PUB CID ... Résolu

Question

Bonjour,
Voila je suis depuis un bon moment infesté par ces pubs intempestives et en ayant fait de nombreuses recherches je me rends compte que seul je n'arriverai jamais a m'en debarrasser . Je remarque aussi qu'il y a plusieurs méthode (plusieur scan avec plusieur logiciel) et j'aimerais que vous puissiez m'aider . Ca provient de l'installation de sponsor MSN (l'ordi est utilisé par plusieurs personne :/ ) parce que j'ai vu aussi que les pub Cid pouvait venir aussi d'installation d'autre logiciel .
MERCI de bien vouloir m'aider :)

geoffrey5 · Answer

Salut !!

Télécharger et enregistrer sur le Bureau LopSD : https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

 
= Double-clic Lop S&D 
= Faire l'installation 
Fermer toutes les applications 
= Le lancer par un double-clic sur le raccourci qui est sur le bureau 
Avec VISTA => clic-droit et => Exécuter en tant qu'administrateur 
= Taper F pour français , puis presser entrée 
= Taper 1 
= Presser Entrée 
= Le PC va redémarrer 
Note= si l'antivirus annonce une infection dans TEMP , l'ignorer 
= Attendre l'apparition du rapport 
Copier le rapport et le coller dans la réponse 
le rapport se trouve aussi à C:\lopR 
--------- 
Relancer Lop S&D 

= Choisir cette fois 2 


note: 
Si le Bureau ne réapparait pas 
= Presser Ctrl Alt Suppr 
= Dans Fichier => Nouvelle tâche 
=> Ecrire: explorer => entrée 

ensuite :

Télécharge  hijackthis : http://www.trendsecure.com/portal/en-US/_download/HiJackThis.exe 

voici un tuto pour bien l installer : https://forums.cnetfrance.fr

-une fois installé, le renommer HJT.exe pour contrer une éventuelle infection vundo
-Double-clic dessus 
- Clic sur "Do a system scan and save the log" 
- copier le rapport, le coller dans la réponse

RusKoVv · Answer

-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : yoyo ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 16/07/2008 | 13:34:27,17 ] [ PC : PC-000000000 ]
[ MAJ : 09-07-2008 | 21:02 ]

-------------[ Listing des dossiers dans Application Data ]------------

[17/05/2008|17:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[19/08/2005|18:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[12/06/2007|17:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ante Grim Nurb Soft
[12/07/2008|18:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[19/08/2005|18:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[19/08/2005|19:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[01/11/2006|11:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[01/02/2008|12:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[27/03/2008|12:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[12/07/2008|20:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[01/06/2007|19:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[09/07/2008|16:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[17/07/2007|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
[13/07/2008|21:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[15/01/2006|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[19/08/2005|18:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[11/07/2008|14:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns
[15/04/2006|13:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[07/12/2005|15:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[19/08/2005|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[01/07/2008|19:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[15/01/2006|14:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[15/01/2006|21:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[19/08/2005|19:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe
[19/08/2005|18:49] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Ahead
[07/12/2005|15:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\AOL
[05/10/2005|09:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\CyberLink
[19/08/2005|19:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[11/07/2008|20:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Desperate Housewives
[19/08/2005|17:39] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[19/08/2005|18:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[05/10/2005|09:29] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[19/08/2005|18:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[19/08/2005|18:32] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[07/12/2005|15:28] C:\DOCUME~1\DEFAUL~1\APPLIC~1\sversion.ini

[19/08/2005|17:39] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[19/08/2005|17:39] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[01/06/2007|19:24] C:\DOCUME~1\nico\APPLIC~1\$_hpcst$.hpc
[21/03/2008|15:28] C:\DOCUME~1\nico\APPLIC~1\Adobe
[17/02/2007|10:28] C:\DOCUME~1\nico\APPLIC~1\AdobeUM
[19/08/2005|18:49] C:\DOCUME~1\nico\APPLIC~1\Ahead
[07/12/2005|15:40] C:\DOCUME~1\nico\APPLIC~1\AOL
[08/07/2006|13:14] C:\DOCUME~1\nico\APPLIC~1\Creative
[05/10/2005|09:45] C:\DOCUME~1\nico\APPLIC~1\CyberLink
[19/08/2005|19:34] C:\DOCUME~1\nico\APPLIC~1\desktop.ini
[11/07/2008|20:41] C:\DOCUME~1\nico\APPLIC~1\Desperate Housewives
[02/07/2008|19:34] C:\DOCUME~1\nico\APPLIC~1\drvmeow
[16/09/2006|16:35] C:\DOCUME~1\nico\APPLIC~1\Google
[01/02/2008|12:45] C:\DOCUME~1\nico\APPLIC~1\Grisoft
[05/03/2006|15:50] C:\DOCUME~1\nico\APPLIC~1\Help
[19/08/2005|17:39] C:\DOCUME~1\nico\APPLIC~1\Identities
[03/03/2007|15:13] C:\DOCUME~1\nico\APPLIC~1\Logitech
[19/08/2005|18:22] C:\DOCUME~1\nico\APPLIC~1\Macromedia
[31/07/2007|20:04] C:\DOCUME~1\nico\APPLIC~1\Microsoft
[20/07/2007|12:14] C:\DOCUME~1\nico\APPLIC~1\Motive
[14/10/2006|10:59] C:\DOCUME~1\nico\APPLIC~1\Mozilla
[21/10/2006|12:19] C:\DOCUME~1\nico\APPLIC~1\MSNInstaller
[19/08/2005|18:04] C:\DOCUME~1\nico\APPLIC~1\Real
[22/01/2006|10:24] C:\DOCUME~1\nico\APPLIC~1\Samsung
[19/08/2005|18:32] C:\DOCUME~1\nico\APPLIC~1\Sun
[07/12/2005|15:28] C:\DOCUME~1\nico\APPLIC~1\sversion.ini
[19/08/2005|18:33] C:\DOCUME~1\nico\APPLIC~1\You've Got Pictures Screensaver

