Bonjour. Je suis nouveau sur le site. Je suis envahi de fenêtres publicitaires intempestives, et après avoir installé navilog1 comme conseillé sur le site, j'ai obtenu un rapport fixnavi que je vous prie d'analyser . Je compte ensuite sur vous pour me guider, afin de supprimer fichiers ou progammes espions. D'avance merci. Search Navipromo version 1.0.7 commencé le 24/03/2007 à 14:11:34,46 !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!! !!! Poster ce rapport sur le forum pour le faire analyser !!! !!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!! Fix lancé depuis D:\Documents and Settings\Marcel\Bureau\navilog1 Mise a jour le 12.03.2007 a 18h00 by IL-MAFIOSO Executé en mode normal *** Recherche Programmes installes *** WebMediaPlayer *** Recherche dossiers dans D:\WINDOWS *** *** Recherche dossiers dans D:\Program Files *** D:\Program Files\WebMediaPlayer trouvé ! *** Recherche dossiers dans D:\Documents and Settings\All Users\Application Data *** *** Recherche dossiers dans D:\Documents and Settings\Marcel\Application Data *** *** Recherche avec BlackLight Engine/F-secure *** BlackLight Engine est un produit de F-secure, pour + d'infos : https://www.f-secure.com/en Fichier(s) caché(s) dans D:\WINDOWS\system32 : d:\WINDOWS\system32\tbgyliwhsv.dat D:\windows\system32\tbgyliwhsv.exe d:\WINDOWS\system32\tbgyliwhsv_nav.dat d:\WINDOWS\system32\tbgyliwhsv_navps.dat Processus caché(s) dans D:\WINDOWS\system32 : D:\windows\system32\tbgyliwhsv.exe *** Recherche fichiers *** D:\WINDOWS\pack.epk trouvé ! D:\WINDOWS\system32\nvs2.inf trouvé ! D:\WINDOWS\prefetch\WEBMEDIAPLAYER.EXE-216E8E59.pf trouvé ! D:\WINDOWS\prefetch\WEBMEDIAPLAYER_SETUP.EXE-121D0EB1.pf trouvé ! D:\WINDOWS\prefetch\INSTALL_WMP.EXE-0E3F30BE.pf trouvé ! *** Recherche cles registre *** Recharche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] Recharche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage] Recherche Clé Magic Control HKEY_CURRENT_USER\Software\Lanconfig trouvé ! HKEY_USERS\S-1-5-21-1202660629-2052111302-725345543-1004\Software\Lanconfig trouvé ! *** Module de recherche complémentaire *** (recherche fichiers spécifiques) 1)Recherche fichiers connus: 2)Recherche Heuristique : * D:\WINDOWS\system32\tbgyliwhsv.dat trouvé ! ** D:\WINDOWS\system32\tbgyliwhsv.dat trouvé ! *** **** D:\WINDOWS\system32\tbgyliwhsv_navps.dat trouvé ! ***** ****** ******* ******** D:\WINDOWS\system32\tbgyliwhsv.exe trouvé ! *** Analyse Terminé le 24/03/2007 à 14:17:02,15 ***

Analyse d'un rapport "fixnavi" [Résolu]

Réponse 1 / 9

Regis59 Messages postés 21143 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 322

Salut

¤Démarre en mode sans échec :
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
(Si F8 ne marche pas utilise la touche F5).

Double clique sur navilog1.bat
Laisses-toi guider. Au menu principal, choisis 2 et valides.
indique mode de nettoyage "automatique"
Laisses toi guider et réponds aux questions éventuelles
Ton bureau va disparaitre, c'est normal.
Patientes jusqu'au message :
*** Nettoyage Termine le ..... ***
Appuies sur une touche comme demandé, le blocnote va s'ouvrir.
Sauvegardes le rapport de manière à le retrouver
Refermes le blocnote. Ton bureau va réapparaitre
Redémarres normalement et copies-colles l'intégralité dans une réponse.
Le rapport est en outre sauvegardé à la racine du disque (cleannavi.txt)

PS:Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Cliques en haut à gauche sur fichiers et choisis "exécuter"
Tapes explorer et valides. Celà te fera apparaitre ton bureau

MARBOU86 Messages postés 8 Statut Membre

Bonjour et merci de ton aide !
comme demandé voici la copie du rapport à la suite de l'opération :

Clean Navipromo version 1.0.7 commencé le 26/03/2007 à 16:07:57,95

Fix lancé depuis D:\Documents and Settings\Marcel\Bureau\navilog1
Mise a jour le 12.03.2007 a 18h00 by IL-MAFIOSO

Executé en mode sans echec

Mode suppression automatique avec prise en charge résultats Blacklight

*** Creation backups fichiers scan Blbeta ***

Copie vers "D:\Documents and Settings\Marcel\Bureau\navilog1\Backupnavi"

*** Suppression des fichiers trouvés avec Blbeta ***

d:\WINDOWS\system32\tbgyliwhsv.dat supprimé !
D:\windows\system32\tbgyliwhsv.exe supprimé !
d:\WINDOWS\system32\tbgyliwhsv_nav.dat supprimé !
d:\WINDOWS\system32\tbgyliwhsv_navps.dat supprimé !

