Fenetres intempestives - cid et ~~ .

Résolu
Utilisateur anonyme -  
 Utilisateur anonyme -
Bonjour,

donc re

fenetre intempestives avec ce signe la devant ~~ et cid de temps en temps mai les plus courantes sont celle-ci (~) des fois ya http:// apres le signe .

je re jeudi sur le forum a+

( dlld ) je revien t'embeter .
Configuration: Windows XP
Internet Explorer 7.0

44 réponses

  • 1
  • 2
  • 3
Résumé de la discussion

Des fenêtres intempestives et des rapports de détection sous Windows XP avec Internet Explorer 7 nécessitent l’usage de HijackThis pour identifier les éléments indésirables pertinents.
Plusieurs répondants décrivent des étapes techniques pour générer et exploiter les rapports, créer le dossier c:\hijackthis, lancer des utilitaires et sauvegarder le registre, tout en proposant des antivirus et pare-feu gratuits.
En cas de persistance des soucis, il est recommandé de générer un nouveau rapport HijackThis et de réaliser une vérification approfondie des éléments détectés avant toute suppression majeure.

Généré automatiquement par IA
sur la base des meilleures réponses
  1. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    slt,

    colle un rapport hijackthis

    http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download

    manuel :

    https://leblogdeclaude.blogspot.com/2006/10/informatique-section-hijackthis.html

    Je conseille de renomer Hijackthis, pour contrer une éventuelle infection de Vundo.

    ex:Renomme le fichier HijackThis.exe en eden.exe pour cela, fais un clic droit sur le fichier HijackThis.exe et choisis renommer dans la liste

    Ensuite avec Explorer créer un dossier c:\hijackthis
    Décompresser Hijackthis dans ce dossier.
    C'est important pour les sauvegardes."
    ____________

    Télécharge ceci: (by Moe) :

    http://sosvirus.changelog.fr/Green_day/Lopxpsetup.exe

    Double clic sur Lopxpsetup.exe pour lancer l'installation
    Au menu, choisir l'option 1
    Patienter jusqu'à que l'on demande d'appuyer sur une touche, appuyer !
    Une rapport sera alors crée, à copie/colle en entier sur le forum.
    0
  2. Utilisateur anonyme
     
    Ensuite avec Explorer créer un dossier c:\hijackthis
    Décompresser Hijackthis dans ce dossier.
    C'est important pour les sauvegardes."
    ____________
    c'est a dire avec inter net explorer ?? marche a suivre pour creer un dossier avec inter net explorer ??

    je fais comment je copie/colle sur le bureau ? c sa ?
    0
  3. Utilisateur anonyme
     
    ben moi sur le bureau j'ai pas comme sur l'explication ya pas un ordi sur le bureau apres le telechargement jai directement l'icone de hijackthis

    et un fesant clic droit j'ais pas renommer dans liste mais j'ais juste renommer.
    j'ai quand meme renommer en eden.exe pour la suite je comprend pas commen faire :

    ((((( Ensuite avec Explorer créer un dossier c:\hijackthis
    Décompresser Hijackthis dans ce dossier.
    C'est important pour les sauvegardes." ))))
    0
  4. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  5. Utilisateur anonyme
     
    voila le rapport
    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 12:07:42, on 19/03/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16608)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\csrss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Spyware Doctor\pctsTray.exe
    C:\Program Files\Analog Devices\SoundMAX\smax4.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
    C:\Program Files\Google\Google Updater\GoogleUpdater.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\Program Files\Spyware Doctor\pctsAuxs.exe
    C:\Program Files\Spyware Doctor\pctsSvc.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\System32\alg.exe
    C:\Program Files\Spyware Doctor\update.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
    C:\WINDOWS\system32\wbem\wmiprvse.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
    O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll (file missing)
    O3 - Toolbar: SYSTRAN Web Translator 5.0 - {A5899B52-3AF9-4F56-85FE-AD7B3BE8490F} - C:\Program Files\SYSTRAN\5.0\Personal\IEPlugIn.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
    O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll (file missing)
    O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
    O4 - HKLM\..\Run: [SoundMax] "C:\Program Files\Analog Devices\SoundMAX\smax4.exe" /tray
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Barre d'état système d'ATI CATALYST.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
    O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxentelechargement.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://jeuxenligne.orange.fr/GameShell/online/fr/insaniquarium/popcaploader_v6.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{D2AB68D6-5A6C-41DB-B3DF-AEC8592B27D8}: NameServer = 192.168.1.1
    O18 - Protocol: bw+0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: offline-8876480 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing)
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
    O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    0
  6. Utilisateur anonyme
     
    suite

    # Rapport Lopxp fait le 19/03/2008 à 12:28:38
    # Exécuté dans : C:\Program Files\Lopxp
    # Version 3.09 - Maj du 28/02/2008

