\System Volume Information\_restore{F283705D-02D7-4ACB-AA05-327FA9FEB813}\RP441\A0113509.dll
Deleted
C:\WINDOWS\system32\msclt.exe
Infected with: Trojan.Qhosts.Q
C:\WINDOWS\system32\msclt.exe
Disinfection failed
C:\WINDOWS\system32\msclt.exe
Deleted
Raport Hijackthis:
Logfile of HijackThis v1.99.1
Scan saved at 21:58:37, on 13/05/2006
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.exe
C:\Program Files\Messenger Plus! 3\MsgPlus.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\PROGRA~1\NORTON~1\NORTON~2\GHOSTS~2.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\fatih\Bureau\HijackThis.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = ;localhost
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: Shell=Explorer.exe msclt.exe
O1 - Hosts: 225.57.94.141 avp.com
O1 - Hosts: 63.247.72.2 ca.com
O1 - Hosts: 49.183.185.133 customer.symantec.com
O1 - Hosts: 142.44.198.210 dispatch.mcafee.com
O1 - Hosts: 116.90.254.214 download.mcafee.com
O1 - Hosts: 136.176.42.251 downloads1.kaspersky-labs.com
O1 - Hosts: 19.223.66.41 downloads2.kaspersky-labs.com
O1 - Hosts: 183.69.111.79 downloads3.kaspersky-labs.com
O1 - Hosts: 247.34.227.246 downloads4.kaspersky-labs.com
O1 - Hosts: 194.233.91.30 downloads-eu1.kaspersky-labs.com
O1 - Hosts: 25.105.168.96 downloads-eu2.kaspersky-labs.com
O1 - Hosts: 67.144.15.55 downloads-eu3.kaspersky-labs.com
O1 - Hosts: 0.15.211.75 downloads-eu4.kaspersky-labs.com
O1 - Hosts: 26.45.180.170 downloads-us1.kaspersky-labs.com
O1 - Hosts: 116.242.211.84 downloads-us2.kaspersky-labs.com
O1 - Hosts: 91.21.171.232 downloads-us3.kaspersky-labs.com
O1 - Hosts: 47.191.137.13 downloads-us4.kaspersky-labs.com
O1 - Hosts: 72.166.88.164 f-secure.com
O1 - Hosts: 149.128.11.142 ftp.avp.com
O1 - Hosts: 91.203.118.12 ftp.ca.com
O1 - Hosts: 147.133.8.91 ftp.customer.symantec.com
O1 - Hosts: 223.189.1.86 ftp.dispatch.mcafee.com
O1 - Hosts: 122.22.186.139 ftp.download.mcafee.com
O1 - Hosts: 160.43.38.153 ftp.downloads1.kaspersky-labs.com
O1 - Hosts: 240.247.99.209 ftp.downloads2.kaspersky-labs.com
O1 - Hosts: 157.158.80.110 ftp.downloads3.kaspersky-labs.com
O1 - Hosts: 125.192.211.72 ftp.downloads4.kaspersky-labs.com
O1 - Hosts: 219.187.61.112 ftp.downloads-eu1.kaspersky-labs.com
O1 - Hosts: 16.253.147.148 ftp.downloads-eu2.kaspersky-labs.com
O1 - Hosts: 57.205.160.131 ftp.downloads-eu3.kaspersky-labs.com
O1 - Hosts: 170.40.13.211 ftp.downloads-eu4.kaspersky-labs.com
O1 - Hosts: 95.34.224.104 ftp.downloads-us1.kaspersky-labs.com
O1 - Hosts: 144.229.72.95 ftp.downloads-us2.kaspersky-labs.com
O1 - Hosts: 180.182.213.171 ftp.downloads-us3.kaspersky-labs.com
O1 - Hosts: 9.33.188.91 ftp.downloads-us4.kaspersky-labs.com
O1 - Hosts: 111.51.166.217 ftp.f-secure.com
O1 - Hosts: 54.108.175.153 ftp.grisoft.com
O1 - Hosts: 170.187.42.137 ftp.kaspersky.com
O1 - Hosts: 241.185.35.67 ftp.kaspersky-labs.com
O1 - Hosts: 19.5.99.53 ftp.liveupdate.symantec.com
O1 - Hosts: 63.87.210.97 ftp.liveupdate.symantecliveupdate.com
O1 - Hosts: 33.71.129.222 ftp.mast.mcafee.com
O1 - Hosts: 86.77.64.170 ftp.mcafee.com
O1 - Hosts: 99.248.251.14 ftp.my-etrust.com
O1 - Hosts: 45.250.89.159 ftp.nai.com
O1 - Hosts: 216.90.182.150 ftp.networkassociates.com
O1 - Hosts: 157.16.29.5 ftp.norton.com
O1 - Hosts: 219.83.183.48 ftp.rads.mcafee.com
O1 - Hosts: 152.207.225.151 ftp.sandbox.norman.com
O1 - Hosts: 29.30.238.221 ftp.secure.nai.com
O1 - Hosts: 231.36.159.167 ftp.securityresponse.symantec.com
O1 - Hosts: 43.197.139.42 ftp.sophos.com
O1 - Hosts: 127.4.207.115 ftp.symantec.com
O1 - Hosts: 144.241.227.44 ftp.symantecliveupdate.com
O1 - Hosts: 99.38.91.88 ftp.symatec.com
O1 - Hosts: 254.2.236.224 ftp.trendmicro.com
O1 - Hosts: 23.133.154.215 ftp.uk.trendmicro-europe.com
O1 - Hosts: 131.251.188.85 ftp.update.symantec.com
O1 - Hosts: 32.186.95.222 ftp.updates.symantec.com
O1 - Hosts: 90.72.35.157 ftp.updates1.kaspersky-labs.com
O1 - Hosts: 154.25.27.240 ftp.updates2.kaspersky-labs.com
O1 - Hosts: 64.188.83.156 ftp.updates3.kaspersky-labs.com
O1 - Hosts: 216.167.133.18 ftp.updates4.kaspersky-labs.com
O1 - Hosts: 225.248.21.159 ftp.us.mcafee.com
O1 - Hosts: 154.227.97.8 ftp.viruslist.com
O1 - Hosts: 87.23.142.66 grisoft.com
O1 - Hosts: 74.215.198.235 kaspersky.com
O1 - Hosts: 44.162.154.44 kaspersky-labs.com
O1 - Hosts: 208.126.2.140 liveupdate.symantec.com
O1 - Hosts: 248.232.171.19 liveupdate.symantecliveupdate.com
O1 - Hosts: 250.118.6.151 mast.mcafee.com
O1 - Hosts: 146.147.199.27 mcafee.com
O1 - Hosts: 233.7.100.166 my-etrust.com
O1 - Hosts: 61.150.141.120 nai.com
O1 - Hosts: 147.119.98.2 networkassociates.com
O1 - Hosts: 254.106.71.108 norton.com
O1 - Hosts: 89.173.146.73 pandasoftware.com
O1 - Hosts: 116.27.21.139 rads.mcafee.com
O1 - Hosts: 168.168.9.102 sandbox.norman.com
O1 - Hosts: 63.35.159.212 secure.nai.com
O1 - Hosts: 171.195.144.194 securityresponse.symantec.com
O1 - Hosts: 252.152.228.158 sophos.com
O1 - Hosts: 142.71.129.227 symantec.com
O1 - Hosts: 210.169.9.204 symantecliveupdate.com
O1 - Hosts: 207.209.31.69 symatec.com
O1 - Hosts: 12.105.188.213 trendmicro.com
O1 - Hosts: 37.136.129.138 uk.trendmicro-europe.com
O1 - Hosts: 61.106.58.162 update.symantec.com
O1 - Hosts: 108.159.25.1 updates.symantec.com
O1 - Hosts: 4.46.195.175 updates1.kaspersky-labs.com
O1 - Hosts: 46.45.185.108 updates2.kaspersky-labs.com
O1 - Hosts: 80.222.62.138 updates3.kaspersky-labs.com
