Bonjour, Je viens juste de me rendre compte que mon ordinateur a le virus ci dessus. J'ai acheté le Adware Alert 2008 qui a fait du bon nettoyage mais il y a toujours le message "Your computer was infected by unknown trojan. Click OK to download the antispyware program to clean you system"; premièrement c'est ce que j'ai fait lorsque j'ai vu ce message pour la première fois et ensuite j'ai voulu enlever le "programme" mais c'était impossible. Seulement le Adware a pu le faire MAIS le message est toujours présent lorsque je change de fenêtre sur l'internet. Cet ordinateur était celui de mon frère et je sais qu'il était très lent pendant des mois même si il le nettoyais... Donc je pense que cela était dans l'ordi pendant pas mal de temps. Sinon lorsque j'ai appuyé sur OK la première fois ca me disait le message suivant "Variant of the trojan.Win32.obfuscated.gx (porn adware)". Aucune idée comment ce message est arrivé. Pouvez vous m'aider à résoudre ce problème? P.S Je ne suis pas un expert en ordinateur donc j'aimerai avoir des explications sur les directions à prendre assez simple. Je m'y connais un peu mais pas une grosse tête. Merci beaucoup. Emmanuel Jamin

ok, tu as un truc un truc un peu .....chiant telecharge AVG Anti-spyware Installe le puis... Lancer AVG Anti-Spyware. Cliquer sur le menu Mise à jour. Dans le paragraphe Mise à jour manuelle, cliquer sur le bouton Commencer la mise à jour. Attendre la fin de cette mise à jour Ferme AVG Antispyware * Reglages : Cliquer sur le menu Analyse (de la barre d'outils). Cliquer sur l'onglet Paramètres. Dans Comment réagir? cliquer sur Actions recommandées et choisir Quarantaine. Dans Comment faire l'analyse ? et dans Programmes potentiellement dangereux, vérifier que toutes les cases soient cochées. Vérifier que le bouton-radio Générer un rapport après chaque analyse soit aussi coché. ne lance pas le scan ---------------- (merci malekal) # va dans ajout/suppression de programmes du panneau de configuration # Chercher dans la liste Zango et lance la désinstallation. # Si le programme de désinstallation ne fonctionne pas, télécharge et utilisez celui-ci : http://www.zango.com/Uninstall/ZUninstaller.exe # Télécharge clean.zip, http://www.malekal.com/download/clean.zip décompressez-le sur ton bureau (clic droit / extraire tout), tu auras alors un dossier clean ------------------------------------ Redémarre en mode sans échec (Pour cela : démarrer le PC en tapotant sur la touche F8 du clavier jusqu'à ce que le menu des options avancées de Windows apparaisse puis avec les touches fléchées du clavier, sélectionner Mode sans échec puis appuyer sur la touche Entrée...) Double-clic sur clean. Cela va ouvrir une fenêtre noire. Un menu va apparaître, choisis l'option 2 en appuyant sur la touche 2 de ton clavier. Clean va travailler. Un rapport Va etre généré, envoie le moi dans ta prochaine réponse ! ouvre AVG, et fais un scan # Redémarre l'ordinateur poste les rapports clean, avg, et un hijackthis @suivre

Trojan.win32.obfuscated.gx - Page 4

Résolu

Réponse 61 / 117

emanjamin2002

ComboFix 08-02-15.1 - Choquet 2008-02-15 22:18:25.3 - NTFSx86
Endroit: C:\Documents and Settings\Choquet\Bureau\ComboFix.exe
* Création d'un nouveau point de restauration

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]
.

((((((((((((((((((((((((((((( Fichiers créés 2008-01-15 to 2008-02-15 ))))))))))))))))))))))))))))))))))))
.

2008-02-15 18:32 . 2008-02-15 18:32 <REP> d-------- C:\WINDOWS\ERUNT
2008-02-15 17:49 . 2008-02-15 17:50 <REP> d-------- C:\Program Files\Lopxp
2008-02-15 13:31 . 2008-02-15 13:31 4,967,692 --a------ C:\WINDOWS\system32\Flags of our Fathers.dat
2008-02-15 13:31 . 2008-02-15 13:31 2,859,008 --a------ C:\WINDOWS\system32\Flags of our Fathers.scr
2008-02-15 13:15 . 2008-02-15 13:15 <REP> d-------- C:\Program Files\Football Championship Screensaver
2008-02-15 13:15 . 2006-06-06 20:38 2,623,675 --a------ C:\WINDOWS\system32\Football Championship Screensaver.scr
2008-02-15 13:15 . 2006-06-06 20:45 2,539 --a------ C:\WINDOWS\system32\Football Championship Screensaver.html
2008-02-14 08:36 . 2008-02-14 08:36 197 --a------ C:\WINDOWS\system32\MRT.INI
2008-02-14 01:19 . 2008-02-14 01:19 <REP> d-------- C:\Documents and Settings\Choquet\Application Data\Yahoo!
2008-02-14 01:19 . 2008-02-14 01:19 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2008-02-14 00:50 . 2008-02-14 00:50 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Trymedia
2008-02-14 00:49 . 2008-02-14 00:51 <REP> d-------- C:\Program Files\Yahoo! Games
2008-02-12 20:53 . 2008-02-12 21:00 <REP> d-------- C:\Program Files\ERUNT
2008-02-12 13:47 . 2008-02-12 15:24 <REP> d-------- C:\WINDOWS\BDOSCAN8
2008-02-12 11:08 . 2008-02-12 11:11 <REP> d-------- C:\Documents and Settings\Choquet\Application Data\LinkedIn
2008-02-12 11:07 . 2008-02-12 11:07 <REP> d-------- C:\Program Files\LinkedIn
2008-02-11 11:41 . 2004-12-08 17:27 32,123 --a------ C:\WINDOWS\system32\drivers\Capt905c.sys
2008-02-11 11:41 . 2004-05-07 15:31 24,382 --a------ C:\WINDOWS\system32\drivers\Camd905c.sys
2008-02-11 02:20 . 2008-02-12 14:34 <REP> d-------- C:\Program Files\VirusHeat 3.9
2008-02-11 02:20 . 2008-02-14 08:36 <REP> d-------- C:\Program Files\NetProject
2008-02-10 19:54 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2008-02-10 19:54 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll
2008-02-10 19:54 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-02-10 08:36 . 2003-06-05 21:13 53,248 --a------ C:\WINDOWS\system32\Process.exe
2008-02-10 07:47 . 2008-02-10 07:47 <REP> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-02-09 21:25 . 2008-02-09 21:25 559,965 --a------ C:\Navilog1.exe
2008-02-09 21:24 . 2008-02-10 08:37 <REP> d-------- C:\Program Files\Navilog1
2008-02-09 13:56 . 2008-02-09 14:04 <REP> d--hsc--- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-02-09 13:54 . 2008-02-09 13:54 <REP> d-------- C:\Program Files\Windows Live
2008-02-09 13:54 . 2008-02-09 13:54 <REP> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-02-09 13:50 . 2008-02-09 13:50 <REP> d-------- C:\Program Files\Kiwee Toolbar2
2008-02-09 13:50 . 2008-02-09 13:55 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kiwee Toolbar2
2008-02-09 09:51 . 2008-02-09 10:11 6,280 --a------ C:\WINDOWS\system32\tmp.reg
2008-02-09 09:15 . 2008-02-09 09:15 <REP> d-------- C:\Program Files\Trend Micro
2008-02-09 01:50 . 2008-02-09 23:43 <REP> d-------- C:\Program Files\Enigma Software Group
2008-02-08 21:13 . 2008-02-06 17:45 19,696 --a------ C:\WINDOWS\system32\drivers\adwarealert.sys
2008-02-08 20:47 . 2008-02-11 02:22 <REP> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2008-02-08 20:43 . 2008-02-15 18:57 <REP> d-------- C:\Documents and Settings\Choquet\Application Data\AdwareAlert
2008-02-08 20:42 . 2008-02-15 18:57 <REP> d-------- C:\Program Files\AdwareAlert
2008-02-08 18:54 . 2008-02-08 18:56 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-02-08 18:53 . 2008-02-08 18:53 <REP> d-------- C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-02-08 15:38 . 2008-02-08 15:38 <REP> d-------- C:\Documents and Settings\Choquet\Application Data\Grisoft
2008-02-08 15:38 . 2008-02-08 15:38 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2008-02-08 15:38 . 2007-05-30 13:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-02-08 15:04 . 2008-02-08 15:04 50 --a------ C:\tmp.bat
2008-02-04 16:17 . 2008-02-04 16:17 0 --a------ C:\WINDOWS\graphedit.INI
2008-02-04 16:10 . 2003-05-03 13:01 61,555 --a------ C:\WINDOWS\system32\jpicpl32.cpl
2008-02-04 15:08 . 2003-04-24 02:00 2 ---hs---- C:\desktop.ini
2008-02-04 14:59 . 2008-02-04 14:59 40 --a------ C:\Auth.prof
2008-01-31 15:20 . 2008-01-31 17:47 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-01-31 15:20 . 2008-01-31 15:20 1,409 --a------ C:\WINDOWS\QTFont.for