** 2ème passage **

D:\WINDOWS\system32\tbgyliwhsv.exe absent !
D:\WINDOWS\system32\tbgyliwhsv.dat absent !
D:\WINDOWS\system32\tbgyliwhsv_nav.dat absent !
D:\WINDOWS\system32\tbgyliwhsv_navps.dat absent !
D:\WINDOWS\system32\tbgyliwhsv_navup.dat absent !
D:\WINDOWS\system32\tbgyliwhsv_navtmp.dat absent !
D:\WINDOWS\system32\tbgyliwhsv_m2s.xml absent !

D:\WINDOWS\prefetch\tbgyliwhsv*.pf trouvé !
Copie D:\WINDOWS\prefetch\tbgyliwhsv*.pf réalisé avec succès !
D:\WINDOWS\prefetch\tbgyliwhsv*.pf supprimé !

*** Suppression dossiers dans D:\WINDOWS ***

*** Suppression dossiers dans D:\Program Files ***

D:\Program Files\WebMediaPlayer ...suppression...
D:\Program Files\WebMediaPlayer supprimé !

*** Suppression dossiers dans D:\Documents and Settings\All Users\Application Data ***

*** Suppression dossiers dans D:\Documents and Settings\Marcel\Application Data ***

*** Suppression fichiers ***

D:\Documents and Settings\Marcel\Bureau\WebMediaPlayer.lnk supprimé !
D:\WINDOWS\pack.epk supprimé !
D:\WINDOWS\system32\nvs2.inf supprimé !

*** Suppression fichiers temporaires ***

Nettoyage contenu D:\WINDOWS\Temp effectué !
Nettoyage contenu D:\Documents and Settings\Marcel\Local Settings\Temp effectué !

*** Sauvegarde du registre vers dossier Backupnavi***

sauvegarde du registre réalisée avec succès !

*** Nettoyage registre ***

Nettoyage registre Ok

*** Traitement Recherche complémentaire ***

1)Recherche fichiers connus:

2)Recherche et Suppression Heuristique :

*
**
***
****
*****
******
*******
********

*** Nettoyage termine le 26/03/2007 à 16:09:00,43 ***

Réponse 2 / 9

Regis59 Messages postés 21143 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 322

Salut

Ou en sont tes soucis?

A+

MARBOU86 Messages postés 8 Statut Membre

Salut !
Je constate une certaine amélioration, c'est à dire des apparitions moins fréquentes, mais il y en a encore qq. unes. C'est moins énervant, mais c'est encore là de temps en temps.
En tout cas merci de ton intêret

Réponse 3 / 9

Regis59 Messages postés 21143 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 322

Salut

D'accord;

télécharge HijackThis ici:
http://telechargement.zebulon.fr/138-hijackthis-1991.html

Dézippe le dans un dossier prévu à cet effet.
Par exemple C:\hijackthis < Enregistre le bien dans c : !
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/Hijenr.gif

Lance le puis:
clique sur "do a system scan and save logfile" (cf démo)
faire un copier coller du log entier sur le forum

Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htm

Bon courage

A+

MARBOU86 Messages postés 8 Statut Membre

Bonjour et surtout merci de l'intérêt que tu montres à mes petits soucis. Voici la copie du rapport demandé :
Logfile of HijackThis v1.99.1
Scan saved at 15:26:34, on 29/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\SOUNDMAN.EXE
D:\Program Files\HP\HP Software Update\HPWuSchd2.exe
D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb11.exe
D:\Program Files\HP\hpcoretech\hpcmpmgr.exe
D:\WINDOWS\system32\hphmon06.exe
D:\Program Files\Eset\nod32kui.exe
D:\Program Files\QuickTime\qttask.exe
D:\Program Files\MSN Messenger\MsnMsgr.Exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
D:\Program Files\Internet Explorer\IEXPLORE.EXE
d:\progra~1\intern~1\iexplore.exe
D:\PROGRA~1\INCRED~1\bin\IMApp.exe
D:\Program Files\Eset\nod32krn.exe
D:\WINDOWS\system32\nvsvc32.exe
D:\WINDOWS\system32\HPZipm12.exe
D:\Program Files\SiteAdvisor\6028\SAService.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\MSN Messenger\usnsvc.exe
D:\Program Files\Internet Explorer\IEXPLORE.EXE
D:\WINDOWS\system32\wuauclt.exe
D:\Program Files\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Download Manager Browser Helper Object - {19C8E43B-07B3-49CB-BFFC-6777B593E6F8} - D:\PROGRA~1\FICHIE~1\fluxDVD\DOWNLO~1\XEBDLH~1.DLL
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - D:\WINDOWS\system32\BhoECart.dll
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - D:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - d:\program files\google\googletoolbar3.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - D:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - D:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - d:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [HP Software Update] D:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb11.exe
O4 - HKLM\..\Run: [HPHUPD06] D:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HP Component Manager] "D:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HPHmon06] D:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [nod32kui] "D:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [OPTIONBURNMULTIREMOTE] D:\Documents and Settings\All Users\Application Data\TEAMNEWOPTIONBURN\bash curb.exe
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ImInstaller_Magentic] D:\DOCUME~1\Marcel\LOCALS~1\Temp\ImInstaller\Magentic\magentic_install.exe -startup -product Magentic
O4 - HKLM\..\Run: [zzz_ImInstaller_Magentic] D:\DOCUME~1\Marcel\LOCALS~1\Temp\ImInstaller\Magentic\magentic_install.exe -startup -product Magentic
O4 - HKCU\..\Run: [MsnMsgr] "D:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [IncrediMail] D:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [namemail] D:\DOCUME~1\Marcel\APPLIC~1\ONLINE~1\meet global.exe
O4 - HKCU\..\Run: [swg] D:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Philips Intelligent Agent] "D:\Program Files\Philips Intelligent Agent\Philips Intelligent Agent.exe" /SILENT
O8 - Extra context menu item: &Windows Live Search - res://D:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O15 - Trusted Zone: *.canalplay.com
O15 - Trusted Zone: *.canalplusactive.com
O15 - Trusted Zone: http://ww7.search-torrent.com
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase9602.cab
O16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - http://www.fnacmusic.com/telechargementFnacmusic/FnacComposant.cab
O18 - Protocol: bw+0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - D:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O18 - Filter: text/html - (no CLSID) - (no file)
O20 - Winlogon Notify: WgaLogon - D:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Google Updater Service (gusvc) - Google - D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - D:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe (file missing)
O23 - Service: NBService - Nero AG - D:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - D:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - D:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - D:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Service CANALPLAY - Canal+ Active - D:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
O23 - Service: SiteAdvisor Service - McAfee, Inc. - D:\Program Files\SiteAdvisor\6028\SAService.exe

Réponse 4 / 9

Regis59 Messages postés 21143 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 322

Salut;

Télécharge LopxpMH sur ton Bureau.

http://www.alt-shift-return.org/Info/Fichiers/lopxpMH2.zip

Dézippe-le (clic droit >> Extraire ici) et double clique sur le fichier lopxpMH.bat.

Poste le contenu du rapport qui va s'ouvrir.

A+

MARBOU86 Messages postés 8 Statut Membre

Bonjour,
c'est parti pour le rapport demandé. à+
Rapport lopxpMH2 version 2.0 fait à 9:41:15,40 le 30/03/2007
C:\Logiciels

******************************************
## Répertoires Application Data

Le volume dans le lecteur D n'a pas de nom.
Le numéro de série du volume est 58E2-A2CA

Répertoire de D:\Documents and Settings\All Users\Application Data

30/04/2006 22:51 <REP> .
30/04/2006 22:51 <REP> ..
01/05/2006 00:07 <REP> ACD Systems
28/02/2007 12:01 <REP> Adobe
23/10/2006 11:20 <REP> Ahead
31/05/2006 23:04 <REP> Apple Computer
01/05/2006 16:49 <REP> CyberLink
03/05/2006 22:00 <REP> DVD Shrink
30/10/2006 11:01 <REP> Google
14/01/2007 17:19 <REP> Hewlett-Packard
30/04/2006 22:37 <REP> McAfee
30/04/2006 22:36 <REP> McAfee.com
30/04/2006 22:51 <REP> Microsoft
29/01/2007 11:37 <REP> Microsoft Help
20/12/2006 14:49 <REP> mpDRM
30/01/2007 15:28 <REP> MSScanAppDataDir
27/01/2007 07:47 <REP> Nero
08/05/2006 18:19 <REP> nView_Profiles
13/03/2007 11:04 <REP> Philips Intelligent Agent
14/08/2006 13:51 <REP> Real
13/02/2007 19:03 <REP> SiteAdvisor
01/05/2006 14:06 <REP> Skype
07/01/2007 23:41 <REP> TEAMNEWOPTIONBURN
01/05/2006 00:29 <REP> Windows Genuine Advantage
19/12/2006 09:55 <REP> Windows Live Toolbar
30/04/2006 22:51 62 desktop.ini
30/04/2006 23:21 1 997 hpzinstall.log
2 fichier(s) 2 059 octets
25 Rép(s) 31 094 366 208 octets libres
Le volume dans le lecteur D n'a pas de nom.
Le numéro de série du volume est 58E2-A2CA

Répertoire de D:\Documents and Settings\Default User\Application Data

30/04/2006 22:51 <REP> .
30/04/2006 22:51 <REP> ..
30/04/2006 22:51 <REP> Microsoft
30/04/2006 22:51 62 desktop.ini
1 fichier(s) 62 octets
3 Rép(s) 31 094 366 208 octets libres
Le volume dans le lecteur D n'a pas de nom.
Le numéro de série du volume est 58E2-A2CA

Répertoire de D:\Documents and Settings\Default User\Local Settings\Application Data

