Sujet Précédent Sujet Suivant

Virus avec îcone bleu et croix rouge

marcus -  
philae83 Messages postés 12854 Statut Contributeur sécurité -
Bonjour à tous,j'ai une petite îcone a coté de l'heure et elle recemble a un fond bleu avec une croix rouge sur le dessus.Comment m'ent débarasser.Merci
A voir également:

10 réponses

Réponse 1 / 10
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
Bonjour,

* Télécharge HijackThis et poste le rapport stp

http://pchelpbordeaux.free.fr/logiciels.html
Tutorial
http://pchelpbordeaux.free.fr/tuto.html
Démo en image
http://pageperso.aol.fr/balltrap34/demohijack.htm

et

* Télécharge CCleaner.

https://www.pcastuces.com/logitheque/ccleaner.htm

Installe le dans un répertoire dédié.

Décoche pendant l'installation

--- les deux cases "Ajouter l'option ... "

--- Contrôler les mises à jour

--- Ajouter la Barre d'Outils Yahoo! CCleaner

* Lance Ccleaner pour un nettoyage complet.

------

* télécharge AVG Anti-Spyware (ewido)

https://www.avg.com/en-ww/free-antivirus-download

* tu l'installes

* lance AVG Anti-Spyware et clique sur le bouton Mise à jour.<g/ras> Patiente

puis

Lance <gras>AVG Anti-Spyware

Clique sur le bouton Analyse (de la barre d'outils)

Puis sur l'onglets Comment réagir, clique sur Actions recommandées. Sélectionne Quarantaine.

Reviens à l'onglet Analyse. Clique sur Analyse complète du système.

A la fin du scan, choisis l'option 3

"Appliquer toutes les actions " en bas.

Clique sur "Enregistrer le rapport".

Ceci génère un rapport en fichier texte qui se trouve dans le dossier Reports du dossier d'AVG Anti-Spyware.

Poste le.
0
marcus111 Messages postés 18 Statut Membre
 
Logfile of HijackThis v1.99.1
Scan saved at 15:54:25, on 2007-01-20
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\viewport.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\S3apphk.exe
C:\WINDOWS\LTMSG.exe
C:\HP\KBD\KBD.EXE
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon03.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\HPHipm09.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE
C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
C:\program files\steam\steam.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe
C:\DOCUME~1\PROPRI~1\MESDOC~1\RACLE~1\winword.exe
C:\Documents and Settings\Propriétaire\Application Data\s?stem\??rss.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\WiFiConnector\NintendoWFCReg.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Propriétaire\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {F9D8FAF6-614D-1CEF-1731-3AC65E4C31E6} - C:\WINDOWS\system32\nseuj.dll (file missing)
O2 - BHO: (no name) - {000D79F0-9D9F-5B8C-F8DA-05FF96BAE3E1} - C:\WINDOWS\system32\rbqgfam.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1626623F-823D-4DA0-95BF-9EB3A0C5B905} - C:\WINDOWS\system32\ddccy.dll (file missing)
O2 - BHO: (no name) - {46A4E9D9-B30E-452A-8157-DBBEC8573B03} - C:\Program Files\VSAdd-in\VSAdd-in.dll (file missing)
O2 - BHO: (no name) - {4EFA4C62-5E60-4900-A576-03CD3B9EF93E} - C:\WINDOWS\system32\ddcyx.dll (file missing)
O2 - BHO: (no name) - {51B767A2-2953-9AE6-F880-05D619E51511} - C:\WINDOWS\system32\tjgfeyc.dll (file missing)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7DA39570-5FD2-4f18-94B4-20730CB3F727} - C:\WINDOWS\system32\bfhhjswl.dll (file missing)
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: (no name) - {F9D8FAF6-614D-1CEF-1731-3AC65E4C31E6} - C:\WINDOWS\system32\nseuj.dll (file missing)
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &VSAdd-in - {74DD705D-6834-439C-A735-A6DBE2677452} - C:\Program Files\VSAdd-in\VSAdd-in.dll (file missing)
O4 - HKLM\..\Run: [HydraVisionViewport] viewport.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [S3apphk] S3apphk.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [PreloadApp] c:\hp\drivers\printers\photosmart\hphprld.exe c:\hp\drivers\printers\photosmart\setup.exe -d
O4 - HKLM\..\Run: [LTMSG] LTMSG.exe 7
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHmon03] C:\WINDOWS\system32\hphmon03.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [AtiPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DllRunning] rundll32.exe "C:\WINDOWS\system32\llbivyak.dll",setvm
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKCU\..\Run: [E06FXLRD_37730500] "C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKCU\..\Run: [E06FXLRD_81112968] "C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKCU\..\Run: [Heth] "C:\DOCUME~1\PROPRI~1\MESDOC~1\RACLE~1\winword.exe" -vt tzt
O4 - HKCU\..\Run: [Ffos] C:\Documents and Settings\Propriétaire\Application Data\s?stem\??rss.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Lancer l'utilitaire d'enregistrement.lnk = C:\Program Files\WiFiConnector\NintendoWFCReg.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Open Client to Monitor &1 - C:\WINDOWS\web\AOpenClient.htm
O8 - Extra context menu item: Open Client to Monitor &2 - C:\WINDOWS\web\AOpenClient.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
O9 - Extra button: Correcteur - {F7C8E5F6-B6D1-45db-8D91-2BCFA5DF11A9} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote K - IE 6.htm (HKCU)
O9 - Extra button: Dictionnaires - {F9B969E8-58D0-4dd9-AC8A-EE2336FF8F65} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote D - IE 6.htm (HKCU)
O9 - Extra button: Guides - {FA089E36-3F1B-4c51-9A1A-C4E7012483AF} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote G - IE 6.htm (HKCU)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{DEFA7CA4-9548-4E8F-8008-1682310CCCCF}: NameServer = 206.47.244.90 206.47.244.51
O18 - Protocol: bw+0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: ddccy - C:\WINDOWS\system32\ddccy.dll (file missing)
O20 - Winlogon Notify: ddcyx - C:\WINDOWS\system32\ddcyx.dll (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: windnl32 - C:\WINDOWS\SYSTEM32\windnl32.dll
O20 - Winlogon Notify: winjgf32 - winjgf32.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver - HP - C:\WINDOWS\system32\HPHipm09.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
0
Réponse 2 / 10
marcus111 Messages postés 18 Statut Membre
 