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-13 23:53 --------- d-----w C:\Documents and Settings\All Users\Application Data\MumboJumbo
2008-02-13 23:52 --------- d-----r C:\Program Files\Yahoo!
2008-02-12 13:31 --------- d-----r C:\Program Files\MSN Messenger
2008-02-12 07:57 --------- d-----w C:\Program Files\Microsoft ActiveSync
2008-02-11 10:41 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-02-10 23:12 --------- d-----r C:\Program Files\Random House, Inc
2008-02-10 23:12 --------- d-----r C:\Program Files\phelios
2008-02-10 23:12 --------- d-----r C:\Program Files\Logitech
2008-02-10 23:12 --------- d-----r C:\Program Files\HPQ
2008-02-10 23:12 --------- d-----r C:\Program Files\HP
2008-02-10 23:12 --------- d-----r C:\Program Files\Google
2008-02-10 23:12 --------- d-----r C:\Program Files\Ganymede
2008-02-10 23:12 --------- d-----r C:\Program Files\Easy Internet signup
2008-02-10 21:18 13,312 --s-a-w C:\WINDOWS\system32\wuuawkz.dll
2008-02-10 21:17 --------- d-----w C:\Program Files\Overland
2008-02-10 00:53 --------- d-----w C:\Program Files\Windows Live Toolbar
2008-02-08 22:11 --------- d-----w C:\Program Files\iTunes
2008-02-08 17:56 --------- d-----w C:\Program Files\Lavasoft
2008-02-08 17:56 --------- d-----w C:\Documents and Settings\Choquet\Application Data\Lavasoft
2008-02-08 15:24 --------- d-----w C:\Program Files\WordBiz
2008-02-08 15:24 --------- d-----w C:\Program Files\Windows Media Connect 2
2008-02-08 15:24 --------- d-----w C:\Program Files\Wanadoo
2008-02-08 15:24 --------- d-----w C:\Program Files\Virtools Web Player 3.5
2008-02-08 15:23 --------- d-----w C:\Program Files\VideoLAN
2008-02-08 15:23 --------- d-----w C:\Program Files\TLI
2008-02-08 15:23 --------- d-----w C:\Program Files\Synaptics
2008-02-08 15:23 --------- d-----w C:\Program Files\Symantec
2008-02-08 15:23 --------- d-----w C:\Program Files\Superball Arcade
2008-02-08 15:23 --------- d-----w C:\Program Files\Star Ball
2008-02-08 15:23 --------- d-----w C:\Program Files\Sony Corporation
2008-02-08 15:23 --------- d-----w C:\Program Files\Sonic
2008-02-08 15:23 --------- d-----w C:\Program Files\Securitoo
2008-02-08 15:23 --------- d-----w C:\Program Files\Redoubt
2008-02-08 15:23 --------- d-----w C:\Program Files\RecordNow!
2008-02-08 15:23 --------- d-----r C:\Program Files\Services en ligne
2008-02-08 15:22 --------- d-----w C:\Program Files\Real
2008-02-08 15:22 --------- d-----w C:\Program Files\QuickTime
2008-02-08 15:22 --------- d-----w C:\Program Files\quickmov
2008-02-08 15:22 --------- d-----w C:\Program Files\PC Camera
2008-02-08 15:22 --------- d-----w C:\Program Files\Norton AntiVirus
2008-02-08 15:22 --------- d-----w C:\Program Files\Neuf
2008-02-08 15:22 --------- d-----w C:\Program Files\NEC
2008-02-08 15:22 --------- d-----w C:\Program Files\Music Mixer 4
2008-02-08 15:22 --------- d-----w C:\Program Files\MSXML 4.0
2008-02-08 15:21 --------- d-----w C:\Program Files\Microsoft Works
2008-02-08 15:20 --------- d-----w C:\Program Files\Microsoft Encarta
2008-02-08 15:20 --------- d-----w C:\Program Files\Micro Application
2008-02-08 15:20 --------- d-----w C:\Program Files\Ludiclub
2008-02-08 15:20 --------- d-----r C:\Program Files\microsoft frontpage
2008-02-08 15:19 --------- d-----w C:\Program Files\K-Lite Codec Pack
2008-02-08 15:19 --------- d-----w C:\Program Files\Java
2008-02-08 15:19 --------- d-----w C:\Program Files\iPod
2008-02-08 15:18 --------- d-----w C:\Program Files\InterVideo
2008-02-08 15:18 --------- d-----w C:\Program Files\InterActual
2008-02-08 15:18 --------- d-----w C:\Program Files\Intel
2008-02-08 15:18 --------- d-----w C:\Program Files\IncrediMail
2008-02-08 15:15 --------- d-----r C:\Program Files\Hits Collection
2008-02-08 15:15 --------- d-----r C:\Program Files\Hewlett-Packard
2008-02-08 15:13 --------- d-----w C:\Program Files\EACOM
2008-02-08 15:13 --------- d-----w C:\Program Files\EA SPORTS
2008-02-08 15:13 --------- d-----w C:\Program Files\DivX
2008-02-08 15:13 --------- d-----w C:\Program Files\Disney Interactive
2008-02-08 15:13 --------- d-----w C:\Program Files\CONEXANT
2008-02-08 15:13 --------- d-----w C:\Program Files\Common Files
2008-02-08 15:12 --------- d-----w C:\Program Files\Canon
2008-02-08 15:12 --------- d-----w C:\Program Files\Bunny Blast Demo
2008-02-08 15:12 --------- d-----w C:\Program Files\Brave Dwarves - Back For Treasures Demo
2008-02-08 15:12 --------- d-----w C:\Program Files\AtomixMP3
2008-02-08 15:12 --------- d-----w C:\Program Files\Arturia
2008-02-08 15:12 --------- d-----w C:\Program Files\Arcade Lines
2008-02-08 15:12 --------- d-----w C:\Program Files\Apple Software Update
2008-02-08 15:12 --------- d-----r C:\Program Files\BongoBoogie
2008-02-08 15:12 --------- d-----r C:\Program Files\BearShare Applications
2008-02-08 15:11 --------- d-----w C:\Program Files\Alwil Software
2008-02-08 15:11 --------- d-----w C:\Program Files\Alawar
2008-02-08 15:11 --------- d-----r C:\Program Files\AirHockey 3D
2008-02-08 15:11 --------- d-----r C:\Program Files\ACE Mega CoDecS Pack
2008-02-08 15:10 --------- d-----w C:\Program Files\Absolutist.com
2008-02-04 15:34 --------- d-----w C:\Program Files\eMule
2008-01-11 05:36 44,544 ------w C:\WINDOWS\system32\dllcache\pngfilt.dll
2008-01-09 14:01 53,248 ----a-w C:\WINDOWS\bdoscandel.exe
2008-01-06 17:58 --------- d-----w C:\Program Files\Fichiers communs\Novell Shared
2007-12-19 22:53 347,136 ------w C:\WINDOWS\system32\dllcache\dxtmsft.dll
2007-12-18 09:51 179,584 ----a-w C:\WINDOWS\system32\drivers\mrxdav.sys
2007-12-18 09:51 179,584 ------w C:\WINDOWS\system32\dllcache\mrxdav.sys
2007-12-14 10:32 12,632 ----a-w C:\WINDOWS\system32\lsdelete.exe
2007-12-08 05:08 3,592,192 ------w C:\WINDOWS\system32\dllcache\mshtml.dll
2007-12-07 02:08 824,832 ----a-w C:\WINDOWS\system32\wininet.dll
2007-12-07 02:08 824,832 ------w C:\WINDOWS\system32\dllcache\wininet.dll
2007-12-07 02:08 671,232 ----a-w C:\WINDOWS\system32\dllcache\mstime.dll
2007-12-07 02:08 63,488 ------w C:\WINDOWS\system32\dllcache\icardie.dll
2007-12-07 02:08 6,066,176 ------w C:\WINDOWS\system32\dllcache\ieframe.dll
2007-12-07 02:08 52,224 ------w C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2007-12-07 02:08 478,208 ------w C:\WINDOWS\system32\dllcache\mshtmled.dll
2007-12-07 02:08 459,264 ------w C:\WINDOWS\system32\dllcache\msfeeds.dll
2007-12-07 02:08 44,544 ----a-w C:\WINDOWS\system32\dllcache\iernonce.dll
2007-12-07 02:08 384,512 ----a-w C:\WINDOWS\system32\dllcache\iedkcs32.dll
2007-12-07 02:08 383,488 ------w C:\WINDOWS\system32\dllcache\ieapfltr.dll
2007-12-07 02:08 27,648 ----a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
2007-12-07 02:08 267,776 ------w C:\WINDOWS\system32\dllcache\iertutil.dll
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6638A9DE-0745-4292-8A2E-AE530E7B9B3F}]
2008-01-24 16:09 248976 --a------ C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{B2847E28-5D7D-4DEB-8B67-05D28BCF79F5}
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}
{2318C2B1-4965-11D4-9B18-009027A5CD4F}
{6638A9DE-0745-4292-8A2E-AE530E7B9B3F}
{EF99BD32-C1FB-11D2-892F-0090271D4F88}

[HKEY_CLASSES_ROOT\clsid\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}]
[HKEY_CLASSES_ROOT\KiweeIEToolbar.KiweeToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{259EEB17-79AA-44DF-8410-8E55F82A902A}]
[HKEY_CLASSES_ROOT\KiweeIEToolbar.KiweeToolbar]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{6638A9DE-0745-4292-8A2E-AE530E7B9B3F}"= C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll [2008-01-24 16:09 248976]

[HKEY_CLASSES_ROOT\clsid\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}]
[HKEY_CLASSES_ROOT\KiweeIEToolbar.KiweeToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{259EEB17-79AA-44DF-8410-8E55F82A902A}]
[HKEY_CLASSES_ROOT\KiweeIEToolbar.KiweeToolbar]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-20 00:09 15360]
"BackupNotify"="C:\Program Files\HP\Digital Imaging\bin\backupnotify.exe" [2004-01-08 19:34 32768]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:55 5674352]
"LDM"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2006-12-14 10:39 36864]
"H/PC Connection Agent"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe" [2006-06-26 20:45 1211176]
"AdwareAlert"="C:\Program Files\AdwareAlert\AdwareAlert.exe" [2008-02-07 19:52 6386928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\WINDOWS\System32\igfxtray.exe" [2003-10-30 09:46 155648]
"HotKeysCmds"="C:\WINDOWS\System32\hkcmd.exe" [2003-10-30 09:33 118784]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [ ]
"UpdateManager"="C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" [2003-08-19 00:01 110592]
"SynTPLpr"="C:\Program Files\Synaptics\SynTP\SynTPLpr.exe" [2004-05-26 18:15 98304]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2004-05-26 18:15 536576]
"CamMonitor"="C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe" [2002-10-06 23:23 90112]
"Share-to-Web Namespace Daemon"="C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe" [2002-04-17 09:42 69632]
"HPHUPD05"="c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe" [ ]
"HPHmon05"="C:\WINDOWS\System32\hphmon05.exe" [2003-05-22 18:56 483328]
"Cpqset"="C:\Program Files\HPQ\Default Settings\cpqset.exe" [2004-04-30 10:32 208958]
"eabconfg.cpl"="C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe" [2004-04-30 13:50 274432]
"HP Component Manager"="C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" [2005-01-12 13:54 241664]
"DXM6Patch_981116"="C:\WINDOWS\p_981116.exe" [1998-11-30 18:04 497376]
"MMTray"="MMTray.exe" [2003-03-25 06:49 53248 C:\WINDOWS\system32\MMTray.exe]
"MMTray2K"="MMTray2k.exe" [2003-03-25 06:49 57344 C:\WINDOWS\system32\MMTray2k.exe]
"MMTrayLSI"="MMTrayLSI.exe" [2003-03-25 06:49 53248 C:\WINDOWS\system32\MMTrayLSI.exe]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2006-09-14 19:24 180269]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2005-02-16 22:11 49152]
"LVCOMSX"="C:\WINDOWS\System32\LVCOMSX.EXE" [2005-12-09 15:32 225280]
"LogitechCameraAssistant"="C:\Program Files\Logitech\Video\CameraAssistant.exe" [2005-12-07 10:26 489472]
"LogitechVideo[inspector]"="C:\Program Files\Logitech\Video\InstallHelper.exe" [2005-12-07 10:33 73728]
"LogitechCameraService(E)"="C:\WINDOWS\System32\ElkCtrl.exe" [2004-11-01 17:22 262144]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-02-16 10:54 282624]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 02:06 40048]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 10:25 6731312]
"Tweak UI"="TWEAKUI.CPL" [2003-03-25 06:49 106544 C:\WINDOWS\system32\tweakui.cpl]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-03-02 15:24 257088]
"KiweeHook"="C:\Program Files\Kiwee Toolbar2\1.2.116\kwtbaim.exe" [2008-01-24 16:08 48264]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-20 00:09 15360]
"DWQueuedReporting"="C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" [2005-04-25 13:45 36040]

C:\Documents and Settings\Choquet\Menu D‚marrer\Programmes\D‚marrage\
ERUNT AutoBackup.lnk - C:\Program Files\ERUNT\AUTOBACK.EXE [2005-10-20 12:04:08 38912]

C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
D‚marrage rapide du logiciel HP Image Zone.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe [2004-05-28 23:06:36 53248]
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2004-05-28 22:31:38 241664]
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [2006-12-14 10:39:35 196608]
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE [2001-02-13 09:01:04 83360]
Picture Package Menu.lnk - C:\Documents and Settings\Choquet\Mes documents\Picture Package Menu\SonyTray.exe [2004-12-26 02:32:15 151552]
Picture Package VCD Maker.lnk - C:\Documents and Settings\Choquet\Mes documents\Picture Package Applications\Residence.exe [2004-12-26 02:32:10 106496]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{747e1fbe-b70f-441d-bbca-6e536c04924a}"= C:\WINDOWS\system32\wuuawkz.dll [2008-02-10 22:18 13312]

R0 adwarealert;adwarealert;C:\WINDOWS\system32\DRIVERS\adwarealert.sys [2008-02-06 17:45]
R3 LVPrcMon;Logitech LVPrcMon Driver;C:\WINDOWS\system32\drivers\LVPrcMon.sys [2005-12-09 15:37]
S3 archbus;NEC WMC USB_BJ1 Composite Device driver (WDM);C:\WINDOWS\system32\DRIVERS\archbus.sys [2005-08-30 12:17]
S3 archmdm;NEC WMC USB_BJ1 Port Drivers;C:\WINDOWS\system32\DRIVERS\archmdm.sys [2005-08-30 12:17]
S3 k600bus;Sony Ericsson 600i driver (WDM);C:\WINDOWS\system32\DRIVERS\k600bus.sys [2005-03-04 18:08]
S3 k600mdfl;Sony Ericsson 600i USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\k600mdfl.sys [2005-03-04 18:11]
S3 k600mdm;Sony Ericsson 600i USB WMC Modem Drivers;C:\WINDOWS\system32\DRIVERS\k600mdm.sys [2005-03-04 18:11]
S3 k600mgmt;Sony Ericsson 600i USB WMC Device Management Drivers;C:\WINDOWS\system32\DRIVERS\k600mgmt.sys [2005-03-04 18:13]
S3 k600obex;Sony Ericsson 600i USB WMC OBEX Interface Drivers;C:\WINDOWS\system32\DRIVERS\k600obex.sys [2005-03-04 18:15]
S3 SIS163u;SiS163 USB Wireless LAN Adapter Driver;C:\WINDOWS\system32\DRIVERS\sis163u.sys []
S3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-04 06:58]
S3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 07:08]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{077ca9fe-a4a4-11dc-b86c-00c09f57acb0}]
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe pagefile.sys.vbs

.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-02-15 17:55:53 C:\WINDOWS\Tasks\AdwareAlert Scheduled Scan.job"
- C:\Program Files\AdwareAlert\AdwareAlert.ex
- C:\Program Files\AdwareAlert
"2008-02-01 08:19:02 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
"2008-02-15 21:20:28 C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job"
- C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-15 22:27:22
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = C:\Program Files\HPQ\Default Settings\cpqset.exe????????6?9?4?8??????? ???B???????????????B? ??????