O1 - Hosts: 175.203.186.172 updates4.kaspersky-labs.com
O1 - Hosts: 63.222.86.24 us.mcafee.com
O1 - Hosts: 151.18.38.42 viruslist.com
O1 - Hosts: 3.161.59.46 virusscan.jotti.org
O1 - Hosts: 29.86.245.25 virustotal.com
O1 - Hosts: 99.219.220.248 www.avp.com
O1 - Hosts: 205.64.225.8 www.ca.com
O1 - Hosts: 63.251.75.186 www.customer.symantec.com
O1 - Hosts: 221.49.64.65 www.dispatch.mcafee.com
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [Microsoft client for NT] msclt.exe
O4 - HKLM\..\RunServices: [Microsoft client for NT] msclt.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Microsoft client for NT] msclt.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\RunServices: [Microsoft client for NT] msclt.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: ppctlcab - http://ppupdates.ca.com/downloads/scanner/ppctlcab.cab
O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/haphazard/raptisoftgameloader.cab
O16 - DPF: {093F9CF8-0DE1-491C-95D5-5EC257BD4CA3} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {1C955F3B-5B32-4393-A05D-24B4970CD2A1} - http://streamp.babenet.com/cabs/videox.cab
O16 - DPF: {297F2B65-017C-11D5-A128-00D0B7869AD6} (SpectorPhotoUploader Control) - http://photoprint.photohall.be/import/spu.cab
O16 - DPF: {2FF18E20-DE11-11D1-8161-00A0C90DD90C} (MSNBC News Menu Control 3.01) - http://www.ntv.com.tr/download/nm1228.cab
O16 - DPF: {2FF18E30-DE11-11D1-8161-00A0C90DD90C} (MSNBC News Menu Control 3.02) - http://www.ntv.com.tr/download/nm0321.cab
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - https://www.fileplanet.com/
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {4E7BD74F-2B8D-469E-DEF1-F078BD81B93C} - http://www.toolbar.be/actitool.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by18fd.bay18.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {A3009861-330C-4E10-822B-39D16EC8829D} (CRAVOnline Object) - http://www.ravantivirus.com/scan/ravonline.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {C36112BF-2FA3-4694-8603-3B510EA3B465} (Lycos File Upload Component) - http://f002.mail.caramail.lycos.fr/app/uploader/FileUploader.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.yayindayiz.biz/codec/nsvplayx_vp6_mp3.cab
O16 - DPF: {D06A22B4-6087-4D3D-B7AF-82B113E9ABD4} (CPostLaunch Object) - https://www.verizon.com/home/myverizon/
O16 - DPF: {D5FC2094-4B01-4F6C-A07C-E247C9442E5A} (AvatarWeb Control) - http://www.msnplus.co.kr/download/activex/AvatarWeb.cab
O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F551} (Flatcast Viewer 4.15) - http://www.flatcast.com/de/download/NpFv415.dll
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by23fd.bay23.hotmail.msn.com/activex/HMAtchmt.ocx
O16 - DPF: {F5192746-22D6-41BD-9D2D-1E75D14FBD3C} - http://216.65.38.226/crack.CAB
O18 - Protocol: bw+0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WB - C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\fastload.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: GhostStartService - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~2\GHOSTS~2.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
O23 - Service: Power Manager (PowerManager) - Unknown owner - C:\WINDOWS\svchost.exe (file missing)
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
---------------------------------------------------------
ewido anti-malware - Rapport de scan
---------------------------------------------------------
+ Créé le: 17:52:12, 13/05/2006
+ Somme de contrôle: 9CEE9456
+ Résultats du scan:
HKLM\SOFTWARE\Classes\CLSID\{A17B153F-2267-4161-A165-73DCD6C31BEF} -> Adware.Generic : Nettoyer et sauvegarder
HKLM\SYSTEM\CurrentControlSet\Services\delprot -> Adware.iSearch : Nettoyer et sauvegarder
HKLM\SYSTEM\CurrentControlSet\Services\delprot\Security -> Adware.iSearch : Nettoyer et sauvegarder
HKLM\SYSTEM\CurrentControlSet\Services\delprot\Enum -> Adware.iSearch : Nettoyer et sauvegarder
C:\4.dat -> Trojan.Small.bb : Nettoyer et sauvegarder
C:\Documents and Settings\All Users\Documents\bmsvc32.exe -> Backdoor.Agobot : Nettoyer et sauvegarder
C:\Documents and Settings\All Users\Documents\msinstl.exe -> Trojan.Zapchast : Nettoyer et sauvegarder
C:\Documents and Settings\All Users\Documents\msnmsgr.exe -> Backdoor.Agobot.uc : Nettoyer et sauvegarder
C:\Documents and Settings\All Users\Documents\NortonAntiVirus.exe -> Backdoor.Agobot.nq : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Application Data\ctro.exe -> Adware.PurityScan : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@ad.adition[2].txt -> TrackingCookie.Adition : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@ad1.clickhype[1].txt -> TrackingCookie.Clickhype : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@ads.realcastmedia[2].txt -> TrackingCookie.Realcastmedia : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@as.casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@axa.addcontrol[1].txt -> TrackingCookie.Addcontrol : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@billboard-mysimon.com[1].txt -> TrackingCookie.Com : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@burstnet[2].txt -> TrackingCookie.Burstnet : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@c.enhance[1].txt -> TrackingCookie.Enhance : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@cnn.