    Killing 'iexplore.exe'
    "C:\Program Files\Internet Explorer\iexplore.exe" (2284)

    ========== Listing des dossiers Application Data

    +- C:\Documents and Settings\All Users\Application Data

    2007-11-30 à 10:56:41 - Adobe
    2007-11-24 à 18:08:31 - Ahead
    2007-12-17 à 14:22:41 - Aliasworlds
    2007-12-12 à 12:54:37 - BOONTY
    2007-11-24 à 17:54:02 - Brother
    2008-02-04 à 21:09:51 - BufferZone
    2007-12-12 à 13:13:55 - Friends Games
    2008-03-12 à 19:00:41 - Google
    2008-03-18 à 11:44:39 - Google Updater
    2007-11-24 à 17:55:10 - InstallShield
    2007-11-24 à 20:18:23 - Jump Poll Poke Mp3
    2008-02-29 à 12:42:09 - Messenger Plus!
    2008-02-05 à 18:41:10 - Microsoft
    2007-12-02 à 19:32:45 - PopCap
    2007-12-03 à 00:48:43 - PrettyGoodGames
    2007-11-24 à 17:55:00 - ScanSoft
    2008-02-25 à 15:18:57 - Spybot - Search & Destroy
    2007-11-24 à 19:57:07 - Symantec
    2008-03-18 à 11:51:19 - TEMP
    2007-11-29 à 13:41:49 - TERMINAL Studio
    2008-01-05 à 21:44:24 - Trymedia
    2008-02-17 à 14:43:01 - TVU networks
    2008-02-16 à 18:48:49 - Windows Genuine Advantage
    2007-11-25 à 10:14:25 - WLInstaller
    2007-12-26 à 17:20:09 - Zylom

    +- C:\Documents and Settings\marie-jeanne garcia\Application Data

    2008-02-04 à 21:14:13 - Adobe
    2007-11-30 à 11:00:09 - AdobeUM
    2007-12-01 à 18:30:05 - Ahead
    2007-11-24 à 18:37:25 - ATI
    2008-03-03 à 11:03:25 - EoRezo
    2007-11-26 à 11:26:53 - Google
    2008-01-26 à 12:31:29 - Help
    2008-01-04 à 10:17:44 - Home Sweet Home
    2007-12-28 à 18:26:47 - Identities
    2008-03-03 à 10:50:53 - ItsLabel
    2008-03-13 à 17:42:32 - ma-config(2).com
    2008-03-13 à 17:42:32 - ma-config.com
    2008-01-12 à 10:13:11 - Macromedia
    2008-01-12 à 10:44:15 - Microsoft
    2008-03-03 à 14:45:16 - Mozilla
    2008-03-14 à 08:20:50 - OpenOffice.org2
    2008-03-03 à 11:12:52 - PC Tools
    2008-02-28 à 12:01:44 - ScanSoft
    2007-11-26 à 19:04:18 - SecuROM
    2008-01-24 à 20:52:57 - Serious Solitaire
    2008-01-26 à 12:26:01 - Seven Zip
    2007-11-26 à 11:29:13 - Sun
    2007-11-24 à 19:06:17 - Symantec
    2008-03-03 à 14:45:35 - Talkback
    2008-03-18 à 12:19:09 - temp
    2007-11-24 à 20:18:48 - titleboltmeow
    2008-02-17 à 14:43:01 - TVU networks
    2007-11-24 à 19:40:53 - vlc
    2007-12-28 à 19:06:39 - Zylom