30/04/2006 22:51 <REP> .
30/04/2006 22:51 <REP> ..
30/04/2006 21:15 <REP> Microsoft
0 fichier(s) 0 octets
3 Rép(s) 31 094 366 208 octets libres
Le volume dans le lecteur D n'a pas de nom.
Le numéro de série du volume est 58E2-A2CA

Répertoire de D:\Documents and Settings\LocalService\Application Data

30/04/2006 21:18 <REP> .
30/04/2006 21:18 <REP> ..
29/01/2007 19:22 <REP> Google
20/06/2006 16:42 <REP> Macromedia
30/04/2006 21:18 <REP> Microsoft
13/02/2007 19:03 <REP> SiteAdvisor
0 fichier(s) 0 octets
6 Rép(s) 31 094 366 208 octets libres
Le volume dans le lecteur D n'a pas de nom.
Le numéro de série du volume est 58E2-A2CA

Répertoire de D:\Documents and Settings\LocalService\Local Settings\Application Data

30/04/2006 21:18 <REP> .
30/04/2006 21:18 <REP> ..
30/04/2006 21:18 <REP> Microsoft
0 fichier(s) 0 octets
3 Rép(s) 31 094 366 208 octets libres
Le volume dans le lecteur D n'a pas de nom.
Le numéro de série du volume est 58E2-A2CA

Répertoire de D:\Documents and Settings\Marcel\Application Data

30/04/2006 21:32 <REP> .
30/04/2006 21:32 <REP> ..
01/05/2006 00:08 <REP> ACD Systems
01/05/2006 17:25 <REP> Adobe
07/05/2006 18:20 <REP> AdobeUM
30/04/2006 23:52 <REP> Ahead
31/05/2006 23:06 <REP> Apple Computer
13/01/2007 12:13 <REP> BSplayer
09/05/2006 16:07 <REP> CR120TWN
09/05/2006 16:07 <REP> CR330TWN
01/05/2006 15:03 <REP> Creative
26/05/2006 17:50 <REP> Cyberlink
17/12/2006 12:07 <REP> DivX
11/05/2006 07:03 <REP> EoRezo
01/05/2006 22:41 <REP> G-Force
27/06/2006 15:42 <REP> Google
01/05/2006 00:04 <REP> Help
30/04/2006 21:32 <REP> Identities
05/10/2006 16:08 <REP> iPodder
02/10/2006 20:02 <REP> Kazaa Lite
24/03/2007 12:24 <REP> Lavasoft
10/03/2007 14:49 <REP> Logitech
01/05/2006 13:59 <REP> Macromedia
18/06/2006 16:31 <REP> Media Player Classic
30/04/2006 21:32 <REP> Microsoft
17/12/2006 12:04 <REP> Mozilla
06/08/2006 11:15 <REP> Musicmatch
14/11/2006 11:37 <REP> OfficeUpdate12
07/01/2007 23:41 <REP> Online Bat Owns
14/08/2006 13:51 <REP> Real
13/02/2007 19:00 <REP> SiteAdvisor
01/05/2006 14:06 <REP> Skype
20/09/2006 18:57 <REP> Sun
27/08/2006 06:02 <REP> vlc
30/04/2006 21:32 62 desktop.ini
02/05/2006 12:55 7 347 GdiplusUpgrade_MSIApproach_Wrapper.log
2 fichier(s) 7 409 octets
34 Rép(s) 31 094 362 112 octets libres
Le volume dans le lecteur D n'a pas de nom.
Le numéro de série du volume est 58E2-A2CA

Répertoire de D:\Documents and Settings\Marcel\Local Settings\Application Data

30/04/2006 21:32 <REP> .
30/04/2006 21:32 <REP> ..
01/05/2006 00:07 <REP> ACD Systems
01/05/2006 17:25 <REP> Adobe
01/05/2006 00:05 <REP> Ahead
31/05/2006 23:06 <REP> Apple Computer
30/04/2006 23:57 <REP> ApplicationHistory
27/06/2006 15:42 <REP> Google
01/05/2006 00:04 <REP> Help
30/04/2006 23:57 <REP> HP
27/05/2006 17:20 <REP> Identities
01/05/2006 14:49 <REP> IM
30/04/2006 23:57 <REP> IsolatedStorage
31/07/2006 22:05 <REP> Magentic
30/04/2006 21:32 <REP> Microsoft
29/01/2007 11:37 <REP> Microsoft Help
17/12/2006 12:05 <REP> Mozilla
06/08/2006 11:12 <REP> Musicmatch
10/10/2006 11:07 <REP> WMTools Downloaded Files
01/05/2006 00:03 20 992 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
30/04/2006 23:57 129 fusioncache.dat
30/04/2006 23:57 185 000 GDIPFONTCACHEV1.DAT
30/04/2006 21:33 2 111 346 IconCache.db
29/04/2006 16:06 1 548 SCPSS.DLL
29/04/2006 22:04 2 878 scpsv.dll
6 fichier(s) 2 321 893 octets
19 Rép(s) 31 094 362 112 octets libres
Le volume dans le lecteur D n'a pas de nom.
Le numéro de série du volume est 58E2-A2CA