Logfile of HijackThis v1.99.1
Scan saved at 15:54:25, on 2007-01-20
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\viewport.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\S3apphk.exe
C:\WINDOWS\LTMSG.exe
C:\HP\KBD\KBD.EXE
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon03.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\HPHipm09.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE
C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
C:\program files\steam\steam.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe
C:\DOCUME~1\PROPRI~1\MESDOC~1\RACLE~1\winword.exe
C:\Documents and Settings\Propriétaire\Application Data\s?stem\??rss.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\WiFiConnector\NintendoWFCReg.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Propriétaire\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {F9D8FAF6-614D-1CEF-1731-3AC65E4C31E6} - C:\WINDOWS\system32\nseuj.dll (file missing)
O2 - BHO: (no name) - {000D79F0-9D9F-5B8C-F8DA-05FF96BAE3E1} - C:\WINDOWS\system32\rbqgfam.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1626623F-823D-4DA0-95BF-9EB3A0C5B905} - C:\WINDOWS\system32\ddccy.dll (file missing)
O2 - BHO: (no name) - {46A4E9D9-B30E-452A-8157-DBBEC8573B03} - C:\Program Files\VSAdd-in\VSAdd-in.dll (file missing)
O2 - BHO: (no name) - {4EFA4C62-5E60-4900-A576-03CD3B9EF93E} - C:\WINDOWS\system32\ddcyx.dll (file missing)
O2 - BHO: (no name) - {51B767A2-2953-9AE6-F880-05D619E51511} - C:\WINDOWS\system32\tjgfeyc.dll (file missing)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7DA39570-5FD2-4f18-94B4-20730CB3F727} - C:\WINDOWS\system32\bfhhjswl.dll (file missing)
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: (no name) - {F9D8FAF6-614D-1CEF-1731-3AC65E4C31E6} - C:\WINDOWS\system32\nseuj.dll (file missing)
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &VSAdd-in - {74DD705D-6834-439C-A735-A6DBE2677452} - C:\Program Files\VSAdd-in\VSAdd-in.dll (file missing)
O4 - HKLM\..\Run: [HydraVisionViewport] viewport.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [S3apphk] S3apphk.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [PreloadApp] c:\hp\drivers\printers\photosmart\hphprld.exe c:\hp\drivers\printers\photosmart\setup.exe -d
O4 - HKLM\..\Run: [LTMSG] LTMSG.exe 7
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHmon03] C:\WINDOWS\system32\hphmon03.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [AtiPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DllRunning] rundll32.exe "C:\WINDOWS\system32\llbivyak.dll",setvm
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKCU\..\Run: [E06FXLRD_37730500] "C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKCU\..\Run: [E06FXLRD_81112968] "C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKCU\..\Run: [Heth] "C:\DOCUME~1\PROPRI~1\MESDOC~1\RACLE~1\winword.exe" -vt tzt
O4 - HKCU\..\Run: [Ffos] C:\Documents and Settings\Propriétaire\Application Data\s?stem\??rss.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Lancer l'utilitaire d'enregistrement.lnk = C:\Program Files\WiFiConnector\NintendoWFCReg.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Open Client to Monitor &1 - C:\WINDOWS\web\AOpenClient.htm
O8 - Extra context menu item: Open Client to Monitor &2 - C:\WINDOWS\web\AOpenClient.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
O9 - Extra button: Correcteur - {F7C8E5F6-B6D1-45db-8D91-2BCFA5DF11A9} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote K - IE 6.htm (HKCU)
O9 - Extra button: Dictionnaires - {F9B969E8-58D0-4dd9-AC8A-EE2336FF8F65} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote D - IE 6.htm (HKCU)
O9 - Extra button: Guides - {FA089E36-3F1B-4c51-9A1A-C4E7012483AF} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote G - IE 6.htm (HKCU)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{DEFA7CA4-9548-4E8F-8008-1682310CCCCF}: NameServer = 206.47.244.90 206.47.244.51
O18 - Protocol: bw+0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: ddccy - C:\WINDOWS\system32\ddccy.dll (file missing)
O20 - Winlogon Notify: ddcyx - C:\WINDOWS\system32\ddcyx.dll (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: windnl32 - C:\WINDOWS\SYSTEM32\windnl32.dll
O20 - Winlogon Notify: winjgf32 - winjgf32.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver - HP - C:\WINDOWS\system32\HPHipm09.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
0
Réponse 3 / 10
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
tu as posté 2 x le rapport Hijackthis
mais j'aimerai voir celui d'AVG stp
0
marcus
 