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@com[2].txt -> TrackingCookie.Com : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@data3.perf.overture[1].txt -> TrackingCookie.Overture : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@e-2dj6wfkocpd5ebq.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@e-2dj6wfl4apdpecp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@e-2dj6wjlywjcpabp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@gde.adocean[2].txt -> TrackingCookie.Adocean : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@goodyear.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@image.masterstats[1].txt -> TrackingCookie.Masterstats : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@ivwbox[1].txt -> TrackingCookie.Ivwbox : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@kmpads[1].txt -> TrackingCookie.Kmpads : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@komtrack[2].txt -> TrackingCookie.Komtrack : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@max.i12[2].txt -> TrackingCookie.I12 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@metacafe.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@microsofteup.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@oewabox[1].txt -> TrackingCookie.Oewabox : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@paypopup[1].txt -> TrackingCookie.Paypopup : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@ppms.popularix[2].txt -> TrackingCookie.Popularix : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@premiumtv.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@redcats.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@rotator.adjuggler[1].txt -> TrackingCookie.Adjuggler : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@server3.web-stat[1].txt -> TrackingCookie.Web-stat : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@tacoda[1].txt -> TrackingCookie.Tacoda : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@www.burstbeacon[1].txt -> TrackingCookie.Burstbeacon : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\fatih\Cookies\fatih@yadro[2].txt -> TrackingCookie.Yadro : Nettoyer et sauvegarder
C:\Program Files\ICOO Loader\addons\crack22.exe -> Downloader.Small.aqt : Nettoyer et sauvegarder
C:\WINDOWS\NDNuninstall7_14.exe -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\WINDOWS\system32\oszan.dll -> Adware.PurityScan : Nettoyer et sauvegarder
C:\WINDOWS\system32\P2ECOM.dll -> Trojan.P2E.r : Nettoyer et sauvegarder
C:\WINDOWS\system32\rk.bin -> Adware.RK : Nettoyer et sauvegarder
::Fin du rapport
Raport BitDefender:
BitDefender Online Scanner
Scan report generated at: Sat, May 13, 2006 - 19:22:52
Scan path: A:\;C:\;D:\;E:\;
Statistics
Time
01:29:45
Files
398772
Folders
7592
Boot Sectors
2
Archives
2642
Packed Files
33373
Results
Identified Viruses
5
Infected Files
11
Suspect Files
0
Warnings
0
Disinfected
3
Deleted Files
8
Engines Info
Virus Definitions
374597
Engine build
AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)
Scan plugins
13
Archive plugins
40
Unpack plugins
4
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Eamon-Eamon - Fuck It.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Ebru Gündes - 05 - Yanar Döner Geceler.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Ege - 06-Evlilik Yaramamis Sana.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\ekinleryenib.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Elena-PopStar Türkiye-Elena - Neler Oluyor Bize.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Elephant Man - Jook Gal.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Eminem - Like Toy Soldiers.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Eminem - Mockingbird.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Eminem -Ass Like That.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Eminem Is Back-Eminem-(01) Eminem - Hellbound.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Eminem-Encore-Eminem - Just Lose It.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Emre Altug - Bu Kadar mi.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Emre Altug-Sicak-Emre Altug - Sicak.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Eser-PopStar Türkiye-Eser - Bebegim.omg
Clean
C:\Documents and Settings\All Users\Application Data\Sony Corporation\SonicStage\Packages\Optimized Files\Evanescence -Fallen (Retail) -Evanescence - going_under-rns.omg
Clean
C:\Documents and Settings\All Users\Documents\Ma musique\winiso\winiso key gen.exe
Infected with: Win32.Gael.3666
C:\Documents and Settings\All Users\Documents\Ma musique\winiso\winiso key gen.exe
Disinfected
C:\Documents and Settings\All Users\Documents\Ma musique\winiso\WINISO53.EXE
Infected with: Win32.Gael.3666
C:\Documents and Settings\All Users\Documents\Ma musique\winiso\WINISO53.EXE
Disinfected
C:\Documents and Settings\All Users\Documents\uninstall.exe
Infected with: Win32.Gael.3666
C:\Documents and Settings\All Users\Documents\uninstall.exe
Disinfected
C:\Documents and Settings\fatih\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\ar3.jar-6e37709f-27da68ce.zip=>Beyond.class
Infected with: Java.Trojan.ClassLoader.K
C:\Documents and Settings\fatih\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\ar3.jar-6e37709f-27da68ce.zip=>Beyond.class
Disinfection failed