Répertoire de D:\Documents and Settings\NetworkService\Application Data

30/04/2006 21:18 <REP> .
30/04/2006 21:18 <REP> ..
30/04/2006 21:18 <REP> Microsoft
0 fichier(s) 0 octets
3 Rép(s) 31 094 362 112 octets libres
Le volume dans le lecteur D n'a pas de nom.
Le numéro de série du volume est 58E2-A2CA

Répertoire de D:\Documents and Settings\NetworkService\Local Settings\Application Data

30/04/2006 21:18 <REP> .
30/04/2006 21:18 <REP> ..
30/04/2006 21:18 <REP> Microsoft
0 fichier(s) 0 octets
3 Rép(s) 31 094 362 112 octets libres
Le volume dans le lecteur D n'a pas de nom.
Le numéro de série du volume est 58E2-A2CA

Répertoire de D:\WINDOWS\system32\config\systemprofile\Application Data

30/04/2006 21:17 <REP> .
30/04/2006 21:17 <REP> ..
30/04/2006 21:17 <REP> Microsoft
30/04/2006 21:17 62 desktop.ini
1 fichier(s) 62 octets
3 Rép(s) 31 094 358 016 octets libres
Le volume dans le lecteur D n'a pas de nom.
Le numéro de série du volume est 58E2-A2CA

Répertoire de D:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data

30/04/2006 21:17 <REP> .
30/04/2006 21:17 <REP> ..
30/04/2006 21:17 <REP> Microsoft
0 fichier(s) 0 octets
3 Rép(s) 31 094 358 016 octets libres

******************************************
Recherche des taches planifiées dans D:\WINDOWS\tasks

D:\WINDOWS\Tasks\AD92198F91858CEF.job
s "€!× < d : \ d o c u m e ~ 1 \ m a r c e l \ a p p l i c ~ 1 \ o n l i n e ~ 1 \ j u g s b a g s s o f t w a r e . e x e M a r c e l 0 Ï

******************************************
## Répertoires de D:\Program Files

Le volume dans le lecteur D n'a pas de nom.
Le numéro de série du volume est 58E2-A2CA