[22/01/2006|14:57] C:\DOCUME~1\PROPRI~1\APPLIC~1\Real

[02/06/2007|09:17] C:\DOCUME~1\yoyo\APPLIC~1\$_hpcst$.hpc
[21/03/2008|15:34] C:\DOCUME~1\yoyo\APPLIC~1\Adobe
[17/05/2008|17:50] C:\DOCUME~1\yoyo\APPLIC~1\AdobeUM
[24/05/2007|09:51] C:\DOCUME~1\yoyo\APPLIC~1\Ahead
[07/12/2005|15:40] C:\DOCUME~1\yoyo\APPLIC~1\AOL
[05/10/2005|09:45] C:\DOCUME~1\yoyo\APPLIC~1\CyberLink
[19/08/2005|19:34] C:\DOCUME~1\yoyo\APPLIC~1\desktop.ini
[21/06/2008|10:32] C:\DOCUME~1\yoyo\APPLIC~1\drvmeow
[01/07/2006|17:18] C:\DOCUME~1\yoyo\APPLIC~1\Google
[17/07/2007|19:42] C:\DOCUME~1\yoyo\APPLIC~1\Help
[22/06/2008|20:34] C:\DOCUME~1\yoyo\APPLIC~1\Identities
[14/07/2008|14:58] C:\DOCUME~1\yoyo\APPLIC~1\IDS_COMPANY
[04/12/2007|22:12] C:\DOCUME~1\yoyo\APPLIC~1\IncrediMailToolbar
[03/03/2007|18:18] C:\DOCUME~1\yoyo\APPLIC~1\Logitech
[19/08/2005|18:22] C:\DOCUME~1\yoyo\APPLIC~1\Macromedia
[04/04/2008|17:22] C:\DOCUME~1\yoyo\APPLIC~1\Microsoft
[23/07/2007|18:20] C:\DOCUME~1\yoyo\APPLIC~1\Motive
[25/04/2006|18:31] C:\DOCUME~1\yoyo\APPLIC~1\Mozilla
[13/07/2008|21:58] C:\DOCUME~1\yoyo\APPLIC~1\PlayFirst
[19/08/2005|18:04] C:\DOCUME~1\yoyo\APPLIC~1\Real
[15/01/2006|16:10] C:\DOCUME~1\yoyo\APPLIC~1\Samsung
[19/08/2005|18:32] C:\DOCUME~1\yoyo\APPLIC~1\Sun
[07/12/2005|15:28] C:\DOCUME~1\yoyo\APPLIC~1\sversion.ini
[14/04/2006|18:31] C:\DOCUME~1\yoyo\APPLIC~1\Symantec
[22/06/2008|20:34] C:\DOCUME~1\yoyo\APPLIC~1\Zylom

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[16/07/2008 13:00][--ah-----] C:\WINDOWS\tasks\A589B131910A3065.job
[16/07/2008 13:00][--ah-----] C:\WINDOWS\tasks\AB3564A6918F199E.job
[16/07/2008 13:00][--ah-----] C:\WINDOWS\tasks\A997DBD791885B57.job
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[16/07/2008 10:16][--ah-----] C:\WINDOWS\tasks\SA.DAT

A589B131910A3065.job <--> c:\docume~1\toto\applic~1\drvmeow\lockskeepdownload.exe
A997DBD791885B57.job <--> c:\docume~1\yoyo\applic~1\drvmeow\lockskeepdownload.exe
AB3564A6918F199E.job <--> c:\docume~1\nico\applic~1\drvmeow\lockskeepdownload.exe

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[12/07/2008|18:57] C:\Program Files\Adobe
[09/07/2008|17:51] C:\Program Files\AGEIA Technologies
[05/10/2005|09:42] C:\Program Files\Ahead
[15/04/2006|13:50] C:\Program Files\Alwil Software
[12/07/2008|18:57] C:\Program Files\AOL 9.0
[17/07/2007|12:36] C:\Program Files\BroadJump
[11/06/2007|13:26] C:\Program Files\Buena Vista Games
[15/04/2006|13:36] C:\Program Files\CA
[17/07/2007|13:18] C:\Program Files\Club-Internet
[17/07/2007|12:40] C:\Program Files\Common Files
[12/07/2008|18:42] C:\Program Files\Creative
[05/10/2005|09:38] C:\Program Files\CyberLink
[04/06/2008|12:29] C:\Program Files\DivX
[11/07/2008|20:44] C:\Program Files\EA GAMES
[12/07/2008|18:57] C:\Program Files\Fichiers communs
[12/07/2008|18:57] C:\Program Files\Google
[05/03/2006|15:51] C:\Program Files\Graphex3
[19/08/2005|19:07] C:\Program Files\HighMAT CD Writing Wizard
[05/10/2005|09:38] C:\Program Files\Home Cinema
[04/12/2007|22:12] C:\Program Files\IncrediMail
[12/07/2008|18:58] C:\Program Files\InstallShield Installation Information
[19/08/2005|17:49] C:\Program Files\Intel
[11/06/2008|11:13] C:\Program Files\Internet Explorer
[20/03/2007|18:04] C:\Program Files\IZArc
[07/12/2005|15:10] C:\Program Files\Java
[25/12/2006|11:19] C:\Program Files\Lame MP3 Codec
[27/03/2008|12:24] C:\Program Files\Lavasoft
[07/12/2005|15:40] C:\Program Files\Learn2.com
[06/01/2007|12:33] C:\Program Files\Lexmark 3300 Series
[23/09/2007|15:43] C:\Program Files\LG Electronics
[23/09/2007|15:43] C:\Program Files\LGGSM
[03/03/2007|15:09] C:\Program Files\Logitech
[08/12/2007|15:49] C:\Program Files\Ludiclub
[26/12/2006|20:23] C:\Program Files\Maxis
[19/08/2005|17:53] C:\Program Files\Medion Tools
[04/07/2006|12:47] C:\Program Files\Messenger
[12/07/2008|19:24] C:\Program Files\Messenger Plus! Live
[10/06/2008|11:04] C:\Program Files\Microsoft ActiveSync
[27/02/2008|12:00] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[19/08/2005|17:39] C:\Program Files\microsoft frontpage
[01/04/2008|19:14] C:\Program Files\Microsoft Office
[07/10/2007|14:51] C:\Program Files\Microsoft R‚f‚rence
[01/06/2007|19:21] C:\Program Files\Microsoft Visual Studio
[01/06/2007|19:21] C:\Program Files\Microsoft Works
[01/06/2007|19:21] C:\Program Files\Microsoft.NET
[17/07/2007|12:40] C:\Program Files\Motive
[19/08/2005|17:38] C:\Program Files\Movie Maker
[16/07/2008|13:14] C:\Program Files\Mozilla Firefox
[19/08/2005|17:37] C:\Program Files\MSN Gaming Zone
[05/10/2005|09:40] C:\Program Files\Musicmatch
[19/08/2005|17:38] C:\Program Files\NetMeeting
[07/12/2005|15:22] C:\Program Files\OfficeUpdate11
[19/08/2005|17:37] C:\Program Files\Online Services
[13/06/2007|13:39] C:\Program Files\Outlook Express
[02/03/2006|11:46] C:\Program Files\Plugins
[17/07/2007|12:29] C:\Program Files\QuickTime
[19/08/2005|18:03] C:\Program Files\Real
[02/03/2006|11:46] C:\Program Files\Resources
[12/07/2008|18:58] C:\Program Files\Samsung
[19/08/2005|17:38] C:\Program Files\Services en ligne
[09/07/2008|19:59] C:\Program Files\Sierra On-Line
[07/12/2005|15:31] C:\Program Files\StarOffice7
[16/07/2008|13:20] C:\Program Files\Steam
[25/03/2006|14:02] C:\Program Files\Ulead Systems
[19/07/2007|15:55] C:\Program Files\Viewpoint
[19/08/2005|18:13] C:\Program Files\Windows Journal Viewer
[01/07/2008|19:08] C:\Program Files\Windows Live
[28/06/2007|17:12] C:\Program Files\Windows Live Safety Center
[07/12/2005|15:06] C:\Program Files\Windows Media Connect
[16/01/2007|14:06] C:\Program Files\Windows Media Connect 2
[12/07/2008|18:57] C:\Program Files\Windows Media Player
[19/08/2005|17:37] C:\Program Files\Windows NT
[02/03/2006|13:53] C:\Program Files\XBCD
[19/08/2005|17:39] C:\Program Files\xerox
[14/01/2006|21:00] C:\Program Files\XviD
[23/02/2007|21:47] C:\Program Files\Yahoo!