C:\Documents and Settings\fatih\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\ar3.jar-6e37709f-27da68ce.zip=>Beyond.class
Deleted
C:\Documents and Settings\fatih\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\ar3.jar-6e37709f-27da68ce.zip
Updated
C:\Program Files\ewido anti-malware\Quarantine\fil065E4440.dat=>(gzip)
Infected with: Win32.Gael.3666
C:\Program Files\ewido anti-malware\Quarantine\fil065E4440.dat=>(gzip)
Disinfection failed
C:\Program Files\ewido anti-malware\Quarantine\fil065E4440.dat=>(gzip)
Deleted
C:\Program Files\ewido anti-malware\Quarantine\fil065E4440.dat
Update failed
C:\Program Files\ewido anti-malware\Quarantine\fil26C3DDE4.dat=>(gzip)
Infected with: Win32.Gael.3666
C:\Program Files\ewido anti-malware\Quarantine\fil26C3DDE4.dat=>(gzip)
Disinfection failed
C:\Program Files\ewido anti-malware\Quarantine\fil26C3DDE4.dat=>(gzip)
Deleted
C:\Program Files\ewido anti-malware\Quarantine\fil26C3DDE4.dat
Update failed
C:\Program Files\ewido anti-malware\Quarantine\fil96910871.dat=>(gzip)
Infected with: Win32.Gael.3666
C:\Program Files\ewido anti-malware\Quarantine\fil96910871.dat=>(gzip)
Disinfection failed
C:\Program Files\ewido anti-malware\Quarantine\fil96910871.dat=>(gzip)
Deleted
C:\Program Files\ewido anti-malware\Quarantine\fil96910871.dat
Update failed
C:\Program Files\ewido anti-malware\Quarantine\fil9C3B0131.dat=>(gzip)
Infected with: Win32.Gael.3666
C:\Program Files\ewido anti-malware\Quarantine\fil9C3B0131.dat=>(gzip)
Disinfection failed
C:\Program Files\ewido anti-malware\Quarantine\fil9C3B0131.dat=>(gzip)
Deleted
C:\Program Files\ewido anti-malware\Quarantine\fil9C3B0131.dat
Update failed
C:\System Volume Information\_restore{F283705D-02D7-4ACB-AA05-327FA9FEB813}\RP441\A0113505.exe
Infected with: Trojan.Purityad.M
C:\System Volume Information\_restore{F283705D-02D7-4ACB-AA05-327FA9FEB813}\RP441\A0113505.exe
Disinfection failed
C:\System Volume Information\_restore{F283705D-02D7-4ACB-AA05-327FA9FEB813}\RP441\A0113505.exe
Deleted
C:\System Volume Information\_restore{F283705D-02D7-4ACB-AA05-327FA9FEB813}\RP441\A0113509.dll
Infected with: Trojan.P2e.R
C:\System Volume Information\_restore{F283705D-02D7-4ACB-AA05-327FA9FEB813}\RP441\A0113509.dll
Disinfection failed
C:\System Volume Information\_restore{F283705D-02D7-4ACB-AA05-327FA9FEB813}\RP441\A0113509.dll
Deleted
C:\WINDOWS\system32\msclt.exe
Infected with: Trojan.Qhosts.Q
C:\WINDOWS\system32\msclt.exe
Disinfection failed
C:\WINDOWS\system32\msclt.exe
Deleted
Raport Hijackthis:
Logfile of HijackThis v1.99.1
Scan saved at 21:58:37, on 13/05/2006
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.exe
C:\Program Files\Messenger Plus! 3\MsgPlus.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\PROGRA~1\NORTON~1\NORTON~2\GHOSTS~2.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\fatih\Bureau\HijackThis.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = ;localhost
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: Shell=Explorer.exe msclt.exe
O1 - Hosts: 225.57.94.141 avp.com
O1 - Hosts: 63.247.72.2 ca.com
O1 - Hosts: 49.183.185.133 customer.symantec.com
O1 - Hosts: 142.44.198.210 dispatch.mcafee.com
O1 - Hosts: 116.90.254.214 download.mcafee.com
O1 - Hosts: 136.176.42.251 downloads1.kaspersky-labs.com
O1 - Hosts: 19.223.66.41 downloads2.kaspersky-labs.com
O1 - Hosts: 183.69.111.79 downloads3.kaspersky-labs.com
O1 - Hosts: 247.34.227.246 downloads4.kaspersky-labs.com
O1 - Hosts: 194.233.91.30 downloads-eu1.kaspersky-labs.com
O1 - Hosts: 25.105.168.96 downloads-eu2.kaspersky-labs.com
O1 - Hosts: 67.144.15.55 downloads-eu3.kaspersky-labs.com
O1 - Hosts: 0.15.211.75 downloads-eu4.kaspersky-labs.com
O1 - Hosts: 26.45.180.170 downloads-us1.kaspersky-labs.com
O1 - Hosts: 116.242.211.84 downloads-us2.kaspersky-labs.com
O1 - Hosts: 91.21.171.232 downloads-us3.kaspersky-labs.com
O1 - Hosts: 47.191.137.13 downloads-us4.kaspersky-labs.com
O1 - Hosts: 72.166.88.164 f-secure.com
O1 - Hosts: 149.128.11.142 ftp.avp.com
O1 - Hosts: 91.203.118.12 ftp.ca.com
O1 - Hosts: 147.133.8.91 ftp.customer.symantec.com
O1 - Hosts: 223.189.1.86 ftp.dispatch.mcafee.com
O1 - Hosts: 122.22.186.139 ftp.download.mcafee.com
O1 - Hosts: 160.43.38.153 ftp.downloads1.kaspersky-labs.com
O1 - Hosts: 240.247.99.209 ftp.downloads2.kaspersky-labs.com
O1 - Hosts: 157.158.80.110 ftp.downloads3.kaspersky-labs.com
O1 - Hosts: 125.192.211.72 ftp.downloads4.kaspersky-labs.com
O1 - Hosts: 219.187.61.112 ftp.downloads-eu1.kaspersky-labs.com
O1 - Hosts: 16.253.147.148 ftp.downloads-eu2.kaspersky-labs.com
O1 - Hosts: 57.205.160.131 ftp.downloads-eu3.kaspersky-labs.com
O1 - Hosts: 170.40.13.211 ftp.downloads-eu4.kaspersky-labs.com
O1 - Hosts: 95.34.224.104 ftp.downloads-us1.kaspersky-labs.com
O1 - Hosts: 144.229.72.95 ftp.downloads-us2.kaspersky-labs.com
O1 - Hosts: 180.182.213.171 ftp.downloads-us3.kaspersky-labs.com
O1 - Hosts: 9.33.188.91 ftp.downloads-us4.kaspersky-labs.com
O1 - Hosts: 111.51.166.217 ftp.f-secure.com
O1 - Hosts: 54.108.175.153 ftp.grisoft.com
O1 - Hosts: 170.187.42.137 ftp.kaspersky.com
O1 - Hosts: 241.185.35.67 ftp.kaspersky-labs.com
O1 - Hosts: 19.5.99.53 ftp.liveupdate.symantec.com
O1 - Hosts: 63.87.210.97 ftp.liveupdate.symantecliveupdate.com
O1 - Hosts: 33.71.129.222 ftp.mast.mcafee.com
O1 - Hosts: 86.77.64.170 ftp.mcafee.com
O1 - Hosts: 99.248.251.14 ftp.my-etrust.com