    +- C:\Documents and Settings\marie-jeanne garcia\Local Settings\Application Data

    2007-11-29 à 10:17:00 - Adobe
    2007-12-01 à 15:26:36 - Ahead
    2008-03-05 à 12:28:51 - ApplicationHistory
    2007-11-24 à 18:37:25 - ATI
    2007-12-31 à 13:29:29 - Downloaded Installations
    2008-02-06 à 13:18:43 - FamilyRestaurant
    2008-02-15 à 19:13:07 - free-downloads.net
    2008-03-03 à 14:59:40 - Google
    2008-01-26 à 12:08:32 - Help
    2007-12-05 à 00:57:12 - Identities
    2008-03-09 à 12:55:37 - Microsoft
    2008-03-03 à 14:45:16 - Mozilla
    2008-01-07 à 15:57:53 - PCHealth
    2007-12-03 à 00:48:43 - PrettyGoodGames
    2008-02-16 à 18:48:35 - WMTools Downloaded Files

    ========== Listing du dossier Program Files

    +- C:\Program Files

    2007-11-24 à 18:58:40 - Adobe
    2008-02-28 à 14:30:57 - AI - Series
    2007-11-24 à 20:40:29 - Alwil Software
    2007-11-24 à 18:56:55 - AMD
    2008-02-28 à 14:25:32 - Analog Devices
    2008-02-28 à 14:30:45 - ASUS
    2008-02-28 à 13:17:04 - ATI Technologies
    2007-11-29 à 16:46:26 - Brother
    2008-02-28 à 15:12:55 - Common Files
    2007-11-24 à 17:38:54 - ComPlus Applications
    2008-02-12 à 20:22:57 - EA SPORTS
    2007-12-31 à 13:25:20 - Electronic Arts
    2008-03-15 à 11:06:58 - eMule
    2008-03-13 à 17:42:38 - EoRezo
    2008-02-29 à 08:07:49 - Fichiers communs
    2008-02-22 à 16:20:08 - Gamenext
    2008-02-22 à 16:03:56 - GamesBar
    2008-03-13 à 17:42:37 - Google
    2008-03-14 à 19:10:17 - InstallShield Installation Information
    2008-02-15 à 19:09:51 - Internet Explorer
    2008-02-25 à 15:41:37 - Java
    2007-11-24 à 18:14:42 - Logitech
    2008-03-19 à 11:28:42 - Lopxp
    2008-03-13 à 17:42:32 - ma-config(2).com
    2008-03-13 à 17:42:32 - ma-config.com
    2008-02-06 à 05:41:44 - Messenger Plus! Live
    2008-01-12 à 10:53:06 - Microsoft Encarta
    2007-11-24 à 17:42:12 - microsoft frontpage
    2008-03-14 à 19:10:18 - Monte Cristo
    2007-11-24 à 17:39:32 - Movie Maker
    2007-11-24 à 17:38:10 - MSN Gaming Zone
    2007-11-24 à 23:22:35 - MSXML 4.0
    2007-11-24 à 21:07:55 - Nero
    2007-11-24 à 17:39:47 - NetMeeting
    2008-03-14 à 14:00:00 - Norton Security Scan
    2008-01-28 à 09:29:15 - OpenOffice.org 2.0
    2008-01-04 à 13:16:26 - orange
    2007-11-24 à 20:17:46 - Outlook Express
    2008-03-03 à 10:50:54 - PhotoFiltre Studio
    2008-03-03 à 11:07:16 - Picasa2
    2008-01-26 à 00:27:01 - QuickTime
    2007-11-24 à 17:55:00 - ScanSoft
    2008-03-03 à 23:57:16 - scrabbleproB1.0.7
    2007-11-24 à 17:40:32 - Services en ligne
    2008-01-18 à 12:46:22 - SLD Codec Pack
    2008-02-16 à 18:58:28 - SopCast
    2008-03-18 à 11:51:33 - Spyware Doctor
    2007-11-24 à 18:21:44 - SYSTRAN
    2008-03-12 à 18:28:25 - The Rise of Atlantis
    2008-01-25 à 10:42:43 - tout mes programmes
    2008-03-19 à 11:07:29 - Trend Micro
    2008-02-17 à 13:16:52 - TVAnts
    2008-03-14 à 08:21:21 - TVUPlayer
    2007-11-24 à 17:48:48 - Uninstall Information
    2007-11-24 à 18:44:03 - VIA
    2007-11-24 à 19:40:22 - VideoLAN
    2008-01-21 à 17:37:56 - VirtualDJ
    2007-12-19 à 17:23:55 - Windows Live
    2008-02-29 à 10:44:24 - Windows Live Safety Center
    2007-11-26 à 18:52:35 - Windows Live Toolbar
    2008-02-16 à 18:45:48 - Windows Media Player
    2007-11-24 à 17:38:03 - Windows NT
    2007-11-24 à 17:40:35 - WindowsUpdate
    2007-11-25 à 23:39:18 - WinRAR
    2007-11-24 à 17:42:12 - xerox