Répertoire de D:\Program Files

29/03/2007 15:26 <REP> .
29/03/2007 15:26 <REP> ..
01/05/2006 00:07 <REP> ACD Systems
01/05/2006 17:10 <REP> Adobe
06/12/1999 15:46 602 544 atlaslib.dll
16/05/2006 10:32 <REP> AviSynth 2.5
30/04/2006 21:51 <REP> AvRack
05/05/2006 18:11 <REP> BitLord
26/11/2006 07:05 <REP> CCleaner
10/05/2006 23:39 <REP> CDex_150
01/05/2006 15:01 <REP> Creative
01/05/2006 16:49 <REP> CyberLink
01/05/2006 16:49 <REP> CyberLink DVD Solution
23/05/2006 18:42 <REP> Data
28/02/2007 17:47 <REP> DC++
03/03/2007 13:35 <REP> DivX
03/05/2006 22:00 <REP> DVD Shrink
19/10/2006 22:16 <REP> e-Carte Bleue
23/05/2006 18:42 7 192 ehm.ini
22/03/2007 18:52 <REP> Eset
07/10/2006 21:41 <REP> ffdshow
10/03/2007 14:40 <REP> Fichiers communs
23/05/2006 18:32 <REP> files
24/11/2006 19:30 <REP> Fnacmusic
01/02/2007 08:09 <REP> Google
01/05/2006 17:24 <REP> Hachette Multimédia
30/04/2006 23:30 <REP> Hewlett-Packard
16/02/2005 11:06 218 112 HijackThis.exe
29/03/2007 15:26 20 915 hijackthis.log
14/01/2007 17:19 <REP> HP
04/10/2006 16:02 <REP> i-Covers
26/11/2006 09:32 <REP> iFinger
12/05/2006 18:17 <REP> Illustrate
23/11/2006 09:04 <REP> IncrediMail
30/05/2000 10:48 862 720 index.DLL
30/04/2006 21:49 <REP> Intel
17/02/2007 14:55 <REP> Internet Explorer
20/09/2006 18:57 <REP> Java
23/05/2006 18:32 <REP> JRE
05/10/2006 16:43 <REP> Juice
08/03/2007 23:01 <REP> Lavasoft
29/03/2007 23:23 <REP> lbreakout2
06/03/2007 12:20 <REP> Lecteur CANALPLAY
23/05/2006 18:32 <REP> lib
10/07/2001 14:18 7 449 Lisez-moi.wri
10/03/2007 14:41 <REP> Logitech
30/03/2007 09:34 <REP> Magentic
04/02/2007 17:37 <REP> Magic DVD Rip Studio Pro
13/02/2007 19:03 <REP> McAfee
13/02/2007 19:03 <REP> McAfee.com
07/10/2006 21:43 <REP> Media Player Classic
01/05/2006 00:42 <REP> Messenger
09/05/2006 16:48 <REP> Meusesoft
28/02/2007 12:03 <REP> Micro Application
30/04/2006 21:15 <REP> microsoft frontpage
25/03/2007 08:56 <REP> Microsoft Office
29/01/2007 14:56 <REP> Microsoft.NET
26/11/2006 07:38 <REP> Monkey's Audio
30/04/2006 21:13 <REP> Movie Maker
24/03/2007 18:55 <REP> Mozilla Firefox
24/03/2007 00:08 <REP> MSECache
30/04/2006 21:11 <REP> MSN
30/04/2006 21:11 <REP> MSN Gaming Zone
11/02/2007 09:38 <REP> MSN Messenger
19/11/2006 01:36 <REP> MSXML 4.0
10/03/2007 14:42 <REP> Musicmatch
26/09/2006 18:11 <REP> Need2Find
30/04/2006 23:51 <REP> Nero
30/04/2006 21:13 <REP> NetMeeting
12/12/2006 19:25 <REP> neuf telecom
10/03/2007 09:25 <REP> Online Bat Owns
30/04/2006 21:11 <REP> Online Services
14/12/2006 04:02 <REP> Outlook Express
02/05/2006 12:58 <REP> Overland
31/05/2006 23:06 <REP> QuickTime
14/08/2006 13:51 <REP> Real Alternative
30/04/2006 21:51 <REP> Realtek Sound Manager
23/05/2006 18:32 <REP> Resource
10/10/2006 11:17 <REP> Ripp-It Codec Pack
30/10/2006 19:20 <REP> Ripp-it_AM
01/05/2006 09:50 <REP> SereneScreen
30/04/2006 21:14 <REP> Services en ligne
23/05/2006 18:34 15 363 setuplog.txt
01/05/2006 17:48 <REP> Sierra On-Line
13/02/2007 22:39 <REP> SiteAdvisor
01/05/2006 14:06 <REP> Skype
01/05/2006 22:40 <REP> SoundSpectrum
14/10/1999 15:21 20 410 splash.JPG
25/10/2004 18:10 891 972 TMPGEnc.exe
23/05/2006 18:34 13 913 uninstal.log
23/10/2003 17:52 40 960 Uninstall_CDS.exe
27/08/2006 06:00 <REP> VideoLAN
13/01/2007 12:13 <REP> Webteh
10/05/2006 23:47 <REP> Winamp
19/12/2006 09:55 <REP> Windows Live Favorites
06/02/2007 11:51 <REP> Windows Live Safety Center
19/12/2006 09:55 <REP> Windows Live Toolbar
12/12/2006 00:09 <REP> Windows Media Connect 2
12/12/2006 00:09 <REP> Windows Media Player
30/04/2006 21:11 <REP> Windows NT
06/08/2006 11:42 <REP> winLAME
01/05/2006 00:04 <REP> WinRAR
30/04/2006 21:15 <REP> xerox
18/08/1999 16:03 200 704 xflfsm.dll
10/10/2006 11:17 <REP> XviD
25/05/2006 22:57 <REP> Yahoo!
12 fichier(s) 2 902 254 octets
94 Rép(s) 31 094 341 632 octets libres

******************************************
## Popups autorisées

* Internet Explorer

! REG.EXE VERSION 3.0

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow
us.mcafee.com REG_BINARY
www.rtl.fr REG_BINARY
www.neufportail.fr REG_BINARY
assistance.neuf.fr REG_BINARY
dns-look-up.com REG_SZ
www.dns-look-up.com REG_SZ
netsearchsoft.com REG_SZ
www.netsearchsoft.com REG_SZ
netbios-wait.com REG_SZ
www.netbios-wait.com REG_SZ

* Mozilla Firefox (1 autorisé 2 interdit)

---------- D:\DOCUMENTS AND SETTINGS\MARCEL\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\YBC1B2GA.DEFAULT\HOSTPERM.1

******************************************
## Registre

* [HKEY_CURRENT_USER\\Software\Microsoft\Internet Explorer\Main]
Search Bar REG_SZ https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC

* [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
OPTIONBURNMULTIREMOTE REG_SZ D:\Documents and Settings\All Users\Application Data\TEAMNEWOPTIONBURN\bash curb.exe

* [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
namemail REG_SZ D:\DOCUME~1\Marcel\APPLIC~1\ONLINE~1\meet global.exe

******************************************
## Zones de sécurité

* HKCU Domains (4)

* P3P History (5)

******************************************
## Recherche D:\WINDOWS\*.htm, "D:\WINDOWS\*.gif"

*************** Fin du rapport ****************

Réponse 5 / 9

Regis59 Messages postés 21143 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 322

Bonjour,

Imprime, ou enregistre la manip dans un fichier dans le bloc notes pour être sur ne rien oublier et de tout faire dans l'ordre.

1/Telecharge ceci: Clean Up 40:
http://pageperso.aol.fr/balltrap34/CleanUp40.exe
-aide en image:(merci à Balltrap34).
http://pageperso.aol.fr/balltrap34/democleanup.htm

Déconnecte toi d'Internet et ferme tout les programmes en cours.