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[17/05/2008|17:52] C:\Program Files\Fichiers communs\Adobe
[05/10/2005|09:41] C:\Program Files\Fichiers communs\Ahead
[12/07/2008|18:47] C:\Program Files\Fichiers communs\AOL
[12/07/2008|18:57] C:\Program Files\Fichiers communs\aolshare
[01/06/2007|19:21] C:\Program Files\Fichiers communs\DESIGNER
[05/10/2005|09:26] C:\Program Files\Fichiers communs\InstallShield
[07/12/2005|15:10] C:\Program Files\Fichiers communs\Java
[03/03/2007|15:08] C:\Program Files\Fichiers communs\Logitech
[01/07/2008|19:09] C:\Program Files\Fichiers communs\Microsoft Shared
[19/08/2005|17:38] C:\Program Files\Fichiers communs\MSSoap
[05/10/2005|09:42] C:\Program Files\Fichiers communs\Nero
[07/12/2005|15:39] C:\Program Files\Fichiers communs\Nullsoft
[07/12/2005|15:32] C:\Program Files\Fichiers communs\Real
[19/08/2005|17:38] C:\Program Files\Fichiers communs\Services
[19/08/2005|19:34] C:\Program Files\Fichiers communs\SpeechEngines
[15/04/2006|13:34] C:\Program Files\Fichiers communs\Symantec Shared
[13/06/2007|13:39] C:\Program Files\Fichiers communs\System
[01/07/2008|19:08] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[09/07/2008|17:51] C:\Program Files\Fichiers communs\Wise Installation Wizard
[07/12/2005|15:33] C:\Program Files\Fichiers communs\xing shared

---------------------------[ Process ]--------------------------

... 47

iexplore.exe ~ [3936]
iexplore.exe ~ [4044]
iexplore.exe ~ [608]

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\bin 4.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\CAST ADMIN.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\cool wait.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\Dent Bend.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\DRIVE PROC.exe
C:\DOCUME~1\nico\APPLIC~1\drvmeow
C:\DOCUME~1\nico\APPLIC~1\drvmeow\abofcxjd.exe
C:\DOCUME~1\nico\APPLIC~1\drvmeow\abztuscq.exe
C:\DOCUME~1\nico\APPLIC~1\drvmeow\lockskeepdownload.exe
C:\DOCUME~1\nico\APPLIC~1\drvmeow\programgridjoywma.exe
C:\DOCUME~1\nico\APPLIC~1\drvmeow\title frag.exe
C:\DOCUME~1\nico\APPLIC~1\drvmeow\wpbwuhod.exe
C:\DOCUME~1\yoyo\APPLIC~1\drvmeow
C:\DOCUME~1\yoyo\APPLIC~1\drvmeow\ecsrksuq.exe
C:\DOCUME~1\yoyo\APPLIC~1\drvmeow\hcnlrrth.exe
C:\DOCUME~1\yoyo\APPLIC~1\drvmeow\lockskeepdownload.exe
C:\DOCUME~1\yoyo\APPLIC~1\drvmeow\programgridjoywma.exe
C:\DOCUME~1\yoyo\APPLIC~1\drvmeow\title frag.exe
C:\DOCUME~1\yoyo\APPLIC~1\drvmeow\zbkuimsr.exe
C:\WINDOWS\Prefetch\DENT BEND.EXE-0417B134.pf
C:\WINDOWS\Prefetch\LOCKSKEEPDOWNLOAD.EXE-02C61D39.pf
C:\WINDOWS\Prefetch\LOCKSKEEPDOWNLOAD.EXE-21A9FE91.pf
C:\WINDOWS\Prefetch\TITLE FRAG.EXE-12BE6EB2.pf
C:\DOCUME~1\yoyo\Cookies\yoyo@adultfriendfinder[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@adultfriendfinder[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@adin.bigpoint[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@bigpoint[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@bigpoint[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@bigpoint[3].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@fr.bigpoint[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@fr1.darkorbit.bigpoint[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@fr1.seafight.bigpoint[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@fr1.seafight.bigpoint[3].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@www.bigpoint[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@banner.casinoking[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@banner.casinoking[3].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@casinoking[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@casinoking[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@banner.cotedazurpalace[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@banner.cotedazurpalace[3].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@cotedazurpalace[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@cotedazurpalace[3].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@adopt.euroclick[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@pacificpoker[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@partygaming.122.2o7[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@partygaming.122.2o7[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@partypoker[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@partypoker[3].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@fr1.seafight.bigpoint[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@fr1.seafight.bigpoint[3].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@32vegas[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@32vegas[3].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@banner.32vegas[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@banner.32vegas[3].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@vegas-millions[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@vegasred[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@www.vegas-millions[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@www.vegasaffiliates[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@www.vegasred[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@www.vegasslotcasino[1].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@2xmoinscher[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@cc.2xmoinscher[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@www.2xmoinscher[2].txt
C:\DOCUME~1\yoyo\Cookies\yoyo@888[2].txt
C:\WINDOWS\Tasks\A589B131910A3065.job
C:\WINDOWS\Tasks\A997DBD791885B57.job
C:\WINDOWS\Tasks\AB3564A6918F199E.job

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BeepTest"="C:\\DOCUME~1\\yoyo\\APPLIC~1\\drvmeow\\title frag.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Flag Owns Live Grim"="C:\\Documents and Settings\\All Users\\Application Data\\Software rule flag owns\\Dent Bend.exe"

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD

-> 72 ( 70 ## added by CiD )

/!\ 1 Not 127.0.0.1 !!