    ========== Tâches planifiées

    Norton Security Scan.job: C:\Program Files\Norton Security Scan\Nss.exe /scan-full /scheduled

    ========== Clés registre

    ========== Bloqueur popups Internet Explorer

    www.skyrock.com
    x-jenniifer-08-x.skyrock.com
    ox-fredou-xo.skyrock.com
    chouquette62520.skyrock.com
    giulythebest.skyrock.com
    alonespirit.skyrock.com
    0-xx-ti-ti-xx-0.skyrock.com
    nounez.skyrock.com
    superpeace4luv4ever.skyrock.com
    denisleboss93.skyrock.com
    *.skyrock.com
    secure.orange.fr
    www.acrostiches.com
    www.lepuzzle.com
    www.meteofrance.com
    forum.live-foot.com
    www.planete-nokia.com
    *.mail.live.com
    www.newrock-vetement-gothique-metal.fr
    *.fr.shopping.com
    www.twenga.fr
    www.ocharm.com
    www.webmarchand.com
    www.boutique-auroyaumedumariage.com
    www.leguide.net

    ========== Suggestion ( /!\ Nécessite une interprétation.) ==========

    C:\Documents and Settings\All Users\Application Data\Jump Poll Poke Mp3
    C:\Documents and Settings\marie-jeanne garcia\Application Data\titleboltmeow

    +- Registre : Aucune suggestion.

    - Fin du rapport -
    0
  7. Utilisateur anonyme
     
    au fait fo pas les faires en mode sans echec ses deux la car je les ais fais en mode normal
    0
  8. Utilisateur anonyme
     
    j'ai sur le bureau les deux raccourcis maintenant (hijackthis et eden.exe lol ( mistere et boule de gum )
    0
  9. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    tu lance hijakchits en cliquant sur eden et tu me colle le rapport!!!!

    ____________
    va dans : Démarrer > Exécuter puis copie/colle la ligne suivante en gras :
    "%programfiles%\Lopxp\Lopxp.bat" /Fixme
    puis valide, accepte toutes les demandes de suppression et poste le rapport stp

    a plus
    0
  10. Utilisateur anonyme
     
    --
    la mechanceté estLogfile of Trend Micro HijackThis v2.0.2
    Scan saved at 21:30:42, on 19/03/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16608)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\csrss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Spyware Doctor\pctsTray.exe
    C:\Program Files\Analog Devices\SoundMAX\smax4.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
    C:\Program Files\Google\Google Updater\GoogleUpdater.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\Program Files\Spyware Doctor\pctsAuxs.exe
    C:\Program Files\Spyware Doctor\pctsSvc.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\System32\alg.exe
    C:\Program Files\Spyware Doctor\update.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
    C:\WINDOWS\system32\wbem\wmiprvse.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
    O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll (file missing)
    O3 - Toolbar: SYSTRAN Web Translator 5.0 - {A5899B52-3AF9-4F56-85FE-AD7B3BE8490F} - C:\Program Files\SYSTRAN\5.0\Personal\IEPlugIn.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
    O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll (file missing)
    O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
    O4 - HKLM\..\Run: [SoundMax] "C:\Program Files\Analog Devices\SoundMAX\smax4.exe" /tray
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [DWQueuedReporting] "C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Barre d'état système d'ATI CATALYST.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
    O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxentelechargement.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://jeuxenligne.orange.fr/GameShell/online/fr/insaniquarium/popcaploader_v6.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{D2AB68D6-5A6C-41DB-B3DF-AEC8592B27D8}: NameServer = 192.168.1.1
    O18 - Protocol: bw+0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: offline-8876480 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing)
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
    O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    0
  11. Utilisateur anonyme
     