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
--------------------- DLLs a chargé sous des processus courants ---------------------

PROCESS: C:\WINDOWS\explorer.exe [6.00.2900.3156]
-> C:\WINDOWS\system32\wuuawkz.dll
.
Temps d'accomplissement: 2008-02-15 22:31:26
ComboFix-quarantined-files.txt 2008-02-15 21:30:59
ComboFix2.txt 2008-02-13 20:38:51
.
2008-02-14 07:37:23 --- E O F ---

---------------------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:35:17 PM, on 2/15/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe
C:\WINDOWS\System32\hphmon05.exe
C:\Program Files\HP\HP Share-to-Web\hpgs2wnf.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\MMTray.exe
C:\WINDOWS\system32\MMTray2k.exe
C:\WINDOWS\system32\MMTrayLSI.exe
C:\Program Files\HPQ\SHARED\HPQWMI.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\WINDOWS\System32\ElkCtrl.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Kiwee Toolbar2\1.2.116\kwtbaim.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\AdwareAlert\AdwareAlert.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Documents and Settings\Choquet\Mes documents\Picture Package Menu\SonyTray.exe
C:\Documents and Settings\Choquet\Mes documents\Picture Package Applications\Residence.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (file missing)
O2 - BHO: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: HP View - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [CamMonitor] C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A
O4 - HKLM\..\Run: [MMTray] MMTray.exe
O4 - HKLM\..\Run: [MMTray2K] MMTray2k.exe
O4 - HKLM\..\Run: [MMTrayLSI] MMTrayLSI.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\System32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [Tweak UI] RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [KiweeHook] "C:\Program Files\Kiwee Toolbar2\1.2.116\kwtbaim.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BackupNotify] C:\Program Files\HP\Digital Imaging\bin\backupnotify.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [AdwareAlert] C:\Program Files\AdwareAlert\AdwareAlert.exe -boot
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Startup: ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Picture Package Menu.lnk = ?
O4 - Global Startup: Picture Package VCD Maker.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?1c674015c91a44aba22c729f8d68bc75
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?1c674015c91a44aba22c729f8d68bc75
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
O16 - DPF: CabBuilder - http://ak.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O22 - SharedTaskScheduler: didact - {747e1fbe-b70f-441d-bbca-6e536c04924a} - C:\WINDOWS\system32\wuuawkz.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett Packard Company - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe

Réponse 62 / 117

noctambule28 Messages postés 25275 Date d'inscription Statut Webmaster Dernière intervention 2 874

tu aurais pu attendre avant d'installer un jeu....tu ramenes dss truc qui n'etaient pas là...ça m'oblige à reverifier

as-tu recherché le fichier logitech, et l'as tu supprimé ?
-------------------------------------------

bon, il y a un fichier qui ne semble pas voulaior disparaitre

Télécharge OTMoveIt2 (de Old_Timer) sur ton Bureau.
double-clique sur OTMoveIt2.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche (couleur Bleu) de OTMoveIt2 :Paste standard List of Files/Folders to be moved.

C:\WINDOWS\system32\wuuawkz.dll

clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre Results.
clique sur Exit pour fermer.
poste le rapport situé dans C:\\\\\\\\\\_OTMoveIt\MovedFiles\********.log

il te sera peut-être demander de redémarrer le pc pour achever la suppression.
si c'est le cas accepte par Yes.

Réponse 63 / 117

emanjamin2002

Désolez pour le download du jeu. Je ne vais rien faire avant que le nettoyage soit complèté; Sinon Logitec, c'est celui donc je vous avais dit hier qui ne voulait pas se supprimer.

Sinon je ne sais pas où aller pour le download de OTMoveIt2; je suis allé sur Google poru le trouver mais ????.

Merci
Emmanuel

Réponse 64 / 117

emanjamin2002

Salut,

J'ai réussi à trouver le download. Voici le rapport:

DllUnregisterServer procedure not found in C:\WINDOWS\system32\wuuawkz.dll
C:\WINDOWS\system32\wuuawkz.dll NOT unregistered.
C:\WINDOWS\system32\wuuawkz.dll moved successfully.

OTMoveIt2 v1.0.20 log created on 02162008_085113

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 65 / 117

noctambule28 Messages postés 25275 Date d'inscription Statut Webmaster Dernière intervention 2 874

salut

oups desole pour OTmoveit, ça m'apprendra à me relire...

ça a fonctionné, , tu peux remettre un hijackthis , il reste le probleme de logitech à resoudre

a+

Réponse 66 / 117

emanjamin2002

Merci et voici le rapport

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:13, on 2008-02-16
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe
C:\WINDOWS\System32\hphmon05.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\MMTray.exe
C:\WINDOWS\system32\MMTray2k.exe
C:\WINDOWS\system32\MMTrayLSI.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\HP\HP Share-to-Web\hpgs2wnf.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\WINDOWS\System32\ElkCtrl.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Kiwee Toolbar2\1.2.116\kwtbaim.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\AdwareAlert\AdwareAlert.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Documents and Settings\Choquet\Mes documents\Picture Package Menu\SonyTray.exe
C:\Documents and Settings\Choquet\Mes documents\Picture Package Applications\Residence.exe
C:\Program Files\HPQ\SHARED\HPQWMI.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (file missing)
O2 - BHO: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: HP View - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [CamMonitor] C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A
O4 - HKLM\..\Run: [MMTray] MMTray.exe
O4 - HKLM\..\Run: [MMTray2K] MMTray2k.exe
O4 - HKLM\..\Run: [MMTrayLSI] MMTrayLSI.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\System32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [Tweak UI] RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp
O4 - HKLM\..\Run: [KiweeHook] "C:\Program Files\Kiwee Toolbar2\1.2.116\kwtbaim.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BackupNotify] C:\Program Files\HP\Digital Imaging\bin\backupnotify.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [AdwareAlert] C:\Program Files\AdwareAlert\AdwareAlert.exe -boot
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Startup: ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Picture Package Menu.lnk = ?
O4 - Global Startup: Picture Package VCD Maker.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?1c674015c91a44aba22c729f8d68bc75
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?1c674015c91a44aba22c729f8d68bc75
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
O16 - DPF: CabBuilder - http://ak.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O22 - SharedTaskScheduler: (no name) - {747e1fbe-b70f-441d-bbca-6e536c04924a} - (no file)
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett Packard Company - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe

Réponse 67 / 117

noctambule28 Messages postés 25275 Date d'inscription Statut Webmaster Dernière intervention 2 874

nous allons essayer par OTmoveit

double-clique sur OTMoveIt2.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche (couleur Bleu) de OTMoveIt2 :Paste standard List of Files/Folders to be moved.

C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre Results.
clique sur Exit pour fermer.
poste le rapport situé dans C:\\\\\\\\\\_OTMoveIt\MovedFiles\********.log

il te sera peut-être demander de redémarrer le pc pour achever la suppression.
si c'est le cas accepte par Yes.

post le repport et un hijackthis

Réponse 68 / 117

emanjamin2002

Bonsoir,

J'ai suivi les directions. Voici le rapport mais je ne pense pas qu'il y a eu un résultat.

File/Folder C:\Program Files\Logitech\Desktop not found.
File/Folder Messenger\8876480\Program\BWPlugProtocol-8876480.dll not found.

OTMoveIt2 v1.0.20 log created on 02162008_194842

Réponse 69 / 117

noctambule28 Messages postés 25275 Date d'inscription Statut Webmaster Dernière intervention 2 874

IMPORTANT,

sauvegarde ta base de registre avant de faire les manips ci dessous.

* télécharge ERUNT

https://www.zebulon.fr/telechargements/utilitaires/systeme-utilitaires/erunt.html
tuto
http://pageperso.aol.fr/loraline60/tuto_erunt.htm

Copie le texte se situant dans le cadre ci-dessous :(en gras)

File::

zdsbjnbw.exe

Registry::

[HKEY_CLASSES_ROOT\clsid\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LDM"=-

Ouvre le Bloc-Notes puis colle le texte copié.
(Démarrer\Tous les programmes\Accessoires\Bloc notes.)
Sauvegarde ce fichier sous le nom de CFScript.txt.

Glisse maintenant le fichier ComboFix-Do.txt dans Combofix.exe

Cela va relancer Combofix, tape sur 1 puis valide. Après redémarrage, poste le contenu du rapport Combofix.txt accompagné d'un nouveau rapport Hijackthis.
S'il n'y a pas de redémarrage, poste quand même les rapports.

et un hijackthis

a+

Réponse 70 / 117

emanjamin2002

Voici les rapports

ComboFix 08-02-15.1 - Choquet 2008-02-16 20:33:14.4 - NTFSx86
Endroit: C:\Documents and Settings\Choquet\Bureau\ComboFix.exe
Command switches used :: C:\Documents and Settings\Choquet\Bureau\CFScript.txt
* Création d'un nouveau point de restauration

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]
.

((((((((((((((((((((((((((((( Fichiers créés 2008-01-16 to 2008-02-16 ))))))))))))))))))))))))))))))))))))
.

