pop-up et des pages internet

Question

Bonjour,

bon j'ai fait la gaffe de télécharger WinZix-2.3.0.0-setup.exe 

avant de l'installer, jai fait un check avec avg et ca ma dit que c'était clean mais en l'installant il y a eu des message de virus ou trojan de trouver par avg.. 
et depuis j'ai des pop-up et des pages internet qui s'ouvre sans mon consentement 

d'ailleur lorsque je fais crtl-alt-delete et que je vais voir les processus ouvert j'ai toujours 2 iexplore.exe d'ouvert et meme si j'appuie sur "terminer le processus" ca revient automatiquement? 

est-ce que c'est des virus ou autre... si ou comment je peux les enlever?? 

merci, 

Marc

generaldugal · Answer

salut marc , je peux te venir en aide p-e bien , tout d'Abord  , télécharge Hijackthis du site officiel trendsecure.com ,
ensuite on verra si tu a un antivirus et un parefeu . jattend ta reponse . a bientot

generaldugal · Answer

en faite tu a dja avg comme antivirus , 

installe Malwarebyte's , qui est un très bon détecteur de malware

comme anti spyware tu peux utiliser spybot ou spywareterminator

et comme antivirus tu peux garder avg , mais avira antivir est très bon aussi et detecte les rootkit.

et poste ton rapport hijack , si tu ne trouve pas les lien dit le moi . a plus

Utilisateur anonyme · Answer

c'est le top le gratuit...optimise et nettoie ton pc (il y a tout ce qu'il faut sur le site de CCM)
http://www.pc-optimise.com/apropos/accueil.php
un peu de lecture ne fait pas de mal...

Destrio5 · Answer

Salut,

WinZix est un rogue, maintenant, t'es infecté par Lop et tu dois avoir des pubs CID.

---> Télécharge Lop S&D sur ton Bureau
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
---> Double-clique dessus pour lancer l'installation
---> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
---> Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
---> Patiente jusqu'à la fin du scan
---> Poste le rapport généré (C:\lopR.txt)

(Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)

Si tu as un problème pour utiliser Lop S&D, regarde dans le tutorial :
http://bibou0007.com/outils-specifiques-f78/tutorial-lop-sd-t956.htm#11431

Utilisateur anonyme · Answer

voici un liste pour éradiquer certain virus
http://www.inoculer.com/antivirus.php3
ensuite attention aux arnaques lorsque tu  télécharge
https://fr.pcthreat.com/parasitebyid-6578fr.html

99Marc99 · Answer

merci des conseil

en effet j'ai des pub de  CID
je vais aller sur le lien que tu m'as laisser et essayer de suivre tes instructions



voici le log faite avec hijack:


Logfile of HijackThis v1.99.1
Scan saved at 00:53:43, on 2008-07-29
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Dynex Wireless G Adapter\WLService.exe
C:\Program Files\Dynex Wireless G Adapter\WLanCfgG.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb12.exe
C:\WINDOWS\system32\ctfmon.exe
C:\program files\MétéoMédia\MétéoIMédia\WeatherEye.exe
H:\ENCARTA\Microsoft Student with Encarta Premium 2007 DVD\EDICT.EXE
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe
C:\Program Files\Winamp\winamp.exe
C:\WINDOWS\system32	askmgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\AVG\AVG8\avgui.exe
C:\Program Files\AVG\AVG8\avgscanx.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Marc Decommerce\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = prosearching.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fsympatico.msn.ca%2fdefaultf.aspx%2f%3f
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = prosearching.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = prosearching.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {D2AF9DF9-0E39-0DEF-4172-5CF008BA3DB6} - (no file)
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE	oolbar.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\PDF.Writer\ADOBE\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1	oolbar.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet	ools\BitCometBHO_1.1.7.4.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Encarta Web Companion Helper Object - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE	oolbar.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Encarta Web Companion - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb12.exe
O4 - HKLM\..\Run: [Online chin internet bolt] C:\Documents and Settings\All Users\Application Data\Bags Plus Online Chin\about thunk.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MétéoIMédia] C:\program files\MétéoMédia\MétéoIMédia\WeatherEye.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [L07AXLRD_383439062] "H:\ENCARTA\Microsoft Student with Encarta Premium 2007 DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Bend Great] C:\DOCUME~1\MARCKL~1\APPLIC~1\AUDION~1\Program Grid.exe
O8 - Extra context menu item: Convert link target to Adobe PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\Marc Gaudreau\Programmes\Absolute Poker\Absolute Poker.lnk
O9 - Extra 'Tools' menuitem: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\Marc Gaudreau\Programmes\Absolute Poker\Absolute Poker.lnk
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files\BitComet	ools\BitCometBHO_1.1.7.4.dll
O9 - Extra button: PacificPoker4 - {94EDF7B4-4272-4af3-8F8B-4E2F68E225B7} - C:\PROGRA~1\PACIFI~2\pacificpoker.exe (file missing)
O9 - Extra button: Encarta Search Bar - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: PartyCasino.com - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - C:\Program Files\PartyGaming\PartyCasino\RunCasino.exe
O9 - Extra 'Tools' menuitem: PartyCasino.com - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - C:\Program Files\PartyGaming\PartyCasino\RunCasino.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/binFrameWork/v10/StagingUI.cab55579.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5) - http://upload.facebook.com/controls/FacebookPhotoUploader5.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {25365FF3-2746-4230-9DA7-163CCA318309} (Automatic Driver Installation Control) - http://inst.c-wss.com/n024p/FR/install/gtdownlr.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (MSN Games – Buddy Invite) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/BinFrameWork/v10/ZBuddy.cab55579.cab
O16 - DPF: {3DA5D23B-EFE1-4181-ADB7-7D457567AACA} (TGOnlineCtrl Class) - http://zone.msn.com/bingame/pacz/default/pandaonline.cab
O16 - DPF: {3FE16C08-D6A7-4133-84FC-D5BFB4F7D886} (WebGameLoader Class) - http://zone.msn.com/bingame/rtlw/default/ReflexiveWebGameLoader.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/binframework/v10/ZPAChat.cab55579.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/controls/FacebookPhotoUploader3.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1112473915984
O16 - DPF: {64D01C7F-810D-446E-A07E-16C764235644} (AtlAtomadersCtlAttrib Class) - http://zone.msn.com/bingame/amad/default/atomaders.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game15.zylomgames.com/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} (SproutLauncherCtrl Class) - http://zone.msn.com/bingame/feed/default/SproutLauncher.cab
O16 - DPF: {D77EF652-9A6B-40C8-A4B9-1C0697C6CF41} (TikGames Online Control) - http://zone.msn.com/bingame/shpo/default/shapo.cab
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (MSN Games – Game Communicator) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/binframework/v10/StProxy.cab55579.cab
O16 - DPF: {DAF5D9A2-D982-4671-83E4-0398706A5F6A} (SCEWebLauncherCtl Object) - http://zone.msn.com/bingame/hsol/default/SCEWebLauncher.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/bingame/dim2/default/popcaploader_v6.cab
O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} (HeartbeatCtl Class) - http://fdl.msn.com/zone/datafiles/heartbeat.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/binary/Chess.cab57176.cab
O16 - DPF: {EB387D2F-E27B-4D36-979E-847D1036C65D} (QDiagHUpdateObj Class) - http://h30155.www3.hp.com/ediags/hpfix/aio/fr/check/qdiagh.cab?326
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by125fd.bay125.hotmail.msn.com/activex/HMAtchmt.ocx
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F773E7B2-62A9-4524-9109-87D2F0BEFAA4} (ChessControl Class) - http://zone.msn.com/bingame/zpagames/zpa_kqrp.cab56961.cab
O16 - DPF: {FF3C5A9F-5A91-4930-80E8-4709194C2AD3} (CheckersZPA Object) - http://zone.msn.com/bingame/zpagames/CheckersZPA.cab40641.cab
O18 - Protocol: bw+0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - AppInit_DLLs: avgrsstx.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Dynex DX-WGDTC Service (Dynex DX-WGDTC WLService) - Unknown owner - C:\Program Files\Dynex Wireless G Adapter\WLService.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SAVScan - Unknown owner - C:\Program Files\Norton AntiVirus\SAVScan.exe (file missing)
O23 - Service: ScriptBlocking Service (SBService) - Unknown owner - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe (file missing)
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe

merci encore

99Marc99 · Answer

voici le scan avec  LOP S&D


   --------------------\  Lop S&D 4.2.2-4  XP/Vista

   [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
   [ USER : Marc Klein ] [ "C:\Lop SD" ] [ Selection : 1 ]
   [ 2008-07-29 |  3:36:52,42 ] [ PC : MARC-FD32BE0A68 ]
   [ MAJ : 25-07-2008 | 17:45 ]
 
   --------------------\  Listing des dossiers dans APPLIC~1  

   [2005-04-02|10:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
   [2006-05-21|21:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\Lavasoft
   [2008-07-20|19:00] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

   [2007-10-23|02:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{CFAB4006-0AE0-414D-866A-DCB2C46553CF}
   [2008-06-02|14:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
   [2007-02-01|11:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
   [2005-09-10|19:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
   [2008-07-20|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg8
   [2008-07-29|00:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
   [2008-02-01|04:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
   [2005-04-02|10:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
   [2007-06-03|17:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
   [2008-01-17|18:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet
   [2005-04-09|00:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GameHouse
   [2006-09-29|13:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
   [2007-01-04|18:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GTek
   [2006-08-23|20:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
   [2008-06-02|21:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
   [2008-02-27|03:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
   [2008-01-18|18:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia
   [2007-07-01|18:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
   [2005-07-11|19:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
   [2005-04-03|21:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PopCap
   [2008-01-28|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
   [2005-04-10|18:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
   [2007-01-19|10:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
   [2006-08-23|20:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
   [2007-01-21|01:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
   [2006-06-17|17:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
   [2008-03-22|15:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
   [2008-01-08|00:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
   [2006-05-24|01:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
   [2008-03-03|14:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
   [2006-01-16|11:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
   [2005-06-18|01:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

   [2005-04-02|10:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
   [2005-04-02|15:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

   [2008-02-01|04:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\CyberLink
   [2008-07-20|19:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

   [2008-07-18|20:52] C:\DOCUME~1\MARCDE~1\APPLIC~1\Adobe
   [2006-05-24|02:01] C:\DOCUME~1\MARCDE~1\APPLIC~1\AdobeUM
   [2006-08-24|00:36] C:\DOCUME~1\MARCDE~1\APPLIC~1\Apple Computer
   [2006-05-23|23:56] C:\DOCUME~1\MARCDE~1\APPLIC~1\ATI
   [2008-07-29|00:47] C:\DOCUME~1\MARCDE~1\APPLIC~1\Audio Noun Build
   [2005-04-02|10:01] C:\DOCUME~1\MARCDE~1\APPLIC~1\desktop.ini
   [2008-07-18|20:51] C:\DOCUME~1\MARCDE~1\APPLIC~1\Google
   [2006-05-24|23:10] C:\DOCUME~1\MARCDE~1\APPLIC~1\Help
   [2006-09-05|18:54] C:\DOCUME~1\MARCDE~1\APPLIC~1\HP
   [2006-05-23|23:55] C:\DOCUME~1\MARCDE~1\APPLIC~1\Identities
   [2006-05-24|01:06] C:\DOCUME~1\MARCDE~1\APPLIC~1\Lavasoft
   [2006-05-24|02:00] C:\DOCUME~1\MARCDE~1\APPLIC~1\Macromedia
   [2008-07-20|19:00] C:\DOCUME~1\MARCDE~1\APPLIC~1\Microsoft
   [2006-05-24|11:19] C:\DOCUME~1\MARCDE~1\APPLIC~1\Symantec