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-16 13:35:42
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\Documents and Settings\yoyo\Local Settings\Temp\IncrediMail\IMInstall\Contents\Sound\tchaikovsky_the_nutcracker.imw
=> C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Ribiba\fr-FR\images\6-11-bonus-color-cracker.png
=> C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Ribiba\fr-FR\images\help-colorcracker.png
=> C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Ribiba\fr-FR\sounds\cached_color-cracker.wav
=> C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Ribiba\fr-FR\sounds\color-cracker.ogg

[F:1126][D:156]-> C:\DOCUME~1\yoyo\LOCALS~1\Temp
[F:1765][D:0]-> C:\DOCUME~1\yoyo\Cookies
[F:34945][D:34]-> C:\DOCUME~1\yoyo\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 13:38:19,96 ]----------------------

RusKoVv · Answer

-----------------------[  Lop S&D 4.2.2-1  XP/Vista  ]---------------------

   [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
   [ USER : yoyo ] [ "C:\Lop SD" ] [ Selection : 2 ]
   [ 16/07/2008 | 13:42:24,57 ] [ PC : PC-000000000 ]
   [ MAJ : 09-07-2008 | 21:02 ]


   \\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

   Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\bin 4.exe
   Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\CAST ADMIN.exe
   Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\cool wait.exe
   Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\Dent Bend.exe
   Echec   ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\DRIVE PROC.exe
   Supprime! - C:\DOCUME~1
ico\APPLIC~1\drvmeow\abofcxjd.exe
   Supprime! - C:\DOCUME~1
ico\APPLIC~1\drvmeow\abztuscq.exe
   Supprime! - C:\DOCUME~1
ico\APPLIC~1\drvmeow\lockskeepdownload.exe
   Supprime! - C:\DOCUME~1
ico\APPLIC~1\drvmeow\programgridjoywma.exe
   Supprime! - C:\DOCUME~1
ico\APPLIC~1\drvmeow	itle frag.exe
   Supprime! - C:\DOCUME~1
ico\APPLIC~1\drvmeow\wpbwuhod.exe
   Supprime! - C:\DOCUME~1\yoyo\APPLIC~1\drvmeow\ecsrksuq.exe
   Supprime! - C:\DOCUME~1\yoyo\APPLIC~1\drvmeow\hcnlrrth.exe
   Supprime! - C:\DOCUME~1\yoyo\APPLIC~1\drvmeow\lockskeepdownload.exe
   Supprime! - C:\DOCUME~1\yoyo\APPLIC~1\drvmeow\programgridjoywma.exe
   Supprime! - C:\DOCUME~1\yoyo\APPLIC~1\drvmeow	itle frag.exe
   Supprime! - C:\DOCUME~1\yoyo\APPLIC~1\drvmeow\zbkuimsr.exe
   Supprime! - C:\WINDOWS\Prefetch\DENT BEND.EXE-0417B134.pf 
   Supprime! - C:\WINDOWS\Prefetch\LOCKSKEEPDOWNLOAD.EXE-02C61D39.pf 
   Supprime! - C:\WINDOWS\Prefetch\LOCKSKEEPDOWNLOAD.EXE-21A9FE91.pf 
   Supprime! - C:\WINDOWS\Prefetch\TITLE FRAG.EXE-12BE6EB2.pf 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@adultfriendfinder[1].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@adultfriendfinder[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@adin.bigpoint[1].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@bigpoint[1].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@bigpoint[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@bigpoint[3].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@fr.bigpoint[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@fr1.darkorbit.bigpoint[1].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@fr1.seafight.bigpoint[1].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@fr1.seafight.bigpoint[3].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@www.bigpoint[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@banner.casinoking[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@banner.casinoking[3].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@casinoking[1].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@casinoking[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@banner.cotedazurpalace[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@banner.cotedazurpalace[3].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@cotedazurpalace[1].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@cotedazurpalace[3].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@adopt.euroclick[1].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@pacificpoker[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@partygaming.122.2o7[1].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@partygaming.122.2o7[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@partypoker[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@partypoker[3].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@32vegas[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@32vegas[3].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@banner.32vegas[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@banner.32vegas[3].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@vegas-millions[1].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@vegasred[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@www.vegas-millions[1].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@www.vegasaffiliates[1].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@www.vegasred[1].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@www.vegasslotcasino[1].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@2xmoinscher[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@cc.2xmoinscher[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@www.2xmoinscher[2].txt 
   Supprime! - C:\DOCUME~1\yoyo\Cookies\yoyo@888[2].txt 
   Supprime! - C:\WINDOWS\Tasks\A589B131910A3065.job 
   Supprime! - C:\WINDOWS\Tasks\A997DBD791885B57.job 
   Supprime! - C:\WINDOWS\Tasks\AB3564A6918F199E.job 
   Echec   ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns
   Supprime! - C:\DOCUME~1
ico\APPLIC~1\drvmeow
   Supprime! - C:\DOCUME~1\yoyo\APPLIC~1\drvmeow
   RestaurÚ! - Fichier Hosts

   \\\\\\\\\\\\\\ DEUXIEME PASSAGE ///////////////////////////
 
   Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\DRIVE PROC.exe
   Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns
 
   //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\ 

   Supprime! - C:\Program Files\Viewpoint
   Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
 
   //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\

 
   -------------[ Listing des dossiers dans APPLIC~1 ]------------  

   [17/05/2008|17:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
   [19/08/2005|18:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
   [12/06/2007|17:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ante Grim Nurb Soft
   [12/07/2008|18:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
   [19/08/2005|18:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
   [19/08/2005|19:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
   [01/11/2006|11:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
   [01/02/2008|12:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
   [27/03/2008|12:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
   [12/07/2008|20:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
   [01/06/2007|19:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
   [09/07/2008|16:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
   [17/07/2007|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
   [13/07/2008|21:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
   [15/01/2006|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
   [19/08/2005|18:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
   [15/04/2006|13:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
   [19/08/2005|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
   [01/07/2008|19:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
   [15/01/2006|14:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
   [15/01/2006|21:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