2008-02-16 08:51 . 2008-02-16 08:51 <REP> d-------- C:\_OTMoveIt
2008-02-15 18:32 . 2008-02-15 18:32 <REP> d-------- C:\WINDOWS\ERUNT
2008-02-15 17:49 . 2008-02-15 17:50 <REP> d-------- C:\Program Files\Lopxp
2008-02-15 13:31 . 2008-02-15 13:31 4,967,692 --a------ C:\WINDOWS\system32\Flags of our Fathers.dat
2008-02-15 13:31 . 2008-02-15 13:31 2,859,008 --a------ C:\WINDOWS\system32\Flags of our Fathers.scr
2008-02-15 13:15 . 2008-02-15 13:15 <REP> d-------- C:\Program Files\Football Championship Screensaver
2008-02-15 13:15 . 2006-06-06 20:38 2,623,675 --a------ C:\WINDOWS\system32\Football Championship Screensaver.scr
2008-02-15 13:15 . 2006-06-06 20:45 2,539 --a------ C:\WINDOWS\system32\Football Championship Screensaver.html
2008-02-14 08:36 . 2008-02-14 08:36 197 --a------ C:\WINDOWS\system32\MRT.INI
2008-02-14 01:19 . 2008-02-14 01:19 <REP> d-------- C:\Documents and Settings\Choquet\Application Data\Yahoo!
2008-02-14 01:19 . 2008-02-14 01:19 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2008-02-14 00:50 . 2008-02-14 00:50 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Trymedia
2008-02-14 00:49 . 2008-02-14 00:51 <REP> d-------- C:\Program Files\Yahoo! Games
2008-02-12 20:53 . 2008-02-16 20:28 <REP> d-------- C:\Program Files\ERUNT
2008-02-12 13:47 . 2008-02-12 15:24 <REP> d-------- C:\WINDOWS\BDOSCAN8
2008-02-12 11:08 . 2008-02-12 11:11 <REP> d-------- C:\Documents and Settings\Choquet\Application Data\LinkedIn
2008-02-12 11:07 . 2008-02-12 11:07 <REP> d-------- C:\Program Files\LinkedIn
2008-02-11 11:41 . 2004-12-08 17:27 32,123 --a------ C:\WINDOWS\system32\drivers\Capt905c.sys
2008-02-11 11:41 . 2004-05-07 15:31 24,382 --a------ C:\WINDOWS\system32\drivers\Camd905c.sys
2008-02-10 19:54 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2008-02-10 19:54 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll
2008-02-10 19:54 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-02-10 08:36 . 2003-06-05 21:13 53,248 --a------ C:\WINDOWS\system32\Process.exe
2008-02-10 07:47 . 2008-02-10 07:47 <REP> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-02-09 21:25 . 2008-02-09 21:25 559,965 --a------ C:\Navilog1.exe
2008-02-09 21:24 . 2008-02-10 08:37 <REP> d-------- C:\Program Files\Navilog1
2008-02-09 13:56 . 2008-02-09 14:04 <REP> d--hsc--- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-02-09 13:54 . 2008-02-09 13:54 <REP> d-------- C:\Program Files\Windows Live
2008-02-09 13:54 . 2008-02-09 13:54 <REP> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-02-09 13:50 . 2008-02-09 13:50 <REP> d-------- C:\Program Files\Kiwee Toolbar2
2008-02-09 13:50 . 2008-02-09 13:55 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kiwee Toolbar2
2008-02-09 09:51 . 2008-02-09 10:11 6,280 --a------ C:\WINDOWS\system32\tmp.reg
2008-02-09 09:15 . 2008-02-09 09:15 <REP> d-------- C:\Program Files\Trend Micro
2008-02-09 01:50 . 2008-02-09 23:43 <REP> d-------- C:\Program Files\Enigma Software Group
2008-02-08 21:13 . 2008-02-06 17:45 19,696 --a------ C:\WINDOWS\system32\drivers\adwarealert.sys
2008-02-08 20:47 . 2008-02-11 02:22 <REP> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2008-02-08 20:43 . 2008-02-16 07:39 <REP> d-------- C:\Documents and Settings\Choquet\Application Data\AdwareAlert
2008-02-08 20:42 . 2008-02-16 07:39 <REP> d-------- C:\Program Files\AdwareAlert
2008-02-08 18:54 . 2008-02-08 18:56 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-02-08 18:53 . 2008-02-08 18:53 <REP> d-------- C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-02-08 15:38 . 2008-02-08 15:38 <REP> d-------- C:\Documents and Settings\Choquet\Application Data\Grisoft
2008-02-08 15:38 . 2008-02-08 15:38 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2008-02-08 15:38 . 2007-05-30 13:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-02-08 15:04 . 2008-02-08 15:04 50 --a------ C:\tmp.bat
2008-02-04 16:17 . 2008-02-04 16:17 0 --a------ C:\WINDOWS\graphedit.INI
2008-02-04 16:10 . 2003-05-03 13:01 61,555 --a------ C:\WINDOWS\system32\jpicpl32.cpl
2008-02-04 15:08 . 2003-04-24 02:00 2 ---hs---- C:\desktop.ini
2008-02-04 14:59 . 2008-02-04 14:59 40 --a------ C:\Auth.prof
2008-01-31 15:20 . 2008-01-31 17:47 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-01-31 15:20 . 2008-01-31 15:20 1,409 --a------ C:\WINDOWS\QTFont.for

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-16 19:06 74,104 -c--a-w C:\Documents and Settings\Choquet\Application Data\GDIPFONTCACHEV1.DAT
2008-02-13 23:53 --------- d-----w C:\Documents and Settings\All Users\Application Data\MumboJumbo
2008-02-13 23:52 --------- d-----r C:\Program Files\Yahoo!
2008-02-12 13:31 --------- d-----r C:\Program Files\MSN Messenger
2008-02-12 07:57 --------- d-----w C:\Program Files\Microsoft ActiveSync
2008-02-11 10:41 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-02-10 23:12 --------- d-----r C:\Program Files\Random House, Inc
2008-02-10 23:12 --------- d-----r C:\Program Files\phelios
2008-02-10 23:12 --------- d-----r C:\Program Files\Logitech
2008-02-10 23:12 --------- d-----r C:\Program Files\HPQ
2008-02-10 23:12 --------- d-----r C:\Program Files\HP
2008-02-10 23:12 --------- d-----r C:\Program Files\Google
2008-02-10 23:12 --------- d-----r C:\Program Files\Ganymede
2008-02-10 23:12 --------- d-----r C:\Program Files\Easy Internet signup
2008-02-10 21:17 --------- d-----w C:\Program Files\Overland
2008-02-10 00:53 --------- d-----w C:\Program Files\Windows Live Toolbar
2008-02-08 22:11 --------- d-----w C:\Program Files\iTunes
2008-02-08 17:56 --------- d-----w C:\Program Files\Lavasoft
2008-02-08 17:56 --------- d-----w C:\Documents and Settings\Choquet\Application Data\Lavasoft
2008-02-08 15:24 --------- d-----w C:\Program Files\WordBiz
2008-02-08 15:24 --------- d-----w C:\Program Files\Windows Media Connect 2
2008-02-08 15:24 --------- d-----w C:\Program Files\Wanadoo
2008-02-08 15:24 --------- d-----w C:\Program Files\Virtools Web Player 3.5
2008-02-08 15:23 --------- d-----w C:\Program Files\VideoLAN
2008-02-08 15:23 --------- d-----w C:\Program Files\TLI
2008-02-08 15:23 --------- d-----w C:\Program Files\Synaptics
2008-02-08 15:23 --------- d-----w C:\Program Files\Symantec
2008-02-08 15:23 --------- d-----w C:\Program Files\Superball Arcade
2008-02-08 15:23 --------- d-----w C:\Program Files\Star Ball
2008-02-08 15:23 --------- d-----w C:\Program Files\Sony Corporation
2008-02-08 15:23 --------- d-----w C:\Program Files\Sonic
2008-02-08 15:23 --------- d-----w C:\Program Files\Securitoo
2008-02-08 15:23 --------- d-----w C:\Program Files\Redoubt
2008-02-08 15:23 --------- d-----w C:\Program Files\RecordNow!
2008-02-08 15:23 --------- d-----r C:\Program Files\Services en ligne
2008-02-08 15:22 --------- d-----w C:\Program Files\Real
2008-02-08 15:22 --------- d-----w C:\Program Files\QuickTime
2008-02-08 15:22 --------- d-----w C:\Program Files\quickmov
2008-02-08 15:22 --------- d-----w C:\Program Files\PC Camera
2008-02-08 15:22 --------- d-----w C:\Program Files\Norton AntiVirus
2008-02-08 15:22 --------- d-----w C:\Program Files\Neuf
2008-02-08 15:22 --------- d-----w C:\Program Files\NEC
2008-02-08 15:22 --------- d-----w C:\Program Files\Music Mixer 4
2008-02-08 15:22 --------- d-----w C:\Program Files\MSXML 4.0
2008-02-08 15:21 --------- d-----w C:\Program Files\Microsoft Works
2008-02-08 15:20 --------- d-----w C:\Program Files\Microsoft Encarta
2008-02-08 15:20 --------- d-----w C:\Program Files\Micro Application
2008-02-08 15:20 --------- d-----w C:\Program Files\Ludiclub
2008-02-08 15:20 --------- d-----r C:\Program Files\microsoft frontpage
2008-02-08 15:19 --------- d-----w C:\Program Files\K-Lite Codec Pack
2008-02-08 15:19 --------- d-----w C:\Program Files\Java
2008-02-08 15:19 --------- d-----w C:\Program Files\iPod
2008-02-08 15:18 --------- d-----w C:\Program Files\InterVideo
2008-02-08 15:18 --------- d-----w C:\Program Files\InterActual
2008-02-08 15:18 --------- d-----w C:\Program Files\Intel
2008-02-08 15:18 --------- d-----w C:\Program Files\IncrediMail
2008-02-08 15:15 --------- d-----r C:\Program Files\Hits Collection
2008-02-08 15:15 --------- d-----r C:\Program Files\Hewlett-Packard
2008-02-08 15:13 --------- d-----w C:\Program Files\EACOM
2008-02-08 15:13 --------- d-----w C:\Program Files\EA SPORTS
2008-02-08 15:13 --------- d-----w C:\Program Files\DivX
2008-02-08 15:13 --------- d-----w C:\Program Files\Disney Interactive
2008-02-08 15:13 --------- d-----w C:\Program Files\CONEXANT
2008-02-08 15:13 --------- d-----w C:\Program Files\Common Files
2008-02-08 15:12 --------- d-----w C:\Program Files\Canon
2008-02-08 15:12 --------- d-----w C:\Program Files\Bunny Blast Demo
2008-02-08 15:12 --------- d-----w C:\Program Files\Brave Dwarves - Back For Treasures Demo
2008-02-08 15:12 --------- d-----w C:\Program Files\AtomixMP3
2008-02-08 15:12 --------- d-----w C:\Program Files\Arturia
2008-02-08 15:12 --------- d-----w C:\Program Files\Arcade Lines
2008-02-08 15:12 --------- d-----w C:\Program Files\Apple Software Update
2008-02-08 15:12 --------- d-----r C:\Program Files\BongoBoogie
2008-02-08 15:12 --------- d-----r C:\Program Files\BearShare Applications
2008-02-08 15:11 --------- d-----w C:\Program Files\Alwil Software
2008-02-08 15:11 --------- d-----w C:\Program Files\Alawar
2008-02-08 15:11 --------- d-----r C:\Program Files\AirHockey 3D
2008-02-08 15:11 --------- d-----r C:\Program Files\ACE Mega CoDecS Pack
2008-02-08 15:10 --------- d-----w C:\Program Files\Absolutist.com
2008-02-04 15:34 --------- d-----w C:\Program Files\eMule
2008-01-11 05:36 44,544 ------w C:\WINDOWS\system32\dllcache\pngfilt.dll
2008-01-09 14:01 53,248 ----a-w C:\WINDOWS\bdoscandel.exe
2008-01-06 17:58 --------- d-----w C:\Program Files\Fichiers communs\Novell Shared
2007-12-19 22:53 347,136 ------w C:\WINDOWS\system32\dllcache\dxtmsft.dll
2007-12-18 09:51 179,584 ----a-w C:\WINDOWS\system32\drivers\mrxdav.sys
2007-12-18 09:51 179,584 ------w C:\WINDOWS\system32\dllcache\mrxdav.sys
2007-12-14 10:32 12,632 ----a-w C:\WINDOWS\system32\lsdelete.exe
2007-12-08 05:08 3,592,192 ------w C:\WINDOWS\system32\dllcache\mshtml.dll
2007-12-07 02:08 824,832 ----a-w C:\WINDOWS\system32\wininet.dll
2007-12-07 02:08 824,832 ------w C:\WINDOWS\system32\dllcache\wininet.dll
2007-12-07 02:08 671,232 ----a-w C:\WINDOWS\system32\dllcache\mstime.dll
2007-12-07 02:08 63,488 ------w C:\WINDOWS\system32\dllcache\icardie.dll
2007-12-07 02:08 6,066,176 ------w C:\WINDOWS\system32\dllcache\ieframe.dll
2007-12-07 02:08 52,224 ------w C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2007-12-07 02:08 478,208 ------w C:\WINDOWS\system32\dllcache\mshtmled.dll
2007-12-07 02:08 459,264 ------w C:\WINDOWS\system32\dllcache\msfeeds.dll
2007-12-07 02:08 44,544 ----a-w C:\WINDOWS\system32\dllcache\iernonce.dll
2007-12-07 02:08 384,512 ----a-w C:\WINDOWS\system32\dllcache\iedkcs32.dll
2007-12-07 02:08 383,488 ------w C:\WINDOWS\system32\dllcache\ieapfltr.dll
2007-12-07 02:08 27,648 ----a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
2007-12-07 02:08 267,776 ------w C:\WINDOWS\system32\dllcache\iertutil.dll
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6638A9DE-0745-4292-8A2E-AE530E7B9B3F}]
2008-01-24 16:09 248976 --a------ C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{B2847E28-5D7D-4DEB-8B67-05D28BCF79F5}
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}
{2318C2B1-4965-11D4-9B18-009027A5CD4F}
{6638A9DE-0745-4292-8A2E-AE530E7B9B3F}
{EF99BD32-C1FB-11D2-892F-0090271D4F88}