O1 - Hosts: 45.250.89.159 ftp.nai.com
O1 - Hosts: 216.90.182.150 ftp.networkassociates.com
O1 - Hosts: 157.16.29.5 ftp.norton.com
O1 - Hosts: 219.83.183.48 ftp.rads.mcafee.com
O1 - Hosts: 152.207.225.151 ftp.sandbox.norman.com
O1 - Hosts: 29.30.238.221 ftp.secure.nai.com
O1 - Hosts: 231.36.159.167 ftp.securityresponse.symantec.com
O1 - Hosts: 43.197.139.42 ftp.sophos.com
O1 - Hosts: 127.4.207.115 ftp.symantec.com
O1 - Hosts: 144.241.227.44 ftp.symantecliveupdate.com
O1 - Hosts: 99.38.91.88 ftp.symatec.com
O1 - Hosts: 254.2.236.224 ftp.trendmicro.com
O1 - Hosts: 23.133.154.215 ftp.uk.trendmicro-europe.com
O1 - Hosts: 131.251.188.85 ftp.update.symantec.com
O1 - Hosts: 32.186.95.222 ftp.updates.symantec.com
O1 - Hosts: 90.72.35.157 ftp.updates1.kaspersky-labs.com
O1 - Hosts: 154.25.27.240 ftp.updates2.kaspersky-labs.com
O1 - Hosts: 64.188.83.156 ftp.updates3.kaspersky-labs.com
O1 - Hosts: 216.167.133.18 ftp.updates4.kaspersky-labs.com
O1 - Hosts: 225.248.21.159 ftp.us.mcafee.com
O1 - Hosts: 154.227.97.8 ftp.viruslist.com
O1 - Hosts: 87.23.142.66 grisoft.com
O1 - Hosts: 74.215.198.235 kaspersky.com
O1 - Hosts: 44.162.154.44 kaspersky-labs.com
O1 - Hosts: 208.126.2.140 liveupdate.symantec.com
O1 - Hosts: 248.232.171.19 liveupdate.symantecliveupdate.com
O1 - Hosts: 250.118.6.151 mast.mcafee.com
O1 - Hosts: 146.147.199.27 mcafee.com
O1 - Hosts: 233.7.100.166 my-etrust.com
O1 - Hosts: 61.150.141.120 nai.com
O1 - Hosts: 147.119.98.2 networkassociates.com
O1 - Hosts: 254.106.71.108 norton.com
O1 - Hosts: 89.173.146.73 pandasoftware.com
O1 - Hosts: 116.27.21.139 rads.mcafee.com
O1 - Hosts: 168.168.9.102 sandbox.norman.com
O1 - Hosts: 63.35.159.212 secure.nai.com
O1 - Hosts: 171.195.144.194 securityresponse.symantec.com
O1 - Hosts: 252.152.228.158 sophos.com
O1 - Hosts: 142.71.129.227 symantec.com
O1 - Hosts: 210.169.9.204 symantecliveupdate.com
O1 - Hosts: 207.209.31.69 symatec.com
O1 - Hosts: 12.105.188.213 trendmicro.com
O1 - Hosts: 37.136.129.138 uk.trendmicro-europe.com
O1 - Hosts: 61.106.58.162 update.symantec.com
O1 - Hosts: 108.159.25.1 updates.symantec.com
O1 - Hosts: 4.46.195.175 updates1.kaspersky-labs.com
O1 - Hosts: 46.45.185.108 updates2.kaspersky-labs.com
O1 - Hosts: 80.222.62.138 updates3.kaspersky-labs.com
O1 - Hosts: 175.203.186.172 updates4.kaspersky-labs.com
O1 - Hosts: 63.222.86.24 us.mcafee.com
O1 - Hosts: 151.18.38.42 viruslist.com
O1 - Hosts: 3.161.59.46 virusscan.jotti.org
O1 - Hosts: 29.86.245.25 virustotal.com
O1 - Hosts: 99.219.220.248 www.avp.com
O1 - Hosts: 205.64.225.8 www.ca.com
O1 - Hosts: 63.251.75.186 www.customer.symantec.com
O1 - Hosts: 221.49.64.65 www.dispatch.mcafee.com
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [Microsoft client for NT] msclt.exe
O4 - HKLM\..\RunServices: [Microsoft client for NT] msclt.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Microsoft client for NT] msclt.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\RunServices: [Microsoft client for NT] msclt.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: ppctlcab - http://ppupdates.ca.com/downloads/scanner/ppctlcab.cab
O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/haphazard/raptisoftgameloader.cab
O16 - DPF: {093F9CF8-0DE1-491C-95D5-5EC257BD4CA3} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {1C955F3B-5B32-4393-A05D-24B4970CD2A1} - http://streamp.babenet.com/cabs/videox.cab
O16 - DPF: {297F2B65-017C-11D5-A128-00D0B7869AD6} (SpectorPhotoUploader Control) - http://photoprint.photohall.be/import/spu.cab
O16 - DPF: {2FF18E20-DE11-11D1-8161-00A0C90DD90C} (MSNBC News Menu Control 3.01) - http://www.ntv.com.tr/download/nm1228.cab
O16 - DPF: {2FF18E30-DE11-11D1-8161-00A0C90DD90C} (MSNBC News Menu Control 3.02) - http://www.ntv.com.tr/download/nm0321.cab
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - https://www.fileplanet.com/
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {4E7BD74F-2B8D-469E-DEF1-F078BD81B93C} - http://www.toolbar.be/actitool.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by18fd.bay18.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {A3009861-330C-4E10-822B-39D16EC8829D} (CRAVOnline Object) - http://www.ravantivirus.com/scan/ravonline.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {C36112BF-2FA3-4694-8603-3B510EA3B465} (Lycos File Upload Component) - http://f002.mail.caramail.lycos.fr/app/uploader/FileUploader.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.yayindayiz.biz/codec/nsvplayx_vp6_mp3.cab
O16 - DPF: {D06A22B4-6087-4D3D-B7AF-82B113E9ABD4} (CPostLaunch Object) - https://www.verizon.com/home/myverizon/
O16 - DPF: {D5FC2094-4B01-4F6C-A07C-E247C9442E5A} (AvatarWeb Control) - http://www.msnplus.co.kr/download/activex/AvatarWeb.cab
O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F551} (Flatcast Viewer 4.15) - http://www.flatcast.com/de/download/NpFv415.dll
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by23fd.bay23.hotmail.msn.com/activex/HMAtchmt.ocx
O16 - DPF: {F5192746-22D6-41BD-9D2D-1E75D14FBD3C} - http://216.65.38.226/crack.CAB
O18 - Protocol: bw+0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WB - C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\fastload.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: GhostStartService - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~2\GHOSTS~2.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