   [19/08/2005|19:00] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe
   [19/08/2005|18:49] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Ahead
   [07/12/2005|15:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\AOL
   [05/10/2005|09:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\CyberLink
   [19/08/2005|19:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
   [11/07/2008|20:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Desperate Housewives
   [19/08/2005|17:39] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
   [19/08/2005|18:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
   [05/10/2005|09:29] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
   [19/08/2005|18:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
   [19/08/2005|18:32] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
   [07/12/2005|15:28] C:\DOCUME~1\DEFAUL~1\APPLIC~1\sversion.ini

   [19/08/2005|17:39] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

   [19/08/2005|17:39] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

   [01/06/2007|19:24] C:\DOCUME~1
ico\APPLIC~1\$_hpcst$.hpc
   [21/03/2008|15:28] C:\DOCUME~1
ico\APPLIC~1\Adobe
   [17/02/2007|10:28] C:\DOCUME~1
ico\APPLIC~1\AdobeUM
   [19/08/2005|18:49] C:\DOCUME~1
ico\APPLIC~1\Ahead
   [07/12/2005|15:40] C:\DOCUME~1
ico\APPLIC~1\AOL
   [08/07/2006|13:14] C:\DOCUME~1
ico\APPLIC~1\Creative
   [05/10/2005|09:45] C:\DOCUME~1
ico\APPLIC~1\CyberLink
   [19/08/2005|19:34] C:\DOCUME~1
ico\APPLIC~1\desktop.ini
   [11/07/2008|20:41] C:\DOCUME~1
ico\APPLIC~1\Desperate Housewives
   [16/09/2006|16:35] C:\DOCUME~1
ico\APPLIC~1\Google
   [01/02/2008|12:45] C:\DOCUME~1
ico\APPLIC~1\Grisoft
   [05/03/2006|15:50] C:\DOCUME~1
ico\APPLIC~1\Help
   [19/08/2005|17:39] C:\DOCUME~1
ico\APPLIC~1\Identities
   [03/03/2007|15:13] C:\DOCUME~1
ico\APPLIC~1\Logitech
   [19/08/2005|18:22] C:\DOCUME~1
ico\APPLIC~1\Macromedia
   [31/07/2007|20:04] C:\DOCUME~1
ico\APPLIC~1\Microsoft
   [20/07/2007|12:14] C:\DOCUME~1
ico\APPLIC~1\Motive
   [14/10/2006|10:59] C:\DOCUME~1
ico\APPLIC~1\Mozilla
   [21/10/2006|12:19] C:\DOCUME~1
ico\APPLIC~1\MSNInstaller
   [19/08/2005|18:04] C:\DOCUME~1
ico\APPLIC~1\Real
   [22/01/2006|10:24] C:\DOCUME~1
ico\APPLIC~1\Samsung
   [19/08/2005|18:32] C:\DOCUME~1
ico\APPLIC~1\Sun
   [07/12/2005|15:28] C:\DOCUME~1
ico\APPLIC~1\sversion.ini
   [19/08/2005|18:33] C:\DOCUME~1
ico\APPLIC~1\You've Got Pictures Screensaver

   [22/01/2006|14:57] C:\DOCUME~1\PROPRI~1\APPLIC~1\Real



   [02/06/2007|09:17] C:\DOCUME~1\yoyo\APPLIC~1\$_hpcst$.hpc
   [21/03/2008|15:34] C:\DOCUME~1\yoyo\APPLIC~1\Adobe
   [17/05/2008|17:50] C:\DOCUME~1\yoyo\APPLIC~1\AdobeUM
   [24/05/2007|09:51] C:\DOCUME~1\yoyo\APPLIC~1\Ahead
   [07/12/2005|15:40] C:\DOCUME~1\yoyo\APPLIC~1\AOL
   [05/10/2005|09:45] C:\DOCUME~1\yoyo\APPLIC~1\CyberLink
   [19/08/2005|19:34] C:\DOCUME~1\yoyo\APPLIC~1\desktop.ini
   [01/07/2006|17:18] C:\DOCUME~1\yoyo\APPLIC~1\Google
   [17/07/2007|19:42] C:\DOCUME~1\yoyo\APPLIC~1\Help
   [22/06/2008|20:34] C:\DOCUME~1\yoyo\APPLIC~1\Identities
   [14/07/2008|14:58] C:\DOCUME~1\yoyo\APPLIC~1\IDS_COMPANY
   [04/12/2007|22:12] C:\DOCUME~1\yoyo\APPLIC~1\IncrediMailToolbar
   [03/03/2007|18:18] C:\DOCUME~1\yoyo\APPLIC~1\Logitech
   [19/08/2005|18:22] C:\DOCUME~1\yoyo\APPLIC~1\Macromedia
   [04/04/2008|17:22] C:\DOCUME~1\yoyo\APPLIC~1\Microsoft
   [23/07/2007|18:20] C:\DOCUME~1\yoyo\APPLIC~1\Motive
   [25/04/2006|18:31] C:\DOCUME~1\yoyo\APPLIC~1\Mozilla
   [13/07/2008|21:58] C:\DOCUME~1\yoyo\APPLIC~1\PlayFirst
   [19/08/2005|18:04] C:\DOCUME~1\yoyo\APPLIC~1\Real
   [15/01/2006|16:10] C:\DOCUME~1\yoyo\APPLIC~1\Samsung
   [19/08/2005|18:32] C:\DOCUME~1\yoyo\APPLIC~1\Sun
   [07/12/2005|15:28] C:\DOCUME~1\yoyo\APPLIC~1\sversion.ini
   [14/04/2006|18:31] C:\DOCUME~1\yoyo\APPLIC~1\Symantec
   [22/06/2008|20:34] C:\DOCUME~1\yoyo\APPLIC~1\Zylom
 
   ----------------[ Tâches planifiées dans C:\WINDOWS	asks ]---------------

   [05/08/2004 14:00][-r-h-----] C:\WINDOWS	asks\desktop.ini
   [16/07/2008 10:16][--ah-----] C:\WINDOWS	asks\SA.DAT
 