    --
    la mechanceté estLogfile of Trend Micro HijackThis v2.0.2
    Scan saved at 21:30:42, on 19/03/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16608)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\csrss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Spyware Doctor\pctsTray.exe
    C:\Program Files\Analog Devices\SoundMAX\smax4.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
    C:\Program Files\Google\Google Updater\GoogleUpdater.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\Program Files\Spyware Doctor\pctsAuxs.exe
    C:\Program Files\Spyware Doctor\pctsSvc.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\System32\alg.exe
    C:\Program Files\Spyware Doctor\update.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
    C:\WINDOWS\system32\wbem\wmiprvse.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
    O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll (file missing)
    O3 - Toolbar: SYSTRAN Web Translator 5.0 - {A5899B52-3AF9-4F56-85FE-AD7B3BE8490F} - C:\Program Files\SYSTRAN\5.0\Personal\IEPlugIn.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
    O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll (file missing)
    O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
    O4 - HKLM\..\Run: [SoundMax] "C:\Program Files\Analog Devices\SoundMAX\smax4.exe" /tray
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [DWQueuedReporting] "C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Barre d'état système d'ATI CATALYST.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
    O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxentelechargement.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://jeuxenligne.orange.fr/GameShell/online/fr/insaniquarium/popcaploader_v6.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{D2AB68D6-5A6C-41DB-B3DF-AEC8592B27D8}: NameServer = 192.168.1.1
    O18 - Protocol: bw+0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: offline-8876480 - {45ACC849-32E8-4560-8F90-6F6DAB0C1636} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing)
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
    O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    0
  12. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    va dans : Démarrer > Exécuter puis copie/colle la ligne suivante en gras :
    "%programfiles%\Lopxp\Lopxp.bat" /Fixme
    puis valide, accepte toutes les demandes de suppression et poste le rapport stp

    ______________

    colle le rapport d'un scan en ligne
    avec un des suivants:

    bitdefender en ligne :
    http://www.bitdefender.fr/scan_fr/scan8/ie.html

    Panda en ligne :
    http://pandasoftware.fr

    Kaspersky en ligne
    https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr

    secuser en ligne :
    http://www.secuser.com/outils/antivirus.htm
    0
  13. Utilisateur anonyme
     
    # Rapport Lopxp fait le 19/03/2008 à 21:35:46
    # Exécuté dans : C:\Program Files\Lopxp
    # Version 3.09 - Maj du 28/02/2008

    ========== FixLog ==========

    +- Fichiers temporaires :
    Nettoyage effectué.

    ========== Listing des dossiers Application Data

    +- C:\Documents and Settings\All Users\Application Data

    2007-11-30 à 10:56:41 - Adobe
    2007-11-24 à 18:08:31 - Ahead
    2007-12-17 à 14:22:41 - Aliasworlds
    2007-12-12 à 12:54:37 - BOONTY
    2007-11-24 à 17:54:02 - Brother
    2008-02-04 à 21:09:51 - BufferZone
    2007-12-12 à 13:13:55 - Friends Games
    2008-03-12 à 19:00:41 - Google
    2008-03-19 à 12:44:45 - Google Updater
    2007-11-24 à 17:55:10 - InstallShield
    2008-02-29 à 12:42:09 - Messenger Plus!
    2008-02-05 à 18:41:10 - Microsoft
    2007-12-02 à 19:32:45 - PopCap
    2007-12-03 à 00:48:43 - PrettyGoodGames
    2007-11-24 à 17:55:00 - ScanSoft
    2008-02-25 à 15:18:57 - Spybot - Search & Destroy
    2007-11-24 à 19:57:07 - Symantec
    2008-03-18 à 11:51:19 - TEMP
    2007-11-29 à 13:41:49 - TERMINAL Studio
    2008-01-05 à 21:44:24 - Trymedia
    2008-02-17 à 14:43:01 - TVU networks
    2008-02-16 à 18:48:49 - Windows Genuine Advantage
    2007-11-25 à 10:14:25 - WLInstaller
    2007-12-26 à 17:20:09 - Zylom