O23 - Service: Power Manager (PowerManager) - Unknown owner - C:\WINDOWS\svchost.exe (file missing)
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
Salut,
ééébéééé !!! lol
Relance HijackThis : choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked" :
R3 - Default URLSearchHook is missing
O1 - Hosts: 225.57.94.141 avp.com
O1 - Hosts: 63.247.72.2 ca.com
O1 - Hosts: 49.183.185.133 customer.symantec.com
O1 - Hosts: 142.44.198.210 dispatch.mcafee.com
O1 - Hosts: 116.90.254.214 download.mcafee.com
O1 - Hosts: 136.176.42.251 downloads1.kaspersky-labs.com
O1 - Hosts: 19.223.66.41 downloads2.kaspersky-labs.com
O1 - Hosts: 183.69.111.79 downloads3.kaspersky-labs.com
O1 - Hosts: 247.34.227.246 downloads4.kaspersky-labs.com
O1 - Hosts: 194.233.91.30 downloads-eu1.kaspersky-labs.com
O1 - Hosts: 25.105.168.96 downloads-eu2.kaspersky-labs.com
O1 - Hosts: 67.144.15.55 downloads-eu3.kaspersky-labs.com
O1 - Hosts: 0.15.211.75 downloads-eu4.kaspersky-labs.com
O1 - Hosts: 26.45.180.170 downloads-us1.kaspersky-labs.com
O1 - Hosts: 116.242.211.84 downloads-us2.kaspersky-labs.com
O1 - Hosts: 91.21.171.232 downloads-us3.kaspersky-labs.com
O1 - Hosts: 47.191.137.13 downloads-us4.kaspersky-labs.com
O1 - Hosts: 72.166.88.164 f-secure.com
O1 - Hosts: 149.128.11.142 ftp.avp.com
O1 - Hosts: 91.203.118.12 ftp.ca.com
O1 - Hosts: 147.133.8.91 ftp.customer.symantec.com
O1 - Hosts: 223.189.1.86 ftp.dispatch.mcafee.com
O1 - Hosts: 122.22.186.139 ftp.download.mcafee.com
O1 - Hosts: 160.43.38.153 ftp.downloads1.kaspersky-labs.com
O1 - Hosts: 240.247.99.209 ftp.downloads2.kaspersky-labs.com
O1 - Hosts: 157.158.80.110 ftp.downloads3.kaspersky-labs.com
O1 - Hosts: 125.192.211.72 ftp.downloads4.kaspersky-labs.com
O1 - Hosts: 219.187.61.112 ftp.downloads-eu1.kaspersky-labs.com
O1 - Hosts: 16.253.147.148 ftp.downloads-eu2.kaspersky-labs.com
O1 - Hosts: 57.205.160.131 ftp.downloads-eu3.kaspersky-labs.com
O1 - Hosts: 170.40.13.211 ftp.downloads-eu4.kaspersky-labs.com
O1 - Hosts: 95.34.224.104 ftp.downloads-us1.kaspersky-labs.com
O1 - Hosts: 144.229.72.95 ftp.downloads-us2.kaspersky-labs.com
O1 - Hosts: 180.182.213.171 ftp.downloads-us3.kaspersky-labs.com
O1 - Hosts: 9.33.188.91 ftp.downloads-us4.kaspersky-labs.com
O1 - Hosts: 111.51.166.217 ftp.f-secure.com
O1 - Hosts: 54.108.175.153 ftp.grisoft.com
O1 - Hosts: 170.187.42.137 ftp.kaspersky.com
O1 - Hosts: 241.185.35.67 ftp.kaspersky-labs.com
O1 - Hosts: 19.5.99.53 ftp.liveupdate.symantec.com
O1 - Hosts: 63.87.210.97 ftp.liveupdate.symantecliveupdate.com
O1 - Hosts: 33.71.129.222 ftp.mast.mcafee.com
O1 - Hosts: 86.77.64.170 ftp.mcafee.com
O1 - Hosts: 99.248.251.14 ftp.my-etrust.com
O1 - Hosts: 45.250.89.159 ftp.nai.com
O1 - Hosts: 216.90.182.150 ftp.networkassociates.com
O1 - Hosts: 157.16.29.5 ftp.norton.com
O1 - Hosts: 219.83.183.48 ftp.rads.mcafee.com
O1 - Hosts: 152.207.225.151 ftp.sandbox.norman.com
O1 - Hosts: 29.30.238.221 ftp.secure.nai.com
O1 - Hosts: 231.36.159.167 ftp.securityresponse.symantec.com
O1 - Hosts: 43.197.139.42 ftp.sophos.com
O1 - Hosts: 127.4.207.115 ftp.symantec.com
O1 - Hosts: 144.241.227.44 ftp.symantecliveupdate.com
O1 - Hosts: 99.38.91.88 ftp.symatec.com
O1 - Hosts: 254.2.236.224 ftp.trendmicro.com
O1 - Hosts: 23.133.154.215 ftp.uk.trendmicro-europe.com
O1 - Hosts: 131.251.188.85 ftp.update.symantec.com
O1 - Hosts: 32.186.95.222 ftp.updates.symantec.com
O1 - Hosts: 90.72.35.157 ftp.updates1.kaspersky-labs.com
O1 - Hosts: 154.25.27.240 ftp.updates2.kaspersky-labs.com
O1 - Hosts: 64.188.83.156 ftp.updates3.kaspersky-labs.com
O1 - Hosts: 216.167.133.18 ftp.updates4.kaspersky-labs.com
O1 - Hosts: 225.248.21.159 ftp.us.mcafee.com
O1 - Hosts: 154.227.97.8 ftp.viruslist.com
O1 - Hosts: 87.23.142.66 grisoft.com
O1 - Hosts: 74.215.198.235 kaspersky.com
O1 - Hosts: 44.162.154.44 kaspersky-labs.com
O1 - Hosts: 208.126.2.140 liveupdate.symantec.com
O1 - Hosts: 248.232.171.19 liveupdate.symantecliveupdate.com
O1 - Hosts: 250.118.6.151 mast.mcafee.com
O1 - Hosts: 146.147.199.27 mcafee.com
O1 - Hosts: 233.7.100.166 my-etrust.com
O1 - Hosts: 61.150.141.120 nai.com
O1 - Hosts: 147.119.98.2 networkassociates.com
O1 - Hosts: 254.106.71.108 norton.com
O1 - Hosts: 89.173.146.73 pandasoftware.com
O1 - Hosts: 116.27.21.139 rads.mcafee.com
O1 - Hosts: 168.168.9.102 sandbox.norman.com
O1 - Hosts: 63.35.159.212 secure.nai.com
O1 - Hosts: 171.195.144.194 securityresponse.symantec.com
O1 - Hosts: 252.152.228.158 sophos.com
O1 - Hosts: 142.71.129.227 symantec.com
O1 - Hosts: 210.169.9.204 symantecliveupdate.com
O1 - Hosts: 207.209.31.69 symatec.com
O1 - Hosts: 12.105.188.213 trendmicro.com
O1 - Hosts: 37.136.129.138 uk.trendmicro-europe.com
O1 - Hosts: 61.106.58.162 update.symantec.com
O1 - Hosts: 108.159.25.1 updates.symantec.com
O1 - Hosts: 4.46.195.175 updates1.kaspersky-labs.com
O1 - Hosts: 46.45.185.108 updates2.kaspersky-labs.com
O1 - Hosts: 80.222.62.138 updates3.kaspersky-labs.com
O1 - Hosts: 175.203.186.172 updates4.kaspersky-labs.com
O1 - Hosts: 63.222.86.24 us.mcafee.com
O1 - Hosts: 151.18.38.42 viruslist.com
O1 - Hosts: 3.161.59.46 virusscan.jotti.org
O1 - Hosts: 29.86.245.25 virustotal.com
O1 - Hosts: 99.219.220.248 www.avp.com
O1 - Hosts: 205.64.225.8 www.ca.com
O1 - Hosts: 63.251.75.186 www.customer.symantec.com
O1 - Hosts: 221.49.64.65 www.dispatch.mcafee.com