[HKEY_CLASSES_ROOT\clsid\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}]
[HKEY_CLASSES_ROOT\KiweeIEToolbar.KiweeToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{259EEB17-79AA-44DF-8410-8E55F82A902A}]
[HKEY_CLASSES_ROOT\KiweeIEToolbar.KiweeToolbar]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{6638A9DE-0745-4292-8A2E-AE530E7B9B3F}"= C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll [2008-01-24 16:09 248976]

[HKEY_CLASSES_ROOT\clsid\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}]
[HKEY_CLASSES_ROOT\KiweeIEToolbar.KiweeToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{259EEB17-79AA-44DF-8410-8E55F82A902A}]
[HKEY_CLASSES_ROOT\KiweeIEToolbar.KiweeToolbar]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-20 00:09 15360]
"BackupNotify"="C:\Program Files\HP\Digital Imaging\bin\backupnotify.exe" [2004-01-08 19:34 32768]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:55 5674352]
"H/PC Connection Agent"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe" [2006-06-26 20:45 1211176]
"AdwareAlert"="C:\Program Files\AdwareAlert\AdwareAlert.exe" [2008-02-07 19:52 6386928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\WINDOWS\System32\igfxtray.exe" [2003-10-30 09:46 155648]
"HotKeysCmds"="C:\WINDOWS\System32\hkcmd.exe" [2003-10-30 09:33 118784]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [ ]
"UpdateManager"="C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" [2003-08-19 00:01 110592]
"SynTPLpr"="C:\Program Files\Synaptics\SynTP\SynTPLpr.exe" [2004-05-26 18:15 98304]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2004-05-26 18:15 536576]
"CamMonitor"="C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe" [2002-10-06 23:23 90112]
"Share-to-Web Namespace Daemon"="C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe" [2002-04-17 09:42 69632]
"HPHUPD05"="c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe" [ ]
"HPHmon05"="C:\WINDOWS\System32\hphmon05.exe" [2003-05-22 18:56 483328]
"Cpqset"="C:\Program Files\HPQ\Default Settings\cpqset.exe" [2004-04-30 10:32 208958]
"eabconfg.cpl"="C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe" [2004-04-30 13:50 274432]
"HP Component Manager"="C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" [2005-01-12 13:54 241664]
"DXM6Patch_981116"="C:\WINDOWS\p_981116.exe" [1998-11-30 18:04 497376]
"MMTray"="MMTray.exe" [2003-03-25 06:49 53248 C:\WINDOWS\system32\MMTray.exe]
"MMTray2K"="MMTray2k.exe" [2003-03-25 06:49 57344 C:\WINDOWS\system32\MMTray2k.exe]
"MMTrayLSI"="MMTrayLSI.exe" [2003-03-25 06:49 53248 C:\WINDOWS\system32\MMTrayLSI.exe]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2006-09-14 19:24 180269]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2005-02-16 22:11 49152]
"LVCOMSX"="C:\WINDOWS\System32\LVCOMSX.EXE" [2005-12-09 15:32 225280]
"LogitechCameraAssistant"="C:\Program Files\Logitech\Video\CameraAssistant.exe" [2005-12-07 10:26 489472]
"LogitechVideo[inspector]"="C:\Program Files\Logitech\Video\InstallHelper.exe" [2005-12-07 10:33 73728]
"LogitechCameraService(E)"="C:\WINDOWS\System32\ElkCtrl.exe" [2004-11-01 17:22 262144]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-02-16 10:54 282624]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 02:06 40048]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 10:25 6731312]
"Tweak UI"="TWEAKUI.CPL" [2003-03-25 06:49 106544 C:\WINDOWS\system32\tweakui.cpl]
"KiweeHook"="C:\Program Files\Kiwee Toolbar2\1.2.116\kwtbaim.exe" [2008-01-24 16:08 48264]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-03-02 15:24 257088]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-20 00:09 15360]
"DWQueuedReporting"="C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" [2005-04-25 13:45 36040]

C:\Documents and Settings\Choquet\Menu D‚marrer\Programmes\D‚marrage\
ERUNT AutoBackup.lnk - C:\Program Files\ERUNT\AUTOBACK.EXE [2005-10-20 12:04:08 38912]

C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
D‚marrage rapide du logiciel HP Image Zone.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe [2004-05-28 23:06:36 53248]
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2004-05-28 22:31:38 241664]
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [2006-12-14 10:39:35 196608]
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE [2001-02-13 09:01:04 83360]
Picture Package Menu.lnk - C:\Documents and Settings\Choquet\Mes documents\Picture Package Menu\SonyTray.exe [2004-12-26 02:32:15 151552]
Picture Package VCD Maker.lnk - C:\Documents and Settings\Choquet\Mes documents\Picture Package Applications\Residence.exe [2004-12-26 02:32:10 106496]

R0 adwarealert;adwarealert;C:\WINDOWS\system32\DRIVERS\adwarealert.sys [2008-02-06 17:45]
R3 LVPrcMon;Logitech LVPrcMon Driver;C:\WINDOWS\system32\drivers\LVPrcMon.sys [2005-12-09 15:37]
S3 archbus;NEC WMC USB_BJ1 Composite Device driver (WDM);C:\WINDOWS\system32\DRIVERS\archbus.sys [2005-08-30 12:17]
S3 archmdm;NEC WMC USB_BJ1 Port Drivers;C:\WINDOWS\system32\DRIVERS\archmdm.sys [2005-08-30 12:17]
S3 k600bus;Sony Ericsson 600i driver (WDM);C:\WINDOWS\system32\DRIVERS\k600bus.sys [2005-03-04 18:08]
S3 k600mdfl;Sony Ericsson 600i USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\k600mdfl.sys [2005-03-04 18:11]
S3 k600mdm;Sony Ericsson 600i USB WMC Modem Drivers;C:\WINDOWS\system32\DRIVERS\k600mdm.sys [2005-03-04 18:11]
S3 k600mgmt;Sony Ericsson 600i USB WMC Device Management Drivers;C:\WINDOWS\system32\DRIVERS\k600mgmt.sys [2005-03-04 18:13]
S3 k600obex;Sony Ericsson 600i USB WMC OBEX Interface Drivers;C:\WINDOWS\system32\DRIVERS\k600obex.sys [2005-03-04 18:15]
S3 SIS163u;SiS163 USB Wireless LAN Adapter Driver;C:\WINDOWS\system32\DRIVERS\sis163u.sys []
S3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-04 06:58]
S3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 07:08]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{077ca9fe-a4a4-11dc-b86c-00c09f57acb0}]
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe pagefile.sys.vbs

.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-02-16 15:19:52 C:\WINDOWS\Tasks\AdwareAlert Scheduled Scan.job"
- C:\Program Files\AdwareAlert\AdwareAlert.ex
- C:\Program Files\AdwareAlert
"2008-02-01 08:19:02 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
"2008-02-16 19:20:02 C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job"
- C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-16 20:39:52
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = C:\Program Files\HPQ\Default Settings\cpqset.exe????????6?9?4?8??????? ???B???????????????B? ??????

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
Temps d'accomplissement: 2008-02-16 20:43:41
ComboFix-quarantined-files.txt 2008-02-16 19:43:19
ComboFix2.txt 2008-02-15 21:31:27
ComboFix3.txt 2008-02-13 20:38:51
.
2008-02-14 07:37:23 --- E O F ---

-----------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:44:16 PM, on 2/16/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe
C:\WINDOWS\System32\hphmon05.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\MMTray.exe
C:\WINDOWS\system32\MMTray2k.exe
C:\WINDOWS\system32\MMTrayLSI.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\HP\HP Share-to-Web\hpgs2wnf.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\WINDOWS\System32\ElkCtrl.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Kiwee Toolbar2\1.2.116\kwtbaim.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\AdwareAlert\AdwareAlert.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Documents and Settings\Choquet\Mes documents\Picture Package Menu\SonyTray.exe
C:\Documents and Settings\Choquet\Mes documents\Picture Package Applications\Residence.exe
C:\Program Files\HPQ\SHARED\HPQWMI.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\internet explorer\iexplore.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (file missing)
O2 - BHO: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: HP View - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [CamMonitor] C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A
O4 - HKLM\..\Run: [MMTray] MMTray.exe
O4 - HKLM\..\Run: [MMTray2K] MMTray2k.exe
O4 - HKLM\..\Run: [MMTrayLSI] MMTrayLSI.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\System32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [Tweak UI] RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp
O4 - HKLM\..\Run: [KiweeHook] "C:\Program Files\Kiwee Toolbar2\1.2.116\kwtbaim.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BackupNotify] C:\Program Files\HP\Digital Imaging\bin\backupnotify.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [AdwareAlert] C:\Program Files\AdwareAlert\AdwareAlert.exe -boot
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Startup: ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Picture Package Menu.lnk = ?
O4 - Global Startup: Picture Package VCD Maker.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?1c674015c91a44aba22c729f8d68bc75
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?1c674015c91a44aba22c729f8d68bc75
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
O16 - DPF: CabBuilder - http://ak.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O22 - SharedTaskScheduler: (no name) - {747e1fbe-b70f-441d-bbca-6e536c04924a} - (no file)
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett Packard Company - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe

Réponse 71 / 117

noctambule28 Messages postés 25275 Date d'inscription Statut Webmaster Dernière intervention 2 874

ça commence à m'agacer !!!

j'ai deja demandé à droite à gauche , il devrait etre possible supprimer cela .....
essaie ça

Copie le texte se situant dans le cadre ci-dessous :(en gras)

Folder::

C:\Program Files\Logitech\Desktop Messenger\

Ouvre le Bloc-Notes puis colle le texte copié.
(Démarrer\Tous les programmes\Accessoires\Bloc notes.)
Sauvegarde ce fichier sous le nom de CFScript.txt.

Glisse maintenant le fichier ComboFix-Do.txt dans Combofix.exe

Cela va relancer Combofix, tape sur 1 puis valide. Après redémarrage, poste le contenu du rapport Combofix.txt accompagné d'un nouveau rapport Hijackthis.
S'il n'y a pas de redémarrage, poste quand même les rapports.

et un hijackthis

Réponse 72 / 117

emanjamin2002

Bonsoir,
Ce matin le anti virus a bloqué logitec et messenger donc je les ai debloqué avant de faire le lancement de ce que vous vouliez que je fasse.