    +- C:\Documents and Settings\marie-jeanne garcia\Application Data

    2008-02-04 à 21:14:13 - Adobe
    2007-11-30 à 11:00:09 - AdobeUM
    2007-12-01 à 18:30:05 - Ahead
    2007-11-24 à 18:37:25 - ATI
    2008-03-03 à 11:03:25 - EoRezo
    2007-11-26 à 11:26:53 - Google
    2008-01-26 à 12:31:29 - Help
    2008-01-04 à 10:17:44 - Home Sweet Home
    2007-12-28 à 18:26:47 - Identities
    2008-03-03 à 10:50:53 - ItsLabel
    2008-03-13 à 17:42:32 - ma-config(2).com
    2008-03-13 à 17:42:32 - ma-config.com
    2008-01-12 à 10:13:11 - Macromedia
    2008-01-12 à 10:44:15 - Microsoft
    2008-03-03 à 14:45:16 - Mozilla
    2008-03-14 à 08:20:50 - OpenOffice.org2
    2008-03-03 à 11:12:52 - PC Tools
    2008-02-28 à 12:01:44 - ScanSoft
    2007-11-26 à 19:04:18 - SecuROM
    2008-01-24 à 20:52:57 - Serious Solitaire
    2008-01-26 à 12:26:01 - Seven Zip
    2007-11-26 à 11:29:13 - Sun
    2007-11-24 à 19:06:17 - Symantec
    2008-03-03 à 14:45:35 - Talkback
    2008-03-19 à 12:40:10 - temp
    2008-02-17 à 14:43:01 - TVU networks
    2007-11-24 à 19:40:53 - vlc
    2007-12-28 à 19:06:39 - Zylom

    +- C:\Documents and Settings\marie-jeanne garcia\Local Settings\Application Data

    2007-11-29 à 10:17:00 - Adobe
    2007-12-01 à 15:26:36 - Ahead
    2008-03-05 à 12:28:51 - ApplicationHistory
    2007-11-24 à 18:37:25 - ATI
    2007-12-31 à 13:29:29 - Downloaded Installations
    2008-02-06 à 13:18:43 - FamilyRestaurant
    2008-02-15 à 19:13:07 - free-downloads.net
    2008-03-03 à 14:59:40 - Google
    2008-01-26 à 12:08:32 - Help
    2007-12-05 à 00:57:12 - Identities
    2008-03-09 à 12:55:37 - Microsoft
    2008-03-03 à 14:45:16 - Mozilla
    2008-01-07 à 15:57:53 - PCHealth
    2007-12-03 à 00:48:43 - PrettyGoodGames
    2008-02-16 à 18:48:35 - WMTools Downloaded Files