O16 - DPF: ppctlcab - http://ppupdates.ca.com/downloads/scanner/ppctlcab.cab
O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/haphazard/raptisoftgameloader.cab
O16 - DPF: {093F9CF8-0DE1-491C-95D5-5EC257BD4CA3} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {1C955F3B-5B32-4393-A05D-24B4970CD2A1} - http://streamp.babenet.com/cabs/videox.cab
O16 - DPF: {297F2B65-017C-11D5-A128-00D0B7869AD6} (SpectorPhotoUploader Control) - http://photoprint.photohall.be/import/spu.cab
O16 - DPF: {2FF18E20-DE11-11D1-8161-00A0C90DD90C} (MSNBC News Menu Control 3.01) - http://www.ntv.com.tr/download/nm1228.cab
O16 - DPF: {2FF18E30-DE11-11D1-8161-00A0C90DD90C} (MSNBC News Menu Control 3.02) - http://www.ntv.com.tr/download/nm0321.cab
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - https://www.fileplanet.com/
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {4E7BD74F-2B8D-469E-DEF1-F078BD81B93C} - http://www.toolbar.be/actitool.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by18fd.bay18.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {A3009861-330C-4E10-822B-39D16EC8829D} (CRAVOnline Object) - http://www.ravantivirus.com/scan/ravonline.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {C36112BF-2FA3-4694-8603-3B510EA3B465} (Lycos File Upload Component) - http://f002.mail.caramail.lycos.fr/app/uploader/FileUploader.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.yayindayiz.biz/codec/nsvplayx_vp6_mp3.cab
O16 - DPF: {D06A22B4-6087-4D3D-B7AF-82B113E9ABD4} (CPostLaunch Object) - https://www.verizon.com/home/myverizon/
O16 - DPF: {D5FC2094-4B01-4F6C-A07C-E247C9442E5A} (AvatarWeb Control) - http://www.msnplus.co.kr/download/activex/AvatarWeb.cab
O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F551} (Flatcast Viewer 4.15) - http://www.flatcast.com/de/download/NpFv415.dll
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by23fd.bay23.hotmail.msn.com/activex/HMAtchmt.ocx
O16 - DPF: {F5192746-22D6-41BD-9D2D-1E75D14FBD3C} - http://216.65.38.226/crack.CAB
O18 - Protocol: bw+0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Refais un HT
Fais ceci :
Installe ceci :
https://www.clubic.com/telecharger-fiche14492-ccleaner.html
Regarde bien la démo :
http://www.tutopat.com/viewtopic.php?t=305
""¤Relance Ccleaner ,vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis cliques sur "lancer le nettoyage" ""
Fais un scan avec ewido, colle le rapport
http://www.infos-du-net.com/telecharger/Ewido-Anti-Malware.html
A++
ééébéééé !!! lol
Relance HijackThis : choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked" :
R3 - Default URLSearchHook is missing
O1 - Hosts: 225.57.94.141 avp.com
O1 - Hosts: 63.247.72.2 ca.com
O1 - Hosts: 49.183.185.133 customer.symantec.com
O1 - Hosts: 142.44.198.210 dispatch.mcafee.com
O1 - Hosts: 116.90.254.214 download.mcafee.com
O1 - Hosts: 136.176.42.251 downloads1.kaspersky-labs.com
O1 - Hosts: 19.223.66.41 downloads2.kaspersky-labs.com
O1 - Hosts: 183.69.111.79 downloads3.kaspersky-labs.com
O1 - Hosts: 247.34.227.246 downloads4.kaspersky-labs.com
O1 - Hosts: 194.233.91.30 downloads-eu1.kaspersky-labs.com
O1 - Hosts: 25.105.168.96 downloads-eu2.kaspersky-labs.com
O1 - Hosts: 67.144.15.55 downloads-eu3.kaspersky-labs.com
O1 - Hosts: 0.15.211.75 downloads-eu4.kaspersky-labs.com
O1 - Hosts: 26.45.180.170 downloads-us1.kaspersky-labs.com
O1 - Hosts: 116.242.211.84 downloads-us2.kaspersky-labs.com
O1 - Hosts: 91.21.171.232 downloads-us3.kaspersky-labs.com
O1 - Hosts: 47.191.137.13 downloads-us4.kaspersky-labs.com
O1 - Hosts: 72.166.88.164 f-secure.com
O1 - Hosts: 149.128.11.142 ftp.avp.com
O1 - Hosts: 91.203.118.12 ftp.ca.com
O1 - Hosts: 147.133.8.91 ftp.customer.symantec.com
O1 - Hosts: 223.189.1.86 ftp.dispatch.mcafee.com
O1 - Hosts: 122.22.186.139 ftp.download.mcafee.com
O1 - Hosts: 160.43.38.153 ftp.downloads1.kaspersky-labs.com
O1 - Hosts: 240.247.99.209 ftp.downloads2.kaspersky-labs.com
O1 - Hosts: 157.158.80.110 ftp.downloads3.kaspersky-labs.com
O1 - Hosts: 125.192.211.72 ftp.downloads4.kaspersky-labs.com
O1 - Hosts: 219.187.61.112 ftp.downloads-eu1.kaspersky-labs.com
O1 - Hosts: 16.253.147.148 ftp.downloads-eu2.kaspersky-labs.com
O1 - Hosts: 57.205.160.131 ftp.downloads-eu3.kaspersky-labs.com
O1 - Hosts: 170.40.13.211 ftp.downloads-eu4.kaspersky-labs.com
O1 - Hosts: 95.34.224.104 ftp.downloads-us1.kaspersky-labs.com
O1 - Hosts: 144.229.72.95 ftp.downloads-us2.kaspersky-labs.com
O1 - Hosts: 180.182.213.171 ftp.downloads-us3.kaspersky-labs.com
O1 - Hosts: 9.33.188.91 ftp.downloads-us4.kaspersky-labs.com
O1 - Hosts: 111.51.166.217 ftp.f-secure.com
O1 - Hosts: 54.108.175.153 ftp.grisoft.com
O1 - Hosts: 170.187.42.137 ftp.kaspersky.com
O1 - Hosts: 241.185.35.67 ftp.kaspersky-labs.com
O1 - Hosts: 19.5.99.53 ftp.liveupdate.symantec.com
O1 - Hosts: 63.87.210.97 ftp.liveupdate.symantecliveupdate.com
O1 - Hosts: 33.71.129.222 ftp.mast.mcafee.com
O1 - Hosts: 86.77.64.170 ftp.mcafee.com
O1 - Hosts: 99.248.251.14 ftp.my-etrust.com
O1 - Hosts: 45.250.89.159 ftp.nai.com
O1 - Hosts: 216.90.182.150 ftp.networkassociates.com
O1 - Hosts: 157.16.29.5 ftp.norton.com
O1 - Hosts: 219.83.183.48 ftp.rads.mcafee.com
O1 - Hosts: 152.207.225.151 ftp.sandbox.norman.com
O1 - Hosts: 29.30.238.221 ftp.secure.nai.com
O1 - Hosts: 231.36.159.167 ftp.securityresponse.symantec.com
O1 - Hosts: 43.197.139.42 ftp.sophos.com
O1 - Hosts: 127.4.207.115 ftp.symantec.com