Bonjour Philea83,je m'excuse du retard car j'ai eu quelque problème avec mon ordi.Voici le raport de AVG.Merci beaucoup de m'aider.


AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 15:27:47 2007-01-21

+ Résultat de l'analyse:



C:\System Volume Information\_restore{F564FDC8-056E-4FB3-8BD9-1CFDA575893F}\RP5\A0000307.dll -> Adware.PurityScan : Nettoyé.
C:\System Volume Information\_restore{F564FDC8-056E-4FB3-8BD9-1CFDA575893F}\RP8\A0005663.dll -> Adware.PurityScan : Nettoyé.
C:\WINDOWS\Temp\idd4CE3.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DD6.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DD9.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DDC.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DDF.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DE2.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DE6.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DE7.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DE8.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DE9.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DEE.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DEF.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DF0.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DF1.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DF2.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DF3.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DF8.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DF9.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DFA.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DFB.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4DFC.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E01.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E02.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E03.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E04.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E05.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E06.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E0B.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E0C.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E0D.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E0E.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E0F.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E14.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E15.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E16.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E17.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E18.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E19.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E1E.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E1F.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E20.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E21.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\idd4E22.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\iddD.tmp.exe -> Dialer.IDialer.m : Nettoyé.
C:\WINDOWS\Temp\win4DD5.tmp.exe -> Dialer.Small : Nettoyé.
C:\WINDOWS\Temp\win4DD8.tmp.exe -> Dialer.Small : Nettoyé.
C:\WINDOWS\Temp\win4DDB.tmp.exe -> Dialer.Small : Nettoyé.
C:\WINDOWS\Temp\win4DDE.tmp.exe -> Dialer.Small : Nettoyé.
C:\WINDOWS\Temp\win4DE1.tmp.exe -> Dialer.Small : Nettoyé.
C:\System Volume Information\_restore{F564FDC8-056E-4FB3-8BD9-1CFDA575893F}\RP8\A0005664.exe -> Downloader.PurityScan.dc : Nettoyé.
:mozilla.115:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Casinotropez : Nettoyé.
:mozilla.116:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Casinotropez : Nettoyé.
:mozilla.116:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Casinotropez : Nettoyé.
:mozilla.116:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Casinotropez : Nettoyé.
:mozilla.116:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Casinotropez : Nettoyé.
:mozilla.105:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Estat : Nettoyé.
:mozilla.106:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Estat : Nettoyé.
:mozilla.106:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Estat : Nettoyé.
:mozilla.106:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Estat : Nettoyé.
:mozilla.106:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Estat : Nettoyé.
:mozilla.13:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.14:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.15:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.15:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.15:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.15:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.15:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.16:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.16:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.16:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.16:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.16:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.17:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.17:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.17:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.17:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.17:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.18:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.18:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.18:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.18:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.19:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.19:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.19:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.19:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.24:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.25:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.26:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.26:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.26:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.26:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.26:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.27:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.27:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.27:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.27:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.27:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.28:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.28:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.28:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.28:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.28:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.29:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.29:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.29:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.29:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.29:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.30:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.30:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.30:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.30:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.30:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.31:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.31:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.31:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.31:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.31:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.32:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.32:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.32:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.32:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.32:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.33:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.33:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.33:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.33:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.33:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.34:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.34:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.34:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.34:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.34:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.35:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.35:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.35:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.35:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.35:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.36:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.36:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.36:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.36:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.36:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.37:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.37:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.37:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.37:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.37:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.38:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.38:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.38:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.38:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