   ---------------[ Listing des dossiers dans C:\Program Files ]--------------
 
   [12/07/2008|18:57] C:\Program Files\Adobe
   [09/07/2008|17:51] C:\Program Files\AGEIA Technologies
   [05/10/2005|09:42] C:\Program Files\Ahead
   [15/04/2006|13:50] C:\Program Files\Alwil Software
   [12/07/2008|18:57] C:\Program Files\AOL 9.0
   [17/07/2007|12:36] C:\Program Files\BroadJump
   [11/06/2007|13:26] C:\Program Files\Buena Vista Games
   [15/04/2006|13:36] C:\Program Files\CA
   [17/07/2007|13:18] C:\Program Files\Club-Internet
   [17/07/2007|12:40] C:\Program Files\Common Files
   [12/07/2008|18:42] C:\Program Files\Creative
   [05/10/2005|09:38] C:\Program Files\CyberLink
   [04/06/2008|12:29] C:\Program Files\DivX
   [11/07/2008|20:44] C:\Program Files\EA GAMES
   [12/07/2008|18:57] C:\Program Files\Fichiers communs
   [12/07/2008|18:57] C:\Program Files\Google
   [05/03/2006|15:51] C:\Program Files\Graphex3
   [19/08/2005|19:07] C:\Program Files\HighMAT CD Writing Wizard
   [05/10/2005|09:38] C:\Program Files\Home Cinema
   [04/12/2007|22:12] C:\Program Files\IncrediMail
   [12/07/2008|18:58] C:\Program Files\InstallShield Installation Information
   [19/08/2005|17:49] C:\Program Files\Intel
   [11/06/2008|11:13] C:\Program Files\Internet Explorer
   [20/03/2007|18:04] C:\Program Files\IZArc
   [07/12/2005|15:10] C:\Program Files\Java
   [25/12/2006|11:19] C:\Program Files\Lame MP3 Codec
   [27/03/2008|12:24] C:\Program Files\Lavasoft
   [07/12/2005|15:40] C:\Program Files\Learn2.com
   [06/01/2007|12:33] C:\Program Files\Lexmark 3300 Series
   [23/09/2007|15:43] C:\Program Files\LG Electronics
   [23/09/2007|15:43] C:\Program Files\LGGSM
   [03/03/2007|15:09] C:\Program Files\Logitech
   [08/12/2007|15:49] C:\Program Files\Ludiclub
   [26/12/2006|20:23] C:\Program Files\Maxis
   [19/08/2005|17:53] C:\Program Files\Medion Tools
   [04/07/2006|12:47] C:\Program Files\Messenger
   [12/07/2008|19:24] C:\Program Files\Messenger Plus! Live
   [10/06/2008|11:04] C:\Program Files\Microsoft ActiveSync
   [27/02/2008|12:00] C:\Program Files\Microsoft CAPICOM 2.1.0.2
   [19/08/2005|17:39] C:\Program Files\microsoft frontpage
   [01/04/2008|19:14] C:\Program Files\Microsoft Office
   [07/10/2007|14:51] C:\Program Files\Microsoft R‚f‚rence
   [01/06/2007|19:21] C:\Program Files\Microsoft Visual Studio
   [01/06/2007|19:21] C:\Program Files\Microsoft Works
   [01/06/2007|19:21] C:\Program Files\Microsoft.NET
   [17/07/2007|12:40] C:\Program Files\Motive
   [19/08/2005|17:38] C:\Program Files\Movie Maker
   [16/07/2008|13:14] C:\Program Files\Mozilla Firefox
   [19/08/2005|17:37] C:\Program Files\MSN Gaming Zone
   [05/10/2005|09:40] C:\Program Files\Musicmatch
   [19/08/2005|17:38] C:\Program Files\NetMeeting
   [07/12/2005|15:22] C:\Program Files\OfficeUpdate11
   [19/08/2005|17:37] C:\Program Files\Online Services
   [13/06/2007|13:39] C:\Program Files\Outlook Express
   [02/03/2006|11:46] C:\Program Files\Plugins
   [17/07/2007|12:29] C:\Program Files\QuickTime
   [19/08/2005|18:03] C:\Program Files\Real
   [02/03/2006|11:46] C:\Program Files\Resources
   [12/07/2008|18:58] C:\Program Files\Samsung
   [19/08/2005|17:38] C:\Program Files\Services en ligne
   [09/07/2008|19:59] C:\Program Files\Sierra On-Line
   [07/12/2005|15:31] C:\Program Files\StarOffice7
   [16/07/2008|13:20] C:\Program Files\Steam
   [25/03/2006|14:02] C:\Program Files\Ulead Systems
   [19/08/2005|18:13] C:\Program Files\Windows Journal Viewer
   [01/07/2008|19:08] C:\Program Files\Windows Live
   [28/06/2007|17:12] C:\Program Files\Windows Live Safety Center
   [07/12/2005|15:06] C:\Program Files\Windows Media Connect
   [16/01/2007|14:06] C:\Program Files\Windows Media Connect 2
   [12/07/2008|18:57] C:\Program Files\Windows Media Player
   [19/08/2005|17:37] C:\Program Files\Windows NT
   [02/03/2006|13:53] C:\Program Files\XBCD
   [19/08/2005|17:39] C:\Program Files\xerox
   [14/01/2006|21:00] C:\Program Files\XviD
   [23/02/2007|21:47] C:\Program Files\Yahoo!
  
   ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
   
   [17/05/2008|17:52] C:\Program Files\Fichiers communs\Adobe
   [05/10/2005|09:41] C:\Program Files\Fichiers communs\Ahead
   [12/07/2008|18:47] C:\Program Files\Fichiers communs\AOL
   [12/07/2008|18:57] C:\Program Files\Fichiers communs\aolshare
   [01/06/2007|19:21] C:\Program Files\Fichiers communs\DESIGNER
   [05/10/2005|09:26] C:\Program Files\Fichiers communs\InstallShield
   [07/12/2005|15:10] C:\Program Files\Fichiers communs\Java
   [03/03/2007|15:08] C:\Program Files\Fichiers communs\Logitech
   [01/07/2008|19:09] C:\Program Files\Fichiers communs\Microsoft Shared
   [19/08/2005|17:38] C:\Program Files\Fichiers communs\MSSoap
   [05/10/2005|09:42] C:\Program Files\Fichiers communs\Nero
   [07/12/2005|15:39] C:\Program Files\Fichiers communs\Nullsoft
   [07/12/2005|15:32] C:\Program Files\Fichiers communs\Real
   [19/08/2005|17:38] C:\Program Files\Fichiers communs\Services
   [19/08/2005|19:34] C:\Program Files\Fichiers communs\SpeechEngines
   [15/04/2006|13:34] C:\Program Files\Fichiers communs\Symantec Shared
   [13/06/2007|13:39] C:\Program Files\Fichiers communs\System
   [01/07/2008|19:08] C:\Program Files\Fichiers communs\WindowsLiveInstaller
   [09/07/2008|17:51] C:\Program Files\Fichiers communs\Wise Installation Wizard
   [07/12/2005|15:33] C:\Program Files\Fichiers communs\xing shared

   ---------------------------[ Process ]--------------------------

   ... 44

   ... OK !