    ========== Listing du dossier Program Files

    +- C:\Program Files

    2007-11-24 à 18:58:40 - Adobe
    2008-02-28 à 14:30:57 - AI - Series
    2007-11-24 à 20:40:29 - Alwil Software
    2007-11-24 à 18:56:55 - AMD
    2008-02-28 à 14:25:32 - Analog Devices
    2008-02-28 à 14:30:45 - ASUS
    2008-02-28 à 13:17:04 - ATI Technologies
    2007-11-29 à 16:46:26 - Brother
    2008-02-28 à 15:12:55 - Common Files
    2007-11-24 à 17:38:54 - ComPlus Applications
    2008-02-12 à 20:22:57 - EA SPORTS
    2007-12-31 à 13:25:20 - Electronic Arts
    2008-03-15 à 11:06:58 - eMule
    2008-03-13 à 17:42:38 - EoRezo
    2008-02-29 à 08:07:49 - Fichiers communs
    2008-02-22 à 16:20:08 - Gamenext
    2008-02-22 à 16:03:56 - GamesBar
    2008-03-13 à 17:42:37 - Google
    2008-03-14 à 19:10:17 - InstallShield Installation Information
    2008-02-15 à 19:09:51 - Internet Explorer
    2008-02-25 à 15:41:37 - Java
    2007-11-24 à 18:14:42 - Logitech
    2008-03-19 à 20:35:54 - Lopxp
    2008-03-13 à 17:42:32 - ma-config(2).com
    2008-03-13 à 17:42:32 - ma-config.com
    2008-02-06 à 05:41:44 - Messenger Plus! Live
    2008-01-12 à 10:53:06 - Microsoft Encarta
    2007-11-24 à 17:42:12 - microsoft frontpage
    2008-03-14 à 19:10:18 - Monte Cristo
    2007-11-24 à 17:39:32 - Movie Maker
    2007-11-24 à 17:38:10 - MSN Gaming Zone
    2007-11-24 à 23:22:35 - MSXML 4.0
    2007-11-24 à 21:07:55 - Nero
    2007-11-24 à 17:39:47 - NetMeeting
    2008-03-14 à 14:00:00 - Norton Security Scan
    2008-01-28 à 09:29:15 - OpenOffice.org 2.0
    2008-01-04 à 13:16:26 - orange
    2007-11-24 à 20:17:46 - Outlook Express
    2008-03-03 à 10:50:54 - PhotoFiltre Studio
    2008-03-03 à 11:07:16 - Picasa2
    2008-01-26 à 00:27:01 - QuickTime
    2007-11-24 à 17:55:00 - ScanSoft
    2008-03-03 à 23:57:16 - scrabbleproB1.0.7
    2007-11-24 à 17:40:32 - Services en ligne
    2008-01-18 à 12:46:22 - SLD Codec Pack
    2008-02-16 à 18:58:28 - SopCast
    2008-03-18 à 11:51:33 - Spyware Doctor
    2007-11-24 à 18:21:44 - SYSTRAN
    2008-03-12 à 18:28:25 - The Rise of Atlantis
    2008-01-25 à 10:42:43 - tout mes programmes
    2008-03-19 à 11:07:29 - Trend Micro
    2008-02-17 à 13:16:52 - TVAnts
    2008-03-14 à 08:21:21 - TVUPlayer
    2007-11-24 à 17:48:48 - Uninstall Information
    2007-11-24 à 18:44:03 - VIA
    2007-11-24 à 19:40:22 - VideoLAN
    2008-01-21 à 17:37:56 - VirtualDJ
    2007-12-19 à 17:23:55 - Windows Live
    2008-02-29 à 10:44:24 - Windows Live Safety Center
    2007-11-26 à 18:52:35 - Windows Live Toolbar
    2008-02-16 à 18:45:48 - Windows Media Player
    2007-11-24 à 17:38:03 - Windows NT
    2007-11-24 à 17:40:35 - WindowsUpdate
    2007-11-25 à 23:39:18 - WinRAR
    2007-11-24 à 17:42:12 - xerox

    ========== Tâches planifiées

    Norton Security Scan.job: C:\Program Files\Norton Security Scan\Nss.exe /scan-full /scheduled

    ========== Clés registre

    ========== Bloqueur popups Internet Explorer

    www.skyrock.com
    x-jenniifer-08-x.skyrock.com
    ox-fredou-xo.skyrock.com
    chouquette62520.skyrock.com
    giulythebest.skyrock.com
    alonespirit.skyrock.com
    0-xx-ti-ti-xx-0.skyrock.com
    nounez.skyrock.com
    superpeace4luv4ever.skyrock.com
    denisleboss93.skyrock.com
    *.skyrock.com
    secure.orange.fr
    www.acrostiches.com
    www.lepuzzle.com
    www.meteofrance.com
    forum.live-foot.com
    www.planete-nokia.com
    *.mail.live.com
    www.newrock-vetement-gothique-metal.fr
    *.fr.shopping.com
    www.twenga.fr
    www.ocharm.com
    www.webmarchand.com
    www.boutique-auroyaumedumariage.com
    www.leguide.net
    webmail26.orange.fr
    webmail1a.orange.fr

    ========== Suggestion ( /!\ Nécessite une interprétation.) ==========

    +- Dossiers\Fichiers : Aucune suggestion.

    +- Registre : Aucune suggestion.