.38:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.39:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.39:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.39:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.39:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.39:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.40:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.40:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.40:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.40:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.40:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.41:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.41:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.41:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.41:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.41:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.42:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.42:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.42:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.42:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.42:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.43:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.43:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.43:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.43:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.43:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.44:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.44:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.44:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.44:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.44:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.45:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.45:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.45:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.45:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.45:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.46:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.46:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.46:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.46:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.46:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.47:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.47:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.47:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.47:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.47:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.48:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.48:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.48:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.48:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.48:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.49:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.49:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.49:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.49:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.49:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.50:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.50:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.50:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.50:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.50:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.51:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.51:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.51:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.51:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.51:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.52:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.52:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.52:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.52:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.52:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.53:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.53:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.53:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.53:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.53:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.54:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.54:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.54:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.54:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.54:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.55:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.55:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.55:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.55:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.55:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.56:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.56:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.56:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.56:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.56:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.57:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.57:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.57:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.57:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.57:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.58:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.58:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.58:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.58:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.58:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.59:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.59:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.59:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.59:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.59:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.60:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.60:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.60:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.60:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.60:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.61:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.61:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.61:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.61:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.61:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.62:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.62:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.62:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.62:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.62:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.63:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.63:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.63:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.63:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.63:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.64:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.64:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.64:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.64:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.65:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.65:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.65:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.65:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.108:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Weborama : Nettoyé.
:mozilla.109:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Weborama : Nettoyé.
:mozilla.109:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Weborama : Nettoyé.
:mozilla.109:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Weborama : Nettoyé.
:mozilla.109:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Weborama : Nettoyé.
:mozilla.109:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Weborama : Nettoyé.
:mozilla.110:C:\RECYCLER\NPROTECT\00143521.MOZ -> TrackingCookie.Weborama : Nettoyé.
:mozilla.110:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Weborama : Nettoyé.
:mozilla.110:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Weborama : Nettoyé.
:mozilla.110:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Weborama : Nettoyé.
:mozilla.110:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Weborama : Nettoyé.
:mozilla.111:C:\RECYCLER\NPROTECT\00143527.MOZ -> TrackingCookie.Weborama : Nettoyé.
:mozilla.111:C:\RECYCLER\NPROTECT\00143536.MOZ -> TrackingCookie.Weborama : Nettoyé.
:mozilla.111:C:\RECYCLER\NPROTECT\00143537.MOZ -> TrackingCookie.Weborama : Nettoyé.
:mozilla.111:C:\RECYCLER\NPROTECT\00143538.MOZ -> TrackingCookie.Weborama : Nettoyé.
C:\System Volume Information\_restore{F564FDC8-056E-4FB3-8BD9-1CFDA575893F}\RP7\A0005617.dll -> Trojan.Agent.acl : Nettoyé.
C:\System Volume Information\_restore{F564FDC8-056E-4FB3-8BD9-1CFDA575893F}\RP8\A0007689.dll -> Trojan.Agent.cvt : Nettoyé.
C:\WINDOWS\system32\fccdcab.dll -> Trojan.AutoAff : Nettoyé.
C:\System Volume Information\_restore{F564FDC8-056E-4FB3-8BD9-1CFDA575893F}\RP4\A0000212.exe -> Trojan.Small : Nettoyé.
C:\WINDOWS\system32\wtstr.exe -> Trojan.Small : Nettoyé.
0
Réponse 4 / 10
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
ok