   ----------------------[ Recherche avec S_Lop ]---------------------

   Aucun fichier / dossier Lop trouvé ! 
 
   -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

   Aucun fichier / dossier Lop trouvé ! 
 
   ----------------------[ Verification du Registre ]----------------------
 
   ..... OK !

   --------------------[ Verification du fichier Hosts ]---------------------

   Fichier Hosts PROPRE


   ----------------[ Recherche de fichiers avec Catchme ]-----------------
 
   catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
   Rootkit scan 2008-07-16 13:43:58
   Windows 5.1.2600 Service Pack 2 NTFS
   scanning hidden processes ...
   scanning hidden files ...
   scan completed successfully
   hidden processes: 0
   hidden files: 0
 
   --------------------[ Recherche d'autres infections ]---------------------

   => C:\Documents and Settings\yoyo\Local Settings\Temp\IncrediMail\IMInstall\Contents\Sound	chaikovsky_the_nutcracker.imw
   => C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Ribiba\fr-FR\images\6-11-bonus-color-cracker.png
   => C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Ribiba\fr-FR\images\help-colorcracker.png
   => C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Ribiba\fr-FR\sounds\cached_color-cracker.wav
   => C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Ribiba\fr-FR\sounds\color-cracker.ogg


   [F:1122][D:156]-> C:\DOCUME~1\yoyo\LOCALS~1\Temp
   [F:1728][D:0]-> C:\DOCUME~1\yoyo\Cookies
   [F:35004][D:34]-> C:\DOCUME~1\yoyo\LOCALS~1\TEMPOR~1\content.IE5

   --------------------[ Fin du rapport a 13:45:39,90  ]----------------------

geoffrey5 · Answer

avant de faire le nettoyage avec lopSD, fais ceci pour tes fichiers hosts stp :

Télécharge cet outil de SiRi: 

http://siri.urz.free.fr/RHosts.php 

Double clique dessus pour l'exécuter 

et cliques sur " Restore original Hosts " 

ps : c est normal que rien ne se passe 

ensuite :

Relancer Lop S&D 

= Choisir cette fois 2 


note: 
Si le Bureau ne réapparait pas 
= Presser Ctrl Alt Suppr 
= Dans Fichier => Nouvelle tâche 
=> Ecrire: explorer => entrée

geoffrey5 · Answer

oups...un peu trop tard lol...

fais Rhost et ensuite hijackthis stp

RusKoVv · Answer

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:50:05, on 16/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32
vsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\system32undll32.exe
C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\PROGRA~1\MI3AA1~1apimgr.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\StarOffice7\program\soffice.exe
C:\Program Files\Club-Internet\Le Compagnon Club\bin\mpbtn.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\yoyo\Bureau\HJT.exe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-3830469559-2684874226-209275537-1010\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'toto')
O4 - HKUS\S-1-5-21-3830469559-2684874226-209275537-1010\..\Run: [BeepTest] C:\DOCUME~1	oto\APPLIC~1\drvmeow	itle frag.exe (User 'toto')
O4 - HKUS\S-1-5-21-3830469559-2684874226-209275537-1010\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (User 'toto')
O4 - HKUS\S-1-5-21-3830469559-2684874226-209275537-1010\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent (User 'toto')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: StarOffice 7.lnk = C:\Program Files\StarOffice7\program\quickstart.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exe
O4 - Global Startup: LE COMPAGNON CLUB.lnk = C:\Program Files\Club-Internet\Le Compagnon Club\bin\matcli.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar	oolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.carrefour.fr/
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: bw+0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: lxcc_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxcccoms.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32
vsvc32.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

RusKoVv · Answer

c'est pas grave si je fait hosts maintenant et que je refait lop avec 2 ?

geoffrey5 · Answer

ne fais que Rhost

RusKoVv · Answer

j'ai fait rhost je clique sur restaurer rien ne se passe comme tu l'a dit je fait donc lop là en mentionnant 2 ?

geoffrey5 · Answer

vas supprimer ce programme qui est infecté : c:\program files\drvmeow	itle frag.exe

ensuite :

désinstalle hijackthis, retélécharge le et installe le comme indiqué dans le tuto car il ne peut pas etre installé sur le bureau..

renomme le et refais un nouveau rapport stp

RusKoVv · Answer

ce fichier est introuvable :S
je suis bien dans program files rien ne correspond

geoffrey5 · Answer

tu ne le vois pas dans c:/program files  ??!!

RusKoVv · Answer

non , j'ai fait une analyse antivirus recemment peut etre qu'avast a supprimé ce fichier ? je fait quand même le rapport hijackthis ?

geoffrey5 · Answer

vas dans le panneau de configuration----options des dossiers---affichage  et regarde à ce que "afficher les fichiers et dossier cachés" soit coché

RusKoVv · Answer

effectivement... mais je vient d'afficher mes dossiers cachés et rien n'y fait ce fameux fichier malveillant n'est toujours pas visible... j'ai fait un rapport LOP avec 2 avant que tu me dise de ne pas le faire c'est peut être pour ca ?

geoffrey5 · Answer

ok..non ca n a rien avoir mais tu n avais pas besoin de refaire lopSD option 2 puisqu il avait déjà été fait..

désinstalle hijackthis comme je t ai dis au message 10 et retélécharge le en suivant le tuto du premier message stp

RusKoVv · Answer

Voila mon rapport , en tout cas merci pour cette aide



Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:14:35, on 16/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32
vsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\system32undll32.exe
C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\PROGRA~1\MI3AA1~1apimgr.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\StarOffice7\program\soffice.exe
C:\Program Files\Club-Internet\Le Compagnon Club\bin\mpbtn.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\yoyo\Bureau\HJT.exe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: StarOffice 7.lnk = C:\Program Files\StarOffice7\program\quickstart.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exe
O4 - Global Startup: LE COMPAGNON CLUB.lnk = C:\Program Files\Club-Internet\Le Compagnon Club\bin\matcli.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar	oolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.carrefour.fr/
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: bw+0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: lxcc_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxcccoms.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32
vsvc32.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

geoffrey5 · Answer

tu dois l installer dans tes programmes et pas sur ton bureau  :s

RusKoVv · Answer

mais lorsque je lance HJT il ne me propose pas où l'installer pourtant je l'ai desinstaller

geoffrey5 · Answer

lors de l installation il te demande le chemin de destination, non??