Redémarre en mode sans échec
Redémarre le pc, laisse passer l'écran du bios, puis tapote sur la touche F8 avant qu'apparaisse l'écran de chargement de windows.
Choisis le mode sans échec dans les options et valide avec entrée.
(Si F8 ne marche pas, essai F5)

Rend visible les fichiers cachés et système
panneau de configuration > options des dossiers > onglet affichage
Cocher la case devant " afficher les fichiers et dossiers cachés "
Décocher la case devant " masquer les extensions des fichiers dont le type est connu"
Décocher la case devant " masquer les fichiers protégés du système"
clic sur [Appliquer] puis sur [ok] pour valider

-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_

Recherche et supprime ces dossiers:

Supprimer les fichiers en suivant le chemin des fichiers infectés si possible, plutot que d'utiliser la fonction "Rechercher"

S'ils sont présents, supprime:

D:\Documents and Settings\Marcel\Application Data\Online Bat Owns

D:\Documents and Settings\All Users\Application Data\TEAMNEWOPTIONBURN

-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_

Ensuite fais Démarrer > exécuter et tape cmd
puis valide avec ok

dans la fenêtre qui va s'ouvrir, copie et colle ceci:

del /a C:\WINDOWS\tasks\AD92198F91858CEF.job

et valide en appuyant sur entrée

-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_

Ensuite, très important:

:: Supprimer les fichiers temporaires ::

Exécute cleanup40.

-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_

Redémarre normalement et reposte un Hijackthis sur le poste…

Précises moi ou en sont tes soucis…

A+

MARBOU86

Bonjour et mille mercis pour ton aide.
J'ai exécuté les tâches prescrites et je précise que lorsque j'ai copié- collé la formule "del a/C: etc etc...", j'ai eu la réponse "chemin d'accés refusé". Mais bon, voilà dix minutes que je suis connecté et pour l'instant, pas de fenêtre intempestive alors que d'habitude... alors touchons du bois ? (même si ce n'est pas très informatique comme procèdé !)
En tout cas voici le rapport demandé et à+ :
Logfile of HijackThis v1.99.1
Scan saved at 18:11:43, on 31/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\SOUNDMAN.EXE
D:\Program Files\HP\HP Software Update\HPWuSchd2.exe
D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb11.exe
D:\Program Files\HP\hpcoretech\hpcmpmgr.exe
D:\WINDOWS\system32\hphmon06.exe
D:\Program Files\Eset\nod32kui.exe
D:\Program Files\MSN Messenger\MsnMsgr.Exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
D:\Program Files\Eset\nod32krn.exe
D:\PROGRA~1\INCRED~1\bin\IMApp.exe
D:\WINDOWS\system32\nvsvc32.exe
D:\WINDOWS\system32\HPZipm12.exe
D:\Program Files\SiteAdvisor\6028\SAService.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\MSN Messenger\usnsvc.exe
D:\Program Files\Internet Explorer\IEXPLORE.EXE
D:\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Download Manager Browser Helper Object - {19C8E43B-07B3-49CB-BFFC-6777B593E6F8} - D:\PROGRA~1\FICHIE~1\fluxDVD\DOWNLO~1\XEBDLH~1.DLL
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - D:\WINDOWS\system32\BhoECart.dll
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - D:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - d:\program files\google\googletoolbar3.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - D:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - D:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - d:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [HP Software Update] D:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb11.exe
O4 - HKLM\..\Run: [HPHUPD06] D:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HP Component Manager] "D:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HPHmon06] D:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [nod32kui] "D:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [OPTIONBURNMULTIREMOTE] D:\Documents and Settings\All Users\Application Data\TEAMNEWOPTIONBURN\bash curb.exe
O4 - HKCU\..\Run: [MsnMsgr] "D:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [IncrediMail] D:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [namemail] D:\DOCUME~1\Marcel\APPLIC~1\ONLINE~1\meet global.exe
O4 - HKCU\..\Run: [swg] D:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O8 - Extra context menu item: &Windows Live Search - res://D:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O15 - Trusted Zone: *.canalplay.com
O15 - Trusted Zone: *.canalplusactive.com
O15 - Trusted Zone: http://ww7.search-torrent.com
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase9602.cab
O16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - http://www.fnacmusic.com/telechargementFnacmusic/FnacComposant.cab
O18 - Protocol: bw+0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - D:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O18 - Filter: text/html - (no CLSID) - (no file)
O20 - Winlogon Notify: WgaLogon - D:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Google Updater Service (gusvc) - Google - D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - D:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe (file missing)
O23 - Service: NBService - Nero AG - D:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - D:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - D:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - D:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Service CANALPLAY - Canal+ Active - D:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
O23 - Service: SiteAdvisor Service - McAfee, Inc. - D:\Program Files\SiteAdvisor\6028\SAService.exe

Réponse 6 / 9

Regis59 Messages postés 21143 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 322

Salut,

¤Relance HijackThis, coche les cases devant ces lignes et ensuite clique sur fix checked :

O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)

O4 - HKLM\..\Run: [OPTIONBURNMULTIREMOTE] D:\Documents and Settings\All Users\Application Data\TEAMNEWOPTIONBURN\bash curb.exe

O4 - HKCU\..\Run: [namemail] D:\DOCUME~1\Marcel\APPLIC~1\ONLINE~1\meet global.exe
----------------------------------------------------------------------------
¤Démarre en mode sans échec :
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
(Si F8 ne marche pas utilise la touche F5).
----------------------------------------------------------------------------
¤Recherche et supprime ceci:
attention seulement les fichiers (si présents).