Voici les rapports

ComboFix 08-02-15.1 - Choquet 2008-02-16 21:10:19.5 - NTFSx86
Endroit: C:\Documents and Settings\Choquet\Bureau\ComboFix.exe
Command switches used :: C:\Documents and Settings\Choquet\Bureau\CFScript.txt
* Création d'un nouveau point de restauration

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Program Files\Logitech\Desktop Messenger\
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Install\bwUnin.exe
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Install\LiteInst.exe
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Install\readme.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Install\win2000.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Plugins\Npavi32.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\backweb.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\backweb.tlb
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\BWCHelpr.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\BWCmndr.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\BWDocMapExt.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\bwfiles.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\bwlang.ini
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\bwmib.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\BWOfflineUrlAccessor.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\BWPlugProtocol.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\BWPortalPlugin.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\BWScriptExt.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\bwsec.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\BWXMLOffline.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\bwxtext.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\clntutil.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\Cpuinf32.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\ding.wav
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\ClientRc.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\CommStatus\remedy_strings.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\CommStatus\remedy_strings_override.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\CommStatus\strings.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\CommStatus\strings_override.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\Navigation\navigation_strings.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\Navigation\navigation_strings_override.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\arrow_left.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\arrow_right.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\BULLET1.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\closing_the_notification_in.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\deleting_notifications.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\DIAMOND1.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\elements_of_the_statusbar.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\help.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\homebutton_gray.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\image003.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\image005.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\image007.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\image009.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\image010.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\image012.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\image014.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\image016.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\image017.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\image018.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\image020.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\image024.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\image025.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\inbox.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\managing_notifications.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\marking_notifications.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\opening_the_notification_in.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\overview.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\preferences.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\ProactivePortal_Notification_Inbox_Help.css
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\refreshing_the_notification.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\setting_proactiveportal_not.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\sorting_information_in_the_.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\the_proactiveportal_notific.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\viewing_data_in_the_notific.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\viewing_full_stories.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\viewing_the_availability_of.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\viewing_the_notification_s_.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\viewing_the_notification_su.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\help\xbutton.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\notification_strings.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\NotificationMgr\notification_strings_override.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\resources\global_strings.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\resources\global_strings_override.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\arrow_left.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\arrow_right.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\BULLET1.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\button_edit.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\button_sendagain.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\closing_the_forms_outbox.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\deleting_form_submissions.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\details.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\DIAMOND1.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\form_submission_scheduling.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\help.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\home.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\homebutton_gray.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\how_does_proactiveportal_se.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\image003_forms.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\image005_forms.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\image007_forms.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\image011_forms.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\image013_forms.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\image014_forms.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\image016_forms.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\image019_forms.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\image020_forms.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\managing_form_submissions.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\marking_form_submissions.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\modifying_a_submitted_form.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\modifying_a_submitted_form.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\opening_the_forms_outbox.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\outbox.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\overview_1.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\preferences.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\ProactivePortal_Forms_Outbox_Help.css
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\refreshing_the_forms_outbox.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\ResponseAvailable.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\resubmitting_a_form.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\send_again.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\setting_form_submission_pre.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\sorting_form_submissions.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\SubmissionCompleted.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\SubmissionFailed.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\the_forms_outbox.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\the_progress_bar.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\the_status_bar.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\the_status_column.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\viewing_data_in_the_forms_o.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\viewing_form_submission_details.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\viewing_form_submission_res.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\viewing_form_submission_sta.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\viewing_submission_details.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\what_are_forms_.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\help\xbutton.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\submission_strings.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\PortalUI\SubmissionMgr\submission_strings_override.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\registerRC.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\SpriteRC.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\EN\UninstallRC.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\GAPlugProtocol.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\IAdHide.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\loading.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\pacsupport.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\CommStatus\functions.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\CommStatus\remedy_functions.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\background.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\BWPortalPlugin.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\CommProblem.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\CommProblem.html
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\CommStatus.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\decorations.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\disableforms.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\fillFormsForResubmit.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\navigation.css
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\navigation_override.css
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalBrokenLink.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalBrokenLink.html
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalClientInactive.html
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalFormError.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalFormStatus.html
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalFormSuccess.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalGoOnline.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalGoOnline.html
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalGoOnlineTesterMode.html
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalMsgConfig.ini
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalNoClient.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalNoDoc.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalNoDoc.html
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalNotRegistered.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalNotRegistered.html
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalNotSupportedURL.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalNotSupportedURL.html
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalNoUI.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalNoUI.html
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalOldDoc.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\Navigation\ProactivePortalOldDoc.html
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\not.html
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\link_header.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\link_header_MO.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\notification.css
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\notification_override.css
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\notification_params.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\notification_params_override.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\NotificationDetailedStatus.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\NotificationMgrUI.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\offline_link.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\offline_link_MO.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\online_link.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\online_link_MO.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\preferences.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\priority.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\priority_header.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\priority_header_MO.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\NotificationMgr\utilities.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\OfflineMgr.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\OfflineSearch.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\preferences.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\arr_end.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\arr_end_mo.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\arr_end_na.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\arr_next.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\arr_next_mo.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\arr_next_na.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\arr_prev.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\arr_prev_mo.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\arr_prev_na.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\arr_start.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\arr_start_mo.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\arr_start_na.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\background.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\Exit.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\footer.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\global.css
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\global_override.css
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\global_params.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\global_params_override.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\header.jpg
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\Help.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\help_MO.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\helper.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\preferences.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\preferences.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\preferences_icon.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\preferences_MO.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\Propert.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\sort_ascending.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\sort_descending.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\table.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\tabs.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\resources\utilities.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\sub.html
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\AddSubmissionMgrLink.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\FormDeleted.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\FormError.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\FormOK.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\FormPending.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\FormProcess.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\FormSuspended.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\FormUpload.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\preferences.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\ResponseAvialable.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\ResponseAvialable_MO.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\submission.css
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\submission_override.css
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\submission_params.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\submission_params_override.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\SubmissionCompleted.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\SubmissionCompleted_MO.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\SubmissionDetailedStatus.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\SubmissionFailed.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\SubmissionFailed_MO.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\SubmissionMgrUI.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\SubmissionStatus.inc
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PortalUI\SubmissionMgr\utilities.js
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\Pre6Import.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\PUI_Launcher.exe
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\register.exe
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\Restart.exe
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\runner.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\runner.exe
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\Sprite6.exe
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\temp\IadHide5.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\7.2.0.157-8876480SL\Program\wtsisctd.exe
C:\Program Files\Logitech\Desktop Messenger\\8876480\clasid.bak
C:\Program Files\Logitech\Desktop Messenger\\8876480\enabled.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\background.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\browser.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\cert.db
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\chandir.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\chandir.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\chn.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\chn.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\DefPrefs.ini
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\GenFlash\1\gen.bif
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\GenFlash\1\gen.bis
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\GenFlash\1\info.iad
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\InfoCenter.GIF
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\InfoCenter.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\main.wkg
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\UpgradePubKey.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\Data\UsrPrefs.ini
C:\Program Files\Logitech\Desktop Messenger\\8876480\InitData\PlaceHolder.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\8876480\Choquet\InstallerResult.log
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\BWCHelpr-8876480.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\BWCmndr-8876480.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\BWDocMapExt-8876480.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\BWfiles-8876480.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\BWOfflineUrlAccessor-8876480.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\BWPlugProtocol-8876480.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\BWPortalPlugin-8876480.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\bwscriptext-8876480.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\BWXmlOffline-8876480.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\GAPlugProtocol-8876480.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\LDMConf.exe
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\ldmrchs.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\ldmrcht.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\ldmrdan.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\ldmrdeu.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\ldmresp.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\ldmrfin.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\ldmrfra.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\ldmrita.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\ldmrjpn.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\ldmrkor.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\ldmrnld.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\ldmrnor.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\ldmrptb.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\ldmrsve.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\LiteInstActivator.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\LiteInstActivator.ini
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\LogiLdmC.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\LogiLdmW.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\LogiLdmW.tlb
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\LogitechDesktopMessenger.exe.appid.8876480
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\Scripts\Enable_OAS\enableOAS.vbs
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\Scripts\RuleExec\AuthLib1.vbs
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\Scripts\RuleExec\AuthLib2.vbs
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\Scripts\RuleExec\CRules1.vbs
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\Scripts\RuleExec\EventLib1.vbs
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\Scripts\RuleExec\EventLib2.vbs
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\Scripts\RuleExec\EventMgr1.vbs
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\Scripts\RuleExec\EventMgr2.vbs
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\Scripts\RuleExec\payload1.pub
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\Scripts\RuleExec\RuleLib1.vbs
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\Scripts\RuleExec\RuleLib2.vbs
C:\Program Files\Logitech\Desktop Messenger\\8876480\Program\SyncExt.dll
C:\Program Files\Logitech\Desktop Messenger\\8876480\readme.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Cleanup.exe
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\4f20\BWEvents.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\4f20\chninfo.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\4f20\ChnReg.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\4f20\segrules.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\4f20\Stats.tmp
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\4f20\UserProf.bak
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\4f20\UserProf.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6758\BWEvents.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6758\chninfo.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6758\ChnReg.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6758\segrules.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6758\series.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6758\Stats.tmp
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6758\submissions.old
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6758\submissions.xml
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6758\UserProf.bak
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6758\UserProf.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6793\BWEvents.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6793\chninfo.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6793\ChnReg.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6793\segrules.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6793\Stats.tmp
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6793\UserProf.bak
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6793\UserProf.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\a9a3e36\_bwfindx.zip
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\a9a3e36\info.iad
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\a9a3e53\_bwfindx.zip
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\a9a3e53\info.iad
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\a9a3e54\_bwfindx.zip
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\a9a3e54\info.iad
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\a9a3ef0\_bwfindx.zip
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\a9a3ef0\info.iad
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\a9a3f17\_bwfindx.zip
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\a9a3f17\info.iad
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\BWEvents.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\chninfo.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\ChnReg.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\segrules.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\Stats.tmp
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\UserProf.bak
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\6796\UserProf.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\background.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\browser.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\BWDocMap.pht
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\BWInfopakMap.pht
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\bwppipmd.xml
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\cache.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\cert.db
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\chandir.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\chandir.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\chn.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\chn.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\D0000000.FCS
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\DefPrefs.ini
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\GenFlash\1\gen.bif
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\GenFlash\1\gen.bis
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\GenFlash\1\info.iad
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\HostCache.ini
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\InfoCenter.GIF
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\InfoCenter.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\inuse.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\L0000001.FCS
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\L0000002.FCS
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\main.log
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\player.ini
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\prs.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\prs.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\prs_die.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\prs_die.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\prs_dnd.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\prs_dnd.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\prs_ext.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\prs_ext.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\prs_rcv.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\prs_rcv.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\S0000000.FCS
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\S0000001.FCS
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\shopping.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\storydb.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\storydb.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\upgrade.log
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\UpgradePubKey.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\UsrPrefs.ini
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Data\wg1.wkg
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Misc\Backup\chandir.da~
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Misc\Backup\chandir.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Misc\Backup\chandir.id~
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\Choquet\Misc\Backup\chandir.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\DataSets.ini
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\258b\BWEvents.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\258b\chninfo.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\258b\ChnReg.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\258b\segrules.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\258b\Stats.tmp
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\258b\submissions.old
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\258b\submissions.xml
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\258b\UserProf.bak
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\258b\UserProf.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\11e4f6f9\_bwfindx.zip
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\11e4f6f9\139MD Welcome Message.ipk
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\11e4f6f9\Close.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\11e4f6f9\Connect.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\11e4f6f9\info.iad
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\11e4f6f9\logiaction.exe
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\11e4f6f9\main.bif
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\11e4f6f9\main.bis
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\11e4f6f9\Offer2.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\11e4f6f9\Privacy.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\11e4f6f9\resources.bis
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\11e4f6f9\Summary.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\11e4f6f9\Teaser.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\BWEvents.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\chninfo.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\ChnReg.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\segrules.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\Stats.tmp
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\UserProf.bak
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2592\UserProf.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\a9a3e36\_bwfindx.zip
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\a9a3e36\info.iad
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\a9a3e53\_bwfindx.zip
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\a9a3e53\info.iad
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\a9a3e54\_bwfindx.zip
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\a9a3e54\info.iad
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\a9a3ef0\_bwfindx.zip
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\a9a3ef0\info.iad
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\a9a3f17\_bwfindx.zip
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\a9a3f17\info.iad
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\BWEvents.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\chninfo.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\ChnReg.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\segrules.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\Stats.tmp
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\UserProf.bak
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2595\UserProf.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2599\BWEvents.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2599\chninfo.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2599\ChnReg.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2599\segrules.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2599\Stats.tmp
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2599\UserProf.bak
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\2599\UserProf.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\background.gif
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\browser.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\BWDocMap.pht
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\BWInfopakMap.pht
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\cache.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\cert.db
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\chandir.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\chandir.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\chn.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\chn.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\DefPrefs.ini
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\GenFlash\1\gen.bif
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\GenFlash\1\gen.bis
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\GenFlash\1\info.iad
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\HostCache.ini
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\InfoCenter.GIF
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\InfoCenter.htm
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\inuse.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\L0000001.FCS
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\L0000002.FCS
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\main.log
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\player.ini
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\prs.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\prs.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\prs_die.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\prs_die.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\prs_dnd.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\prs_dnd.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\prs_ext.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\prs_ext.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\prs_rcv.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\prs_rcv.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\S0000000.FCS
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\S0000001.FCS
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\shopping.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\storydb.dat
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\storydb.idx
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\UpgradePubKey.txt
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\UsrPrefs.ini
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\Data\wg1.wkg
C:\Program Files\Logitech\Desktop Messenger\\8876480\Users\jamin\PlaceHolder.txt

.
((((((((((((((((((((((((((((( Fichiers créés 2008-01-16 to 2008-02-16 ))))))))))))))))))))))))))))))))))))
.