RusKoVv · Answer

Ben non lorsque je charge le fichier ca l'installe de suite :/
j'ai créer moi même les fichiers j'ai fait le rapport



Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:23:26, on 16/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32
vsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\system32undll32.exe
C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\PROGRA~1\MI3AA1~1apimgr.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\StarOffice7\program\soffice.exe
C:\Program Files\Club-Internet\Le Compagnon Club\bin\mpbtn.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HJT.exe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: StarOffice 7.lnk = C:\Program Files\StarOffice7\program\quickstart.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exe
O4 - Global Startup: LE COMPAGNON CLUB.lnk = C:\Program Files\Club-Internet\Le Compagnon Club\bin\matcli.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar	oolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.carrefour.fr/
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: bw+0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: lxcc_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxcccoms.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32
vsvc32.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

RusKoVv · Answer

quand je desinstalle HJT via le pannneau de configuration il me dise le supprime de la liste ajouter/supprimer des programmes il s'installe pas correctement apparement ... quand je le charge il s'installe tout seul

geoffrey5 · Answer

il va y avoir beaucoup de lignes à fixer  :s

relance hijackthis en cliquant sur scan only et coches ces lignes stp :

O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll 
O18 - Protocol: bw+0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw+0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw-0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw-0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw00 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw00s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw10 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw10s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw20 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw20s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw30 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw30s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw40 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw40s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw50 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw50s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw60 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw60s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw70 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw70s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw80 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw80s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw90 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bw90s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwa0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwa0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwb0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwb0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwc0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwc0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwd0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwd0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwe0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwe0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwf0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwf0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll 
O18 - Protocol: bwg0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwg0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwh0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwh0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwi0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwi0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwj0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwj0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwk0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwk0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwl0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwl0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwm0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwm0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwn0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwn0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwo0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwo0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwp0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwp0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwq0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwq0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwr0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwr0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bws0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bws0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwt0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwt0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwu0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwu0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwv0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwv0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bww0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bww0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwx0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwx0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwy0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwy0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwz0 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: bwz0s - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     
O18 - Protocol: offline-8876480 - {A84CCB8C-647C-4B43-BD0C-00F586E507B7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll     

puis tu cliques sur fix checked.

vas faire les mises à niveau de java et adobe reader à ces adresses :

java : https://www.java.com/fr/download/manual.jsp

adobe reader XP : http://www.clubic.com/lancer-le-telechargement-37823-0-adobe-reader-acrobat.html

est ce que tu as encore des problemes de pages CID ??

RusKoVv · Answer

Depuis ta l'heure aucune page ne s'affiche... apparemment le problème est réglé :)
je t'en suis très reconaissant =)
d'ici une dizaine de minute je met sujet réglé on ne sait jamais!!!
Merci beaucouppppp

geoffrey5 · Answer

ok...si tu n as plus de problemes tu pourras faire ceci pour terminer :

Pour supprimer toutes les traces des logiciels qui ont servi à traiter les infections spécifiques :  

Télécharge toolscleaner sur ton Bureau : http://www.commentcamarche.net/telecharger/telecharger 34055291 toolscleaner 
* Double-clique sur ToolsCleaner2.bat et laisse le travailler 
* Clique sur Recherche et laisse le scan se terminer. 
* Clique sur Suppression pour finaliser. 
* Tu peux, si tu le souhaites, te servir des Options facultatives. 
* Clique sur Quitter, pour que le rapport puisse se créer. 
* Le rapport (TCleaner.txt) se trouve à la racine de votre disque dur (C:\)...colle le dans ta réponse


Désactive et réactive la Restauration du système :
 
1 Dans la barre des tâches de Windows, clique sur Démarrer.
 
2 Clique avec le bouton droit de la souris sur Poste de travail puis clique sur Propriétés.
 
3 Dans l'onglet Restauration du système, coche "Désactiver la Restauration du système"

4 Clique sur Appliquer.
  
5 Ensuite décoche "Désactiver la restauration du systeme"

6 clique sur appliquer puis ok

7 vas créer un point de restauration dans accessoires----outils systeme----restauration du systeme.

RusKoVv · Answer

-->- Recherche: 

C:\Lop SD: trouvé !
C:\Documents and Settings\yoyo\Bureau\Lop S&D.lnk: trouvé !
C:\Documents and Settings\yoyo\Bureau\LopSD.exe: trouvé !
C:\Documents and Settings\yoyo\Menu Démarrer\Programmes\Lop S&D: trouvé !
C:\Documents and Settings\yoyo\Recent\HijackThis.lnk: trouvé !
C:\Lop SD\Lop S&D.lnk: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !

geoffrey5 · Answer

télécharge aussi malwarebytes...tu pourras faire des analyses de temps en temps, c est un excellent programmes :

Télécharger sur le bureau malware bytes : http://ww.commentcamarche.net/telecharger/telechargement 34055379 malwarebyte s anti malware?thread
 

= double-clic sur mbam-setup pour lancer l'installation 
= Installer simplement sans rien modifier 
= Quand le programme lancé ==> faire une mise à jour ensuite cocher Exécuter un examen complet 
= Clic Rechercher 
= Eventuellement décocher les disque à ne pas analyser 
= Clic Lancer l'examen 
= En fin de scan , si infection trouvée 
==> Clic Afficher résultat 
= Fermer vos applications en cours 
= Vérifier si tout est coché et clic Supprimer la sélection 

un rapport s'ouvre le copier et le coller dans la réponse 

Puis redémarrer le pc !!

fais le avant de vréer un point de restauration !!

RusKoVv · Answer

Voila j'ai fini !
Encore merci et peut être a une prochaine fois ( j'espere pas ca voudrait dire que ce n'est pas résolu XD ! )

RusKoVv · Answer

haa oui je vais le faire donc

geoffrey5 · Answer

si tu as déjà crée un point de restauration c est pas grave...fais une analyse avec malwarebytes, supprimes tout ce qu il trouve et ensuite vas recréer un point de restauration...comme ca le jour où tu auras un problemes, tu pourras revenir en arriere  ;)

Bonne journée @+

RusKoVv · Answer

bonne journée =)

PUB CID ...

31 réponses

Votre réponse

Discussions similaires

Newsletters