    - Fin du rapport -
    0
  14. Utilisateur anonyme
     
    bonsoir desolee voila le rapport Wednesday, March 19, 2008 11:54:11 PM
    Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
    Kaspersky On-line Scanner version : 5.0.83.0
    Dernière mise à jour de la base antivirus Kaspersky : 19/03/2008
    Enregistrements dans la base antivirus Kaspersky : 579129

    Paramètres d'analyse
    Analyser avec la base antivirus suivante standard
    Analyser les archives vrai
    Analyser les bases de messagerie vrai

    Cible de l'analyse Poste de travail
    A:\
    C:\
    D:\
    F:\

    Statistiques de l'analyse
    Total d'objets analysés 78393
    Nombre de virus trouvés 0
    Nombre d'objets infectés 0 / 0
    Nombre d'objets suspects 0
    Durée de l'analyse 00:52:48

    Nom de l'objet infecté Nom du virus Dernière action
    C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré

    C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré

    C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré

    C:\Documents and Settings\marie-jeanne garcia\Cookies\index.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\marie-jeanne garcia\Local Settings\Application Data\ApplicationHistory\cli.exe.c88dbd71.ini.inuse L'objet est verrouillé ignoré

    C:\Documents and Settings\marie-jeanne garcia\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\marie-jeanne garcia\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\marie-jeanne garcia\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré

    C:\Documents and Settings\marie-jeanne garcia\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\marie-jeanne garcia\Local Settings\Temp\Perflib_Perfdata_1f0.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\marie-jeanne garcia\Local Settings\Temp\Perflib_Perfdata_c8.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\marie-jeanne garcia\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\marie-jeanne garcia\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\marie-jeanne garcia\ntuser.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\marie-jeanne garcia\NTUSER.DAT.LOG L'objet est verrouillé ignoré

    C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré

    C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré

    C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré

    C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré

    C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat L'objet est verrouillé ignoré

    C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db L'objet est verrouillé ignoré

    C:\Program Files\Alwil Software\Avast4\DATA\integ\avast.int L'objet est verrouillé ignoré

    C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws L'objet est verrouillé ignoré

    C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log L'objet est verrouillé ignoré

    C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log L'objet est verrouillé ignoré

    C:\Program Files\Alwil Software\Avast4\DATA\report\Protection résidente.txt L'objet est verrouillé ignoré

    C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré

    C:\System Volume Information\_restore{C0D12BE2-5467-4ABB-B115-F2A400CDC950}\RP214\change.log L'objet est verrouillé ignoré

    C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré

    C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré

    C:\WINDOWS\SoftwareDistribution\EventCache\{4AC98281-425D-4322-9C22-F74DE4A66060}.bin L'objet est verrouillé ignoré

    C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré

    C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré

    C:\WINDOWS\system32\CatRoot2\edb.log L'objet est verrouillé ignoré

    C:\WINDOWS\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\ACEEvent.evt L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\Antivirus.Evt L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\Internet.evt L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré

    C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré

    C:\WINDOWS\system32\drivers\sptd.sys L'objet est verrouillé ignoré

    C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré

    C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré

    C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré

    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré

    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré

    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré

    C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré

    C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré

    C:\WINDOWS\Temp\Perflib_Perfdata_568.dat L'objet est verrouillé ignoré

    C:\WINDOWS\Temp\_avast4_\Webshlock.txt L'objet est verrouillé ignoré

    C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré

    C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré

    C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré

    D:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré

    Analyse terminée.

    0
  15. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    tu as encore des pubs?
    0
  16. midoy10 Messages postés 41 Statut Membre 3
     
    dans mon pc un mesage dit :

    system error
    your system in infected by unknown trojan
    click ok to download un antispyware (recomended)

    je telecharge avg antispyware mais il ne peut pas effacer cette message qui s'ouvre en tout application et en tout chose merde je ne cepas comment je l'effacer .

    remarque: mon antivirus c'est Avg antivirus

    aider moi ............!!!!!!!!!!!!!!!!!!!
    0
  17. Utilisateur anonyme
     
    oui toujours le meme signe (~ ) devant en plus yen a une qui se met en ( ~ http:// ) et qui me deconnecte inter net comme si la page etait introuvable mais c'est une page entempestive .
    0
  18. Utilisateur anonyme
     
    midoy 10

    ouvre un poste avec ton probleme les helpers irons te repondre la bas stp .
    0
  19. Utilisateur anonyme
     
    midoy10

    ils sont vraiment bien ils viendron t'aider sois en sur .
    0
  • 1
  • 2
  • 3