O1 - Hosts: 144.241.227.44 ftp.symantecliveupdate.com
O1 - Hosts: 99.38.91.88 ftp.symatec.com
O1 - Hosts: 254.2.236.224 ftp.trendmicro.com
O1 - Hosts: 23.133.154.215 ftp.uk.trendmicro-europe.com
O1 - Hosts: 131.251.188.85 ftp.update.symantec.com
O1 - Hosts: 32.186.95.222 ftp.updates.symantec.com
O1 - Hosts: 90.72.35.157 ftp.updates1.kaspersky-labs.com
O1 - Hosts: 154.25.27.240 ftp.updates2.kaspersky-labs.com
O1 - Hosts: 64.188.83.156 ftp.updates3.kaspersky-labs.com
O1 - Hosts: 216.167.133.18 ftp.updates4.kaspersky-labs.com
O1 - Hosts: 225.248.21.159 ftp.us.mcafee.com
O1 - Hosts: 154.227.97.8 ftp.viruslist.com
O1 - Hosts: 87.23.142.66 grisoft.com
O1 - Hosts: 74.215.198.235 kaspersky.com
O1 - Hosts: 44.162.154.44 kaspersky-labs.com
O1 - Hosts: 208.126.2.140 liveupdate.symantec.com
O1 - Hosts: 248.232.171.19 liveupdate.symantecliveupdate.com
O1 - Hosts: 250.118.6.151 mast.mcafee.com
O1 - Hosts: 146.147.199.27 mcafee.com
O1 - Hosts: 233.7.100.166 my-etrust.com
O1 - Hosts: 61.150.141.120 nai.com
O1 - Hosts: 147.119.98.2 networkassociates.com
O1 - Hosts: 254.106.71.108 norton.com
O1 - Hosts: 89.173.146.73 pandasoftware.com
O1 - Hosts: 116.27.21.139 rads.mcafee.com
O1 - Hosts: 168.168.9.102 sandbox.norman.com
O1 - Hosts: 63.35.159.212 secure.nai.com
O1 - Hosts: 171.195.144.194 securityresponse.symantec.com
O1 - Hosts: 252.152.228.158 sophos.com
O1 - Hosts: 142.71.129.227 symantec.com
O1 - Hosts: 210.169.9.204 symantecliveupdate.com
O1 - Hosts: 207.209.31.69 symatec.com
O1 - Hosts: 12.105.188.213 trendmicro.com
O1 - Hosts: 37.136.129.138 uk.trendmicro-europe.com
O1 - Hosts: 61.106.58.162 update.symantec.com
O1 - Hosts: 108.159.25.1 updates.symantec.com
O1 - Hosts: 4.46.195.175 updates1.kaspersky-labs.com
O1 - Hosts: 46.45.185.108 updates2.kaspersky-labs.com
O1 - Hosts: 80.222.62.138 updates3.kaspersky-labs.com
O1 - Hosts: 175.203.186.172 updates4.kaspersky-labs.com
O1 - Hosts: 63.222.86.24 us.mcafee.com
O1 - Hosts: 151.18.38.42 viruslist.com
O1 - Hosts: 3.161.59.46 virusscan.jotti.org
O1 - Hosts: 29.86.245.25 virustotal.com
O1 - Hosts: 99.219.220.248 www.avp.com
O1 - Hosts: 205.64.225.8 www.ca.com
O1 - Hosts: 63.251.75.186 www.customer.symantec.com
O1 - Hosts: 221.49.64.65 www.dispatch.mcafee.com
O16 - DPF: ppctlcab - http://ppupdates.ca.com/downloads/scanner/ppctlcab.cab
O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/haphazard/raptisoftgameloader.cab
O16 - DPF: {093F9CF8-0DE1-491C-95D5-5EC257BD4CA3} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {1C955F3B-5B32-4393-A05D-24B4970CD2A1} - http://streamp.babenet.com/cabs/videox.cab
O16 - DPF: {297F2B65-017C-11D5-A128-00D0B7869AD6} (SpectorPhotoUploader Control) - http://photoprint.photohall.be/import/spu.cab
O16 - DPF: {2FF18E20-DE11-11D1-8161-00A0C90DD90C} (MSNBC News Menu Control 3.01) - http://www.ntv.com.tr/download/nm1228.cab
O16 - DPF: {2FF18E30-DE11-11D1-8161-00A0C90DD90C} (MSNBC News Menu Control 3.02) - http://www.ntv.com.tr/download/nm0321.cab
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - https://www.cult3d.com/
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - https://www.fileplanet.com/
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {4E7BD74F-2B8D-469E-DEF1-F078BD81B93C} - http://www.toolbar.be/actitool.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by18fd.bay18.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {A3009861-330C-4E10-822B-39D16EC8829D} (CRAVOnline Object) - http://www.ravantivirus.com/scan/ravonline.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {C36112BF-2FA3-4694-8603-3B510EA3B465} (Lycos File Upload Component) - http://f002.mail.caramail.lycos.fr/app/uploader/FileUploader.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.yayindayiz.biz/codec/nsvplayx_vp6_mp3.cab
O16 - DPF: {D06A22B4-6087-4D3D-B7AF-82B113E9ABD4} (CPostLaunch Object) - https://www.verizon.com/home/myverizon/
O16 - DPF: {D5FC2094-4B01-4F6C-A07C-E247C9442E5A} (AvatarWeb Control) - http://www.msnplus.co.kr/download/activex/AvatarWeb.cab
O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F551} (Flatcast Viewer 4.15) - http://www.flatcast.com/de/download/NpFv415.dll
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by23fd.bay23.hotmail.msn.com/activex/HMAtchmt.ocx
O16 - DPF: {F5192746-22D6-41BD-9D2D-1E75D14FBD3C} - http://216.65.38.226/crack.CAB
O18 - Protocol: bw+0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {34D1F71E-CE3B-4C50-8514-50A94D38EC5A} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Refais un HT
Fais ceci :
Installe ceci :
https://www.clubic.com/telecharger-fiche14492-ccleaner.html
Regarde bien la démo :
http://www.tutopat.com/viewtopic.php?t=305
""¤Relance Ccleaner ,vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis cliques sur "lancer le nettoyage" ""
Fais un scan avec ewido, colle le rapport
http://www.infos-du-net.com/telecharger/Ewido-Anti-Malware.html
A++
CCleaner est un peu délicat d'utilisation. A ne pas mettre entre toutes les mains. Ou alors il faut y aller "piano piano".
Je conseillerais d'avantage RegCleaner (également en français) mais toujours en faisant gaffe (dés qu'on titille la base de registre meffi!).
Je conseillerais d'avantage RegCleaner (également en français) mais toujours en faisant gaffe (dés qu'on titille la base de registre meffi!).
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