vide ta corbeille et reposte maintenant un nouveau rapport hijackthis
0
marcus
 
Logfile of HijackThis v1.99.1
Scan saved at 15:49:20, on 2007-01-21
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\viewport.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\S3apphk.exe
C:\WINDOWS\LTMSG.exe
C:\HP\KBD\KBD.EXE
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon03.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\HPHipm09.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe
C:\Documents and Settings\Propriétaire\Application Data\s?stem\??rss.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\WiFiConnector\NintendoWFCReg.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
C:\Documents and Settings\Propriétaire\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {F9D8FAF6-614D-1CEF-1731-3AC65E4C31E6} - C:\WINDOWS\system32\nseuj.dll (file missing)
O2 - BHO: (no name) - {000D79F0-9D9F-5B8C-F8DA-05FF96BAE3E1} - C:\WINDOWS\system32\rbqgfam.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1626623F-823D-4DA0-95BF-9EB3A0C5B905} - C:\WINDOWS\system32\ddccy.dll (file missing)
O2 - BHO: (no name) - {46A4E9D9-B30E-452A-8157-DBBEC8573B03} - C:\Program Files\VSAdd-in\VSAdd-in.dll (file missing)
O2 - BHO: (no name) - {4EFA4C62-5E60-4900-A576-03CD3B9EF93E} - C:\WINDOWS\system32\ddcyx.dll (file missing)
O2 - BHO: (no name) - {51B767A2-2953-9AE6-F880-05D619E51511} - C:\WINDOWS\system32\tjgfeyc.dll (file missing)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7DA39570-5FD2-4f18-94B4-20730CB3F727} - C:\WINDOWS\system32\bfhhjswl.dll (file missing)
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: (no name) - {F9D8FAF6-614D-1CEF-1731-3AC65E4C31E6} - C:\WINDOWS\system32\nseuj.dll (file missing)
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &VSAdd-in - {74DD705D-6834-439C-A735-A6DBE2677452} - C:\Program Files\VSAdd-in\VSAdd-in.dll (file missing)
O4 - HKLM\..\Run: [HydraVisionViewport] viewport.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [S3apphk] S3apphk.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [PreloadApp] c:\hp\drivers\printers\photosmart\hphprld.exe c:\hp\drivers\printers\photosmart\setup.exe -d
O4 - HKLM\..\Run: [LTMSG] LTMSG.exe 7
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHmon03] C:\WINDOWS\system32\hphmon03.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [AtiPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DllRunning] rundll32.exe "C:\WINDOWS\system32\llbivyak.dll",setvm
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [E06FXLRD_37730500] "C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKCU\..\Run: [E06FXLRD_81112968] "C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKCU\..\Run: [Heth] "C:\DOCUME~1\PROPRI~1\MESDOC~1\RACLE~1\winword.exe" -vt tzt
O4 - HKCU\..\Run: [Ffos] C:\Documents and Settings\Propriétaire\Application Data\s?stem\??rss.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Lancer l'utilitaire d'enregistrement.lnk = C:\Program Files\WiFiConnector\NintendoWFCReg.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Open Client to Monitor &1 - C:\WINDOWS\web\AOpenClient.htm
O8 - Extra context menu item: Open Client to Monitor &2 - C:\WINDOWS\web\AOpenClient.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
O9 - Extra button: Correcteur - {F7C8E5F6-B6D1-45db-8D91-2BCFA5DF11A9} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote K - IE 6.htm (HKCU)
O9 - Extra button: Dictionnaires - {F9B969E8-58D0-4dd9-AC8A-EE2336FF8F65} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote D - IE 6.htm (HKCU)
O9 - Extra button: Guides - {FA089E36-3F1B-4c51-9A1A-C4E7012483AF} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote G - IE 6.htm (HKCU)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{DEFA7CA4-9548-4E8F-8008-1682310CCCCF}: NameServer = 206.47.244.90 206.47.244.51
O18 - Protocol: bw+0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: ddccy - C:\WINDOWS\system32\ddccy.dll (file missing)
O20 - Winlogon Notify: ddcyx - C:\WINDOWS\system32\ddcyx.dll (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: windnl32 - windnl32.dll (file missing)
O20 - Winlogon Notify: winjgf32 - winjgf32.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver - HP - C:\WINDOWS\system32\HPHipm09.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 10
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
merci,