2008-02-16 08:51 . 2008-02-16 08:51 <REP> d-------- C:\_OTMoveIt
2008-02-15 18:32 . 2008-02-15 18:32 <REP> d-------- C:\WINDOWS\ERUNT
2008-02-15 17:49 . 2008-02-15 17:50 <REP> d-------- C:\Program Files\Lopxp
2008-02-15 13:31 . 2008-02-15 13:31 4,967,692 --a------ C:\WINDOWS\system32\Flags of our Fathers.dat
2008-02-15 13:31 . 2008-02-15 13:31 2,859,008 --a------ C:\WINDOWS\system32\Flags of our Fathers.scr
2008-02-15 13:15 . 2008-02-15 13:15 <REP> d-------- C:\Program Files\Football Championship Screensaver
2008-02-15 13:15 . 2006-06-06 20:38 2,623,675 --a------ C:\WINDOWS\system32\Football Championship Screensaver.scr
2008-02-15 13:15 . 2006-06-06 20:45 2,539 --a------ C:\WINDOWS\system32\Football Championship Screensaver.html
2008-02-14 08:36 . 2008-02-14 08:36 197 --a------ C:\WINDOWS\system32\MRT.INI
2008-02-14 01:19 . 2008-02-14 01:19 <REP> d-------- C:\Documents and Settings\Choquet\Application Data\Yahoo!
2008-02-14 01:19 . 2008-02-14 01:19 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2008-02-14 00:50 . 2008-02-14 00:50 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Trymedia
2008-02-14 00:49 . 2008-02-14 00:51 <REP> d-------- C:\Program Files\Yahoo! Games
2008-02-12 20:53 . 2008-02-16 20:28 <REP> d-------- C:\Program Files\ERUNT
2008-02-12 13:47 . 2008-02-12 15:24 <REP> d-------- C:\WINDOWS\BDOSCAN8
2008-02-12 11:08 . 2008-02-12 11:11 <REP> d-------- C:\Documents and Settings\Choquet\Application Data\LinkedIn
2008-02-12 11:07 . 2008-02-12 11:07 <REP> d-------- C:\Program Files\LinkedIn
2008-02-11 11:41 . 2004-12-08 17:27 32,123 --a------ C:\WINDOWS\system32\drivers\Capt905c.sys
2008-02-11 11:41 . 2004-05-07 15:31 24,382 --a------ C:\WINDOWS\system32\drivers\Camd905c.sys
2008-02-10 19:54 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2008-02-10 19:54 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll
2008-02-10 19:54 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-02-10 08:36 . 2003-06-05 21:13 53,248 --a------ C:\WINDOWS\system32\Process.exe
2008-02-10 07:47 . 2008-02-10 07:47 <REP> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-02-09 21:25 . 2008-02-09 21:25 559,965 --a------ C:\Navilog1.exe
2008-02-09 21:24 . 2008-02-10 08:37 <REP> d-------- C:\Program Files\Navilog1
2008-02-09 13:56 . 2008-02-09 14:04 <REP> d--hsc--- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-02-09 13:54 . 2008-02-09 13:54 <REP> d-------- C:\Program Files\Windows Live
2008-02-09 13:54 . 2008-02-09 13:54 <REP> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-02-09 13:50 . 2008-02-09 13:50 <REP> d-------- C:\Program Files\Kiwee Toolbar2
2008-02-09 13:50 . 2008-02-09 13:55 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kiwee Toolbar2
2008-02-09 09:51 . 2008-02-09 10:11 6,280 --a------ C:\WINDOWS\system32\tmp.reg
2008-02-09 09:15 . 2008-02-09 09:15 <REP> d-------- C:\Program Files\Trend Micro
2008-02-09 01:50 . 2008-02-09 23:43 <REP> d-------- C:\Program Files\Enigma Software Group
2008-02-08 21:13 . 2008-02-06 17:45 19,696 --a------ C:\WINDOWS\system32\drivers\adwarealert.sys
2008-02-08 20:47 . 2008-02-11 02:22 <REP> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2008-02-08 20:43 . 2008-02-16 07:39 <REP> d-------- C:\Documents and Settings\Choquet\Application Data\AdwareAlert
2008-02-08 20:42 . 2008-02-16 07:39 <REP> d-------- C:\Program Files\AdwareAlert
2008-02-08 18:54 . 2008-02-08 18:56 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-02-08 18:53 . 2008-02-08 18:53 <REP> d-------- C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-02-08 15:38 . 2008-02-08 15:38 <REP> d-------- C:\Documents and Settings\Choquet\Application Data\Grisoft
2008-02-08 15:38 . 2008-02-08 15:38 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2008-02-08 15:38 . 2007-05-30 13:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-02-08 15:04 . 2008-02-08 15:04 50 --a------ C:\tmp.bat
2008-02-04 16:17 . 2008-02-04 16:17 0 --a------ C:\WINDOWS\graphedit.INI
2008-02-04 16:10 . 2003-05-03 13:01 61,555 --a------ C:\WINDOWS\system32\jpicpl32.cpl
2008-02-04 15:08 . 2003-04-24 02:00 2 ---hs---- C:\desktop.ini
2008-02-04 14:59 . 2008-02-04 14:59 40 --a------ C:\Auth.prof
2008-01-31 15:20 . 2008-01-31 17:47 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-01-31 15:20 . 2008-01-31 15:20 1,409 --a------ C:\WINDOWS\QTFont.for

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-16 20:15 --------- d-----r C:\Program Files\Logitech
2008-02-16 19:06 74,104 -c--a-w C:\Documents and Settings\Choquet\Application Data\GDIPFONTCACHEV1.DAT
2008-02-13 23:53 --------- d-----w C:\Documents and Settings\All Users\Application Data\MumboJumbo
2008-02-13 23:52 --------- d-----r C:\Program Files\Yahoo!
2008-02-12 13:31 --------- d-----r C:\Program Files\MSN Messenger
2008-02-12 07:57 --------- d-----w C:\Program Files\Microsoft ActiveSync
2008-02-11 10:41 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-02-10 23:12 --------- d-----r C:\Program Files\Random House, Inc
2008-02-10 23:12 --------- d-----r C:\Program Files\phelios
2008-02-10 23:12 --------- d-----r C:\Program Files\HPQ
2008-02-10 23:12 --------- d-----r C:\Program Files\HP
2008-02-10 23:12 --------- d-----r C:\Program Files\Google
2008-02-10 23:12 --------- d-----r C:\Program Files\Ganymede
2008-02-10 23:12 --------- d-----r C:\Program Files\Easy Internet signup
2008-02-10 21:17 --------- d-----w C:\Program Files\Overland
2008-02-10 00:53 --------- d-----w C:\Program Files\Windows Live Toolbar
2008-02-08 22:11 --------- d-----w C:\Program Files\iTunes
2008-02-08 17:56 --------- d-----w C:\Program Files\Lavasoft
2008-02-08 17:56 --------- d-----w C:\Documents and Settings\Choquet\Application Data\Lavasoft
2008-02-08 15:24 --------- d-----w C:\Program Files\WordBiz
2008-02-08 15:24 --------- d-----w C:\Program Files\Windows Media Connect 2
2008-02-08 15:24 --------- d-----w C:\Program Files\Wanadoo
2008-02-08 15:24 --------- d-----w C:\Program Files\Virtools Web Player 3.5
2008-02-08 15:23 --------- d-----w C:\Program Files\VideoLAN
2008-02-08 15:23 --------- d-----w C:\Program Files\TLI
2008-02-08 15:23 --------- d-----w C:\Program Files\Synaptics
2008-02-08 15:23 --------- d-----w C:\Program Files\Symantec
2008-02-08 15:23 --------- d-----w C:\Program Files\Superball Arcade
2008-02-08 15:23 --------- d-----w C:\Program Files\Star Ball
2008-02-08 15:23 --------- d-----w C:\Program Files\Sony Corporation
2008-02-08 15:23 --------- d-----w C:\Program Files\Sonic
2008-02-08 15:23 --------- d-----w C:\Program Files\Securitoo
2008-02-08 15:23 --------- d-----w C:\Program Files\Redoubt
2008-02-08 15:23 --------- d-----w C:\Program Files\RecordNow!
2008-02-08 15:23 --------- d-----r C:\Program Files\Services en ligne
2008-02-08 15:22 --------- d-----w C:\Program Files\Real
2008-02-08 15:22 --------- d-----w C:\Program Files\QuickTime
2008-02-08 15:22 --------- d-----w C:\Program Files\quickmov
2008-02-08 15:22 --------- d-----w C:\Program Files\PC Camera
2008-02-08 15:22 --------- d-----w C:\Program Files\Norton AntiVirus
2008-02-08 15:22 --------- d-----w C:\Program Files\Neuf
2008-02-08 15:22 --------- d-----w C:\Program Files\NEC
2008-02-08 15:22 --------- d-----w C:\Program Files\Music Mixer 4
2008-02-08 15:22 --------- d-----w C:\Program Files\MSXML 4.0
2008-02-08 15:21 --------- d-----w C:\Program Files\Microsoft Works
2008-02-08 15:20 --------- d-----w C:\Program Files\Microsoft Encarta
2008-02-08 15:20 --------- d-----w C:\Program Files\Micro Application
2008-02-08 15:20 --------- d-----w C:\Program Files\Ludiclub
2008-02-08 15:20 --------- d-----r C:\Program Files\microsoft frontpage
2008-02-08 15:19 --------- d-----w C:\Program Files\K-Lite Codec Pack
2008-02-08 15:19 --------- d-----w C:\Program Files\Java
2008-02-08 15:19 --------- d-----w C:\Program Files\iPod
2008-02-08 15:18 --------- d-----w C:\Program Files\InterVideo
2008-02-08 15:18 --------- d-----w C:\Program Files\InterActual
2008-02-08 15:18 --------- d-----w C:\Program Files\Intel
2008-02-08 15:18 --------- d-----w C:\Program Files\IncrediMail
2008-02-08 15:15 --------- d-----r C:\Program Files\Hits Collection
2008-02-08 15:15 --------- d-----r C:\Program Files\Hewlett-Packard
2008-02-08 15:13 --------- d-----w C:\Program Files\EACOM
2008-02-08 15:13 --------- d-----w C:\Program Files\EA SPORTS
2008-02-08 15:13 --------- d-----w C:\Program Files\DivX
2008-02-08 15:13 --------- d-----w C:\Program Files\Disney Interactive
2008-02-08 15:13 --------- d-----w C:\Program Files\CONEXANT
2008-02-08 15:13 --------- d-----w C:\Program Files\Common Files
2008-02-08 15:12 --------- d-----w C:\Program Files\Canon
2008-02-08 15:12 --------- d-----w C:\Program Files\Bunny Blast Demo
2008-02-08 15:12 --------- d-----w C:\Pro