D:\Documents and Settings\Marcel\Application Data\Online Bat Owns

D:\Documents and Settings\All Users\Application Data\TEAMNEWOPTIONBURN

Redemarre et remet un rapport.

A+

MARBOU86 Messages postés 8 Statut Membre

Bonjour,
voilà le rapport, mais je voulais te signaler que depuis l'avant-dernière opération, je n'ai plus de fenêtre intempestive, mais par contre l'aspect de Windows a complètement changé. La présentation des fenêtres, la taille des icônes et des polices (plus petites)et les couleurs des barres ne sont plus comme "avant". Ca ne me dérange pas mais je te le signale au cas où :
Logfile of HijackThis v1.99.1
Scan saved at 07:16:30, on 01/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\SOUNDMAN.EXE
D:\Program Files\HP\HP Software Update\HPWuSchd2.exe
D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb11.exe
D:\Program Files\HP\hpcoretech\hpcmpmgr.exe
D:\WINDOWS\system32\hphmon06.exe
D:\Program Files\Eset\nod32kui.exe
D:\Program Files\MSN Messenger\MsnMsgr.Exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
D:\PROGRA~1\INCRED~1\bin\IMApp.exe
D:\Program Files\Eset\nod32krn.exe
D:\WINDOWS\system32\nvsvc32.exe
D:\WINDOWS\system32\HPZipm12.exe
D:\Program Files\SiteAdvisor\6028\SAService.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\MSN Messenger\usnsvc.exe
D:\WINDOWS\system32\wuauclt.exe
D:\Program Files\Internet Explorer\IEXPLORE.EXE
D:\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Download Manager Browser Helper Object - {19C8E43B-07B3-49CB-BFFC-6777B593E6F8} - D:\PROGRA~1\FICHIE~1\fluxDVD\DOWNLO~1\XEBDLH~1.DLL
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - D:\WINDOWS\system32\BhoECart.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - D:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - d:\program files\google\googletoolbar3.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - D:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - D:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - d:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [HP Software Update] D:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb11.exe
O4 - HKLM\..\Run: [HPHUPD06] D:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HP Component Manager] "D:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HPHmon06] D:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [nod32kui] "D:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKCU\..\Run: [MsnMsgr] "D:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [IncrediMail] D:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] D:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O8 - Extra context menu item: &Windows Live Search - res://D:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O15 - Trusted Zone: *.canalplay.com
O15 - Trusted Zone: *.canalplusactive.com
O15 - Trusted Zone: http://ww7.search-torrent.com
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase9602.cab
O16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - http://www.fnacmusic.com/telechargementFnacmusic/FnacComposant.cab
O18 - Protocol: bw+0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {6EE0C759-016F-4DB1-A6EE-191223D488C9} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - D:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O18 - Filter: text/html - (no CLSID) - (no file)
O20 - Winlogon Notify: WgaLogon - D:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Google Updater Service (gusvc) - Google - D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - D:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe (file missing)
O23 - Service: NBService - Nero AG - D:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - D:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - D:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - D:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Service CANALPLAY - Canal+ Active - D:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
O23 - Service: SiteAdvisor Service - McAfee, Inc. - D:\Program Files\SiteAdvisor\6028\SAService.exe

Réponse 7 / 9

Regis59 Messages postés 21143 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 322

Salut

ok :)

Remettons ton style XP qui a été supprimé.

télécharge ceci et décompresse le
http://pageperso.aol.fr/Balltrap34/luna.zip

ensuite met le dans C:\WINDOWS\Resources\Themes\Luna
et double clic dessus

Ensuite réessaye de remettre le style xp

Et dis moi ou en sont tes soucis :)

A+

Réponse 8 / 9

MARBOU86 Messages postés 8 Statut Membre

Bonjour et même re-boujour.
J'ai retrouvé mon bureau d'avant les pb. et les fenêtres pub. ont disparu. Bref je suis entièrement satisfait et je ne peux que te remercier mille fois pour ton aide. Je ne peux malheureusement pas te proposer de te renvoyer l'ascenseur, car dans ce domaine je ne crois pas pouvoir t'être d'une quelconque aide mais sois assuré de ma reconaissance sincère.
à + sur le forum.

Réponse 9 / 9

Regis59 Messages postés 21143 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 322

Salut MARBOU

Saches que je suis content pour toi :D

Passe une bonne soirée et pour me remercier, tu n as juste qu'a garder ton PC sain le plus longtemps possible :)

a+

Analyse d'un rapport "fixnavi"

9 réponses

Votre réponse

Discussions similaires

Newsletters