* lance Hijackthis et coche :

R3 - URLSearchHook: (no name) - {F9D8FAF6-614D-1CEF-1731-3AC65E4C31E6} - C:\WINDOWS\system32\nseuj.dll (file missing)
O2 - BHO: (no name) - {000D79F0-9D9F-5B8C-F8DA-05FF96BAE3E1} - C:\WINDOWS\system32\rbqgfam.dll (file missing)
O2 - BHO: (no name) - {1626623F-823D-4DA0-95BF-9EB3A0C5B905} - C:\WINDOWS\system32\ddccy.dll (file missing)
O2 - BHO: (no name) - {46A4E9D9-B30E-452A-8157-DBBEC8573B03} - C:\Program Files\VSAdd-in\VSAdd-in.dll (file missing)
O2 - BHO: (no name) - {4EFA4C62-5E60-4900-A576-03CD3B9EF93E} - C:\WINDOWS\system32\ddcyx.dll (file missing)
O2 - BHO: (no name) - {51B767A2-2953-9AE6-F880-05D619E51511} - C:\WINDOWS\system32\tjgfeyc.dll (file missing)
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: (no name) - {7DA39570-5FD2-4f18-94B4-20730CB3F727} - C:\WINDOWS\system32\bfhhjswl.dll (file missing)
O2 - BHO: (no name) - {F9D8FAF6-614D-1CEF-1731-3AC65E4C31E6} - C:\WINDOWS\system32\nseuj.dll (file missing)
O3 - Toolbar: &VSAdd-in - {74DD705D-6834-439C-A735-A6DBE2677452} - C:\Program Files\VSAdd-in\VSAdd-in.dll (file missing)
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [S3apphk] S3apphk.exe
4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DllRunning] rundll32.exe "C:\WINDOWS\system32\llbivyak.dll",setvm
O4 - HKCU\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe sauf si tu connais gestionnaire antidote
O4 - HKCU\..\Run: [Heth] "C:\DOCUME~1\PROPRI~1\MESDOC~1\RACLE~1\winword.exe" -vt tzt
O4 - HKCU\..\Run: [Ffos] C:\Documents and Settings\Propriétaire\Application Data\s?stem\??rss.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O18 - Protocol: bw+0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {64BA6EE4-E02C-43CF-9ADE-ECA958F2F8AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: ddccy - C:\WINDOWS\system32\ddccy.dll (file missing)
O20 - Winlogon Notify: ddcyx - C:\WINDOWS\system32\ddcyx.dll (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: windnl32 - windnl32.dll (file missing)
O20 - Winlogon Notify: winjgf32 - winjgf32.dll (file missing)

puis clique sur fix checked ou fixer objet

puis

* Assure toi d'avoir accès à tous les fichiers

-démarrer

-poste de travail ou autre dossier

-menu outils

-options de dossier

-onglet affichage

puis

- activer la case : Afficher les fichiers et dossiers cachés

- désactiver la case : Masquer les extensions des fichiers dont le type est connu

- désactiver la case : Masquer les fichier protégés du système d'exploitation

Puis - Appliquer

* et Supprime le(s) fichier(s) ci dessous si il(s) est (sont) présent(s) :