Réponse 73 / 117

noctambule28 Messages postés 25275 Date d'inscription Statut Webmaster Dernière intervention 2 874

ok, redemarre le pc, et post un hijackthis , stp

Réponse 74 / 117

emanjamin2002

J'ai redémarré l'ordi et voici le rapport

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:03:49 PM, on 2/16/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe
C:\WINDOWS\System32\hphmon05.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\MMTray.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\MMTray2k.exe
C:\WINDOWS\system32\MMTrayLSI.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\HP Share-to-Web\hpgs2wnf.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\WINDOWS\System32\ElkCtrl.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\HPQ\SHARED\HPQWMI.exe
C:\Program Files\Kiwee Toolbar2\1.2.116\kwtbaim.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\AdwareAlert\AdwareAlert.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Documents and Settings\Choquet\Mes documents\Picture Package Menu\SonyTray.exe
C:\Documents and Settings\Choquet\Mes documents\Picture Package Applications\Residence.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (file missing)
O2 - BHO: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: HP View - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [CamMonitor] C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A
O4 - HKLM\..\Run: [MMTray] MMTray.exe
O4 - HKLM\..\Run: [MMTray2K] MMTray2k.exe
O4 - HKLM\..\Run: [MMTrayLSI] MMTrayLSI.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\System32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [Tweak UI] RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp
O4 - HKLM\..\Run: [KiweeHook] "C:\Program Files\Kiwee Toolbar2\1.2.116\kwtbaim.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BackupNotify] C:\Program Files\HP\Digital Imaging\bin\backupnotify.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [AdwareAlert] C:\Program Files\AdwareAlert\AdwareAlert.exe -boot
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Startup: ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Picture Package Menu.lnk = ?
O4 - Global Startup: Picture Package VCD Maker.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?1c674015c91a44aba22c729f8d68bc75
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?1c674015c91a44aba22c729f8d68bc75
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
O16 - DPF: CabBuilder - http://ak.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw+0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwb0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwb0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwc0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwc0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwd0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwd0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwe0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwe0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwf0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwf0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwg0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwg0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwh0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwh0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwi0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwi0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwj0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwj0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwk0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwk0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwl0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwl0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwm0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwm0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwn0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwn0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwo0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwo0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwp0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwp0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwq0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwq0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwr0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwr0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bws0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bws0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwt0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwt0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwu0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwu0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwv0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwv0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bww0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bww0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwx0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwx0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwy0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwy0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwz0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwz0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: offline-8876480 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O22 - SharedTaskScheduler: (no name) - {747e1fbe-b70f-441d-bbca-6e536c04924a} - (no file)
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett Packard Company - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe

Réponse 75 / 117

noctambule28 Messages postés 25275 Date d'inscription Statut Webmaster Dernière intervention 2 874

relance hijckthis

fait "do a system scan "
coche toutes ces ligneset la et fixchecked.

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (file missing)
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\System32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE
8.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Picture Package Menu.lnk = ?
O4 - Global Startup: Picture Package VCD Maker.lnk = ?
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?1c674015c91a44aba22c729f8d68bc75
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw+0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwb0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwb0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwc0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwc0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwd0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwd0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwe0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwe0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwf0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwf0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwg0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwg0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwh0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwh0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwi0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwi0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwj0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwj0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwk0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwk0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwl0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwl0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwm0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwm0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwn0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwn0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwo0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwo0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwp0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwp0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwq0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwq0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwr0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwr0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bws0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bws0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwt0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwt0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwu0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwu0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwv0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwv0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bww0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bww0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwx0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwx0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwy0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwy0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwz0 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwz0s - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: offline-8876480 - {177CFD0A-AFFB-4F2A-9ACB-41395E0ECA13} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O22 - SharedTaskScheduler: (no name) - {747e1fbe-b70f-441d-bbca-6e536c04924a} - (no file)

repost un hijackthis et dit moi ou en sont tes soucis ?

Réponse 76 / 117

emanjamin2002

Ca a pris un peu de temps mais voici le rapport

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:07:41 PM, on 2/16/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe
C:\WINDOWS\System32\hphmon05.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\MMTray.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\MMTray2k.exe
C:\WINDOWS\system32\MMTrayLSI.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\HP Share-to-Web\hpgs2wnf.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\HPQ\SHARED\HPQWMI.exe
C:\Program Files\Kiwee Toolbar2\1.2.116\kwtbaim.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\AdwareAlert\AdwareAlert.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Documents and Settings\Choquet\Mes documents\Picture Package Menu\SonyTray.exe
C:\Documents and Settings\Choquet\Mes documents\Picture Package Applications\Residence.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: HP View - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.2.116\KiweeIEToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [CamMonitor] C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\HP\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A
O4 - HKLM\..\Run: [MMTray] MMTray.exe
O4 - HKLM\..\Run: [MMTray2K] MMTray2k.exe
O4 - HKLM\..\Run: [MMTrayLSI] MMTrayLSI.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [Tweak UI] RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp
O4 - HKLM\..\Run: [KiweeHook] "C:\Program Files\Kiwee Toolbar2\1.2.116\kwtbaim.exe"
O4 - HKCU\..\Run: [BackupNotify] C:\Program Files\HP\Digital Imaging\bin\backupnotify.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [AdwareAlert] C:\Program Files\AdwareAlert\AdwareAlert.exe -boot
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?1c674015c91a44aba22c729f8d68bc75
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
O16 - DPF: CabBuilder - http://ak.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett Packard Company - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe

Réponse 77 / 117

noctambule28 Messages postés 25275 Date d'inscription Statut Webmaster Dernière intervention 2 874

ok,

tu en es où de tes soucis , plus de nouvelles alertes (normalement non), rien d'autre à signaler ?

Réponse 78 / 117

emanjamin2002

Bonsoir,

En fait tout les petits ICONS en bas a droite ne sont plus la et plus d'alerte toutes les 3 ou 4 minutes. AUssi j'ai remarque la rapidite entre le changement de fenetre. ceci depuis que vous m'avez dit de faire la dernière chose.
En fait, c'est l'ordi que j'ai acheté de mon frère et il n'a jamais tourné aussi bien.
Je suis content. Si c'est terminé, dis moi ce que je peux faire pour mettre mon échange en place. Si c'est une donation, ca sera petit mais je pourrais faire qqch.

Merci. Pour l'instant rien à détecter. Je suis très content et très impressioner par le service. J'aimerai bien devenir un AS comme vous. Est ce possible???

Emmanuel Jamin
emanjamin2002@yahoo.com

Réponse 79 / 117

noctambule28 Messages postés 25275 Date d'inscription Statut Webmaster Dernière intervention 2 874

bonsoir Emmanuel
bon , content que tes soucis aient disparu; il reste quelque bricole à faire pour nettoyer les outils que je t'ai demandé de telecharger

· Télécharge ToolsCleaner de A.Roshtein sur ton Bureau.

http://a-rothstein.changelog.fr/TC/ToolsCleaner2.exe

· Clique sur Recherche et laisse le scan se terminer.
· Clique, sur Suppression pour finaliser.
· Tu peux, si tu le souhaites, te servir des Options facultatives.
· Clique sur Quitter, pour que le rapport puisse se créer.
· Poste moi le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur( C:\).
------------------------
ensuite

Maintenant que ton ordinateur est propre je te conseille de creer un point de restauration comme ca en cas de probleme (virus , plantage ..ect) tu poura tjr revenir en arriere

desactive les restauaration du systeme

demarrer->clic droit sur poste de travail puis propriété

dans l'onglet restauration du system coche desactiver la restauration du systeme, puis appliquer(en bas à droite)

puis decoche, desactiver la restauratiton du systeme, et appliquer

----------------------------------

J'aimerai bien devenir un AS comme vous. Est ce possible???

Alors, je ne suis pas un AS, et loin de là..

si cela , t'interresse d'apprendre une des meilleurs manière est de suivre des topics sur le forum et de poser des questions ( pour cela il existe les MP (message privée ) mais tu ne peux y acceder que si tu es present en tant que membre ( inscrit et logguer en tant que tel)
tu vois la differences entre l'ecriture des pseudo, ç'est visble ainsi, et j'ai vu que tu etais inscrit donc loggue toi, tu pouras avoir acces aux MP
pour en ecrire un il suffit de cliquer sur le pseudo d'une personne.

donc, si cela t'interresse, il est tout à fait possible de te former, c'est long, c'est souvent difficile, mais c'est tout à fait faisable .
en premier, c'est observer, en second, c'est comprendre et apres c'est etre patient , avoir du temps à s'y consacrer.

nous sommes entrain de reflechir pour ouvrir un vrai systeme de formation, donc tu y aurais ta place si tu le veux.

Loggue-toi, et envoi moi un mp, je t'en dirais plus long, en attendant, fait ce que je t'ai donné plus haut

a+

Réponse 80 / 117

emanjamin2002

Encore une fois merci beaucoup. J'apprécie vraiment ton aide. Oui je suis très intéressé pour me former et aussi faire parti de l'association ou bien centre que vous voulez créer. Aussi je suis bilingue anglais. J'ai travaillé aux USA pendans 12 ans. Donc l'anglais pas un problème. Je suis aussi une personne qui adore, si je peux dire, aider les gens et pourquoi je suis intéressé. Je connais pas mal de chose mais très loin de ce que tu fais. Les amis et famille pensent que je suis un genie pour la simple raison qu'ils ne connaissent pratiquement rien. Ce n'est pas le point mais j'ai toujour été intéressé et j"aime apprendre. J'ai déjà appris beaucoup de chose avec tes directions. Seulement le pourquoi derrière ces instructions est inconnues pour moi.
Enfin merci encore. Oui je vais me connecter, observer, apprendre.... Tu peux aussi me contacter si tu veux pour votre centre. Je pourrais surement aider à faire des choses si je ne suis pas reparti aux USA.
Salut
Emmanuel

Voici le rapport

-->- Recherche:

C:\Navilog1.exe: trouvé !
C:\Qoobox: trouvé !
C:\_OtMoveIt: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Navilog1: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Navilog1\Navilog1.lnk: trouvé !
C:\Documents and Settings\Choquet\Bureau\ComboFix.exe: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\SdFix.exe: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\HijackThis.lnk: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\Clean.zip: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\BtFix.zip: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\Btfix: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\SmitFraudfix: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\BTFix\Btfix: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\tar.exe: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\remove.reg: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\pskill.exe: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\LFiles.exe: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\gzip.exe: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\delsiri.cmd: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\delr.cmd: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\del3.cmd: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\del2.cmd: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean.cmd: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\cherche.cmd: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\tar.exe: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\remove.reg: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\pskill.exe: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\LFiles.exe: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\gzip.exe: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\delsiri.cmd: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\delr.cmd: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\del3.cmd: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\del2.cmd: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\clean.cmd: trouvé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\cherche.cmd: trouvé !
C:\Program Files\Navilog1: trouvé !
C:\Program Files\Navilog1\Navilog1.bat: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !
C:\QooBox\Quarantine\C\Combofix: trouvé !

---------------------------------
-->- Suppression:

C:\Navilog1.exe: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Navilog1\Navilog1.lnk: supprimé !
C:\Documents and Settings\Choquet\Bureau\ComboFix.exe: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\SdFix.exe: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\HijackThis.lnk: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\Clean.zip: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\BtFix.zip: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\tar.exe: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\remove.reg: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\pskill.exe: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\LFiles.exe: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\gzip.exe: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\delsiri.cmd: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\delr.cmd: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\del3.cmd: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\del2.cmd: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean.cmd: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\cherche.cmd: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\tar.exe: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\remove.reg: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\pskill.exe: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\LFiles.exe: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\gzip.exe: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\delsiri.cmd: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\delr.cmd: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\del3.cmd: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\del2.cmd: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\clean.cmd: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\clean\clean\cherche.cmd: supprimé !
C:\Program Files\Navilog1\Navilog1.bat: supprimé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé !
C:\Qoobox: supprimé !
C:\_OtMoveIt: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Navilog1: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\Btfix: supprimé !
C:\Documents and Settings\Choquet\Bureau\Software antiVirus\SmitFraudfix: supprimé !
C:\Program Files\Navilog1: supprimé !
C:\Program Files\Trend Micro\HijackThis: supprimé !

Corbeille vidée!
Restauration annulée !
Fichiers temporaires nettoyés !
Point de restauration crée !

Discussions similaires

Trojan Win32 generic

PDM:Trojan.generic.win32 depuis 2 jours

C'est quoi "Win32:Trojan-gen {Other}"

Trojan.Win32.Hosts2.gen

Infection par Trojan.Win32.Bazon.a

Discussions similaires

Newsletters