C:\WINDOWS\system32\windnl32.dll
C:\WINDOWS\system32\winjgf32.dll
C:\WINDOWS\system32\ddccy.dll
C:\WINDOWS\system32\ddcyx.dll
C:\WINDOWS\system32\nseuj.dll
C:\WINDOWS\system32\rbqgfam.dll
C:\WINDOWS\system32\ddccy.dll
C:\WINDOWS\system32\ddcyx.dll
C:\WINDOWS\system32\tjgfeyc.dll
C:\WINDOWS\system32\bfhhjswl.dll
C:\WINDOWS\system32\nseuj.dll
C:\Program Files\VSAdd-in
C:\WINDOWS\system32\llbivyak.dll
C:\DOCUMENTS & SETTINGS\PROPRIETAIRE\MESDOCUMENTS\RACLE~1\winword.exe" -vt tzt
C:\Documents and Settings\Propriétaire\Application Data\s?stem

* Dans l'Explorateur Windows recache les fichiers système afin de ne pas faire d'erreur à l'avenir. Retourne à la fenêtre Paramètres de dossiers et sélectionne Ne pas afficher les fichiers cachés ou les fichiers système

* vide ta corbeille

* relance AVG pour un scan complet, et poste le rapport d'avg ainsi qu'un nouveau rapport hijackthis
0
Réponse 6 / 10
marcus111 Messages postés 18 Statut Membre
 
Bonjour Philea83,

--------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 22:58:28 2007-01-21

+ Résultat de l'analyse:

C:\Documents and Settings\Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\5SPJIJWN\!update-4295[1].0000 -> Downloader.PurityScan.co : Nettoyé.
C:\Documents and Settings\Propriétaire\Mes documents\Οracle\winword.exe -> Downloader.PurityScan.dx : Nettoyé.
C:\DVDMovie\ls_sf50build117_fixed.zip/patch.exe -> Not-A-Virus.VirTool.Win32.AvSpoffer.a : Nettoyé.
:mozilla.46:C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\e8tggfzc.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.47:C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\e8tggfzc.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.48:C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\e8tggfzc.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.49:C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\e8tggfzc.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.50:C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\e8tggfzc.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.51:C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\e8tggfzc.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.52:C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\e8tggfzc.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.53:C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\e8tggfzc.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.135:C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\e8tggfzc.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.127:C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\e8tggfzc.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.128:C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\e8tggfzc.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\System Volume Information\_restore{F564FDC8-056E-4FB3-8BD9-1CFDA575893F}\RP8\A0007707.dll -> Trojan.AutoAff : Nettoyé.
C:\System Volume Information\_restore{F564FDC8-056E-4FB3-8BD9-1CFDA575893F}\RP8\A0007706.exe -> Trojan.Small : Nettoyé.

Fin du rapport
0
Réponse 7 / 10
marcus111 Messages postés 18 Statut Membre
 
Logfile of HijackThis v1.99.1
Scan saved at 23:04:54, on 2007-01-21
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\viewport.exe
C:\WINDOWS\LTMSG.exe
C:\HP\KBD\KBD.EXE
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon03.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\HPHipm09.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE
C:\Documents and Settings\Propriétaire\Application Data\s?stem\??rss.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\WiFiConnector\NintendoWFCReg.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
C:\Program Files\Steam\steam.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Propriétaire\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7DA39570-5FD2-4f18-94B4-20730CB3F727} - C:\WINDOWS\system32\bfhhjswl.dll (file missing)
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: (no name) - {F9D8FAF6-614D-1CEF-1731-3AC65E4C31E6} - C:\WINDOWS\system32\nseuj.dll (file missing)
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [HydraVisionViewport] viewport.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [PreloadApp] c:\hp\drivers\printers\photosmart\hphprld.exe c:\hp\drivers\printers\photosmart\setup.exe -d
O4 - HKLM\..\Run: [LTMSG] LTMSG.exe 7
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHmon03] C:\WINDOWS\system32\hphmon03.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [AtiPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [E06FXLRD_37730500] "C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [E06FXLRD_81112968] "C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Lancer l'utilitaire d'enregistrement.lnk = C:\Program Files\WiFiConnector\NintendoWFCReg.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Open Client to Monitor &1 - C:\WINDOWS\web\AOpenClient.htm
O8 - Extra context menu item: Open Client to Monitor &2 - C:\WINDOWS\web\AOpenClient.htm
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Correcteur - {F7C8E5F6-B6D1-45db-8D91-2BCFA5DF11A9} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote K - IE 6.htm (HKCU)
O9 - Extra button: Dictionnaires - {F9B969E8-58D0-4dd9-AC8A-EE2336FF8F65} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote D - IE 6.htm (HKCU)
O9 - Extra button: Guides - {FA089E36-3F1B-4c51-9A1A-C4E7012483AF} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote G - IE 6.htm (HKCU)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{DEFA7CA4-9548-4E8F-8008-1682310CCCCF}: NameServer = 206.47.244.90 206.47.244.51
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver - HP - C:\WINDOWS\system32\HPHipm09.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
0
Réponse 8 / 10
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
bonjour,

* lance hijackthis coche et fixe :

O2 - BHO: (no name) - {7DA39570-5FD2-4f18-94B4-20730CB3F727} -C:\WINDOWS\system32\bfhhjswl.dll (file missing)
O2 - BHO: (no name) - {F9D8FAF6-614D-1CEF-1731-3AC65E4C31E6} - C:\WINDOWS\system32\nseuj.dll (file missing)

puis en affichant les fichiers et dossiers cachés, recherche et supprime

C:\WINDOWS\system32\bfhhjswl.dll
C:\WINDOWS\system32\nseuj.dll

reposte un nouveau rapport HJT
0
marcus111 Messages postés 18 Statut Membre
 
Bonjour Philea83,si tu as une minute j'aimerais que tu jetes un oeil sur le dernier HJT.Un GROS merci.Bonne journée.
0
Réponse 9 / 10
marcus111 Messages postés 18 Statut Membre
 
Bonjour Philea83,merci encore de m'aider,voici le rapport:

Logfile of HijackThis v1.99.1
Scan saved at 19:22:11, on 2007-01-22
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\viewport.exe
C:\WINDOWS\LTMSG.exe
C:\HP\KBD\KBD.EXE
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon03.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\WINDOWS\system32\HPHipm09.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\WiFiConnector\NintendoWFCReg.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Propriétaire\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [HydraVisionViewport] viewport.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [PreloadApp] c:\hp\drivers\printers\photosmart\hphprld.exe c:\hp\drivers\printers\photosmart\setup.exe -d
O4 - HKLM\..\Run: [LTMSG] LTMSG.exe 7
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHmon03] C:\WINDOWS\system32\hphmon03.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [AtiPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [E06FXLRD_37730500] "C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [E06FXLRD_81112968] "C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Lancer l'utilitaire d'enregistrement.lnk = C:\Program Files\WiFiConnector\NintendoWFCReg.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Open Client to Monitor &1 - C:\WINDOWS\web\AOpenClient.htm
O8 - Extra context menu item: Open Client to Monitor &2 - C:\WINDOWS\web\AOpenClient.htm
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Correcteur - {F7C8E5F6-B6D1-45db-8D91-2BCFA5DF11A9} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote K - IE 6.htm (HKCU)
O9 - Extra button: Dictionnaires - {F9B969E8-58D0-4dd9-AC8A-EE2336FF8F65} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote D - IE 6.htm (HKCU)
O9 - Extra button: Guides - {FA089E36-3F1B-4c51-9A1A-C4E7012483AF} - C:\PROGRA~1\Druide\Antidote\Internet Explorer\6\Antidote G - IE 6.htm (HKCU)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{DEFA7CA4-9548-4E8F-8008-1682310CCCCF}: NameServer = 206.47.244.90 206.47.244.51
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver - HP - C:\WINDOWS\system32\HPHipm09.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
0
Réponse 10 / 10
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
bonjour,

le rapport est ok. As tu encore des soucis ?
0

Discussions similaires

PIX
plart -
jordane45 -

1 réponse
A quoi correspond cette croix sur snapchat
Sbnet -
Doucesensible -

8 réponses
smyley rectangulaire
lolly -
Aranud87 -

2 réponses
Savoir si je suis bloqué par une personne sur snap chat
Jkl33 -
Vii -

10 réponses
que signifie les petits rectangles blancs à la fin de mes sms ?
krystina1207 -
Arman -

6 réponses