   [2008-07-04|00:47] C:\DOCUME~1\MARCKL~1\APPLIC~1\Adobe
   [2007-01-04|18:22] C:\DOCUME~1\MARCKL~1\APPLIC~1\AdobeDLM.log
   [2007-05-03|18:41] C:\DOCUME~1\MARCKL~1\APPLIC~1\AdobeUM
   [2005-09-11|14:57] C:\DOCUME~1\MARCKL~1\APPLIC~1\Apple Computer
   [2006-03-15|22:50] C:\DOCUME~1\MARCKL~1\APPLIC~1\ATI
   [2008-07-29|00:01] C:\DOCUME~1\MARCKL~1\APPLIC~1\Audio Noun Build
   [2007-01-20|21:45] C:\DOCUME~1\MARCKL~1\APPLIC~1\Cakewalk
   [2006-08-28|01:59] C:\DOCUME~1\MARCKL~1\APPLIC~1\CrystalSpace
   [2008-02-01|04:23] C:\DOCUME~1\MARCKL~1\APPLIC~1\CyberLink
   [2005-04-02|10:01] C:\DOCUME~1\MARCKL~1\APPLIC~1\desktop.ini
   [2007-05-25|00:14] C:\DOCUME~1\MARCKL~1\APPLIC~1\Digital Red
   [2007-07-26|22:08] C:\DOCUME~1\MARCKL~1\APPLIC~1\DivX
   [2007-01-04|18:22] C:\DOCUME~1\MARCKL~1\APPLIC~1\dm.ini
   [2008-03-22|14:10] C:\DOCUME~1\MARCKL~1\APPLIC~1\EA
   [2005-07-06|21:50] C:\DOCUME~1\MARCKL~1\APPLIC~1\FotoWire
   [2008-01-22|06:04] C:\DOCUME~1\MARCKL~1\APPLIC~1\GDIPFONTCACHEV1.DAT
   [2006-09-01|16:33] C:\DOCUME~1\MARCKL~1\APPLIC~1\GdiplusUpgrade_MSIApproach_Wrapper.log
   [2006-09-14|11:28] C:\DOCUME~1\MARCKL~1\APPLIC~1\Google
   [2007-01-04|18:46] C:\DOCUME~1\MARCKL~1\APPLIC~1\GTek
   [2005-07-21|18:54] C:\DOCUME~1\MARCKL~1\APPLIC~1\Help
   [2006-09-01|16:35] C:\DOCUME~1\MARCKL~1\APPLIC~1\HelpFilesUpdatePatch_HELPFILEREPLACE.log
   [2006-09-01|16:35] C:\DOCUME~1\MARCKL~1\APPLIC~1\HelpFilesUpdatePatch_PRINTHELPWRAPPER.log
   [2006-08-23|20:49] C:\DOCUME~1\MARCKL~1\APPLIC~1\HP
   [2007-01-20|21:45] C:\DOCUME~1\MARCKL~1\APPLIC~1\Identities
   [2006-09-02|16:48] C:\DOCUME~1\MARCKL~1\APPLIC~1\Image Zone Express
   [2007-03-25|02:00] C:\DOCUME~1\MARCKL~1\APPLIC~1\InstallShield
   [2005-04-03|19:18] C:\DOCUME~1\MARCKL~1\APPLIC~1\Kazaa Lite
   [2008-02-27|03:35] C:\DOCUME~1\MARCKL~1\APPLIC~1\Lavasoft
   [2005-09-07|22:14] C:\DOCUME~1\MARCKL~1\APPLIC~1\Leadertech
   [2008-04-15|15:11] C:\DOCUME~1\MARCKL~1\APPLIC~1\LimeWire
   [2008-04-08|17:05] C:\DOCUME~1\MARCKL~1\APPLIC~1\Macromedia
   [2008-04-17|11:00] C:\DOCUME~1\MARCKL~1\APPLIC~1\Microgaming
   [2007-07-01|18:08] C:\DOCUME~1\MARCKL~1\APPLIC~1\Microsoft
   [2005-04-03|16:45] C:\DOCUME~1\MARCKL~1\APPLIC~1\Microsoft Web Folders
   [2008-05-30|16:25] C:\DOCUME~1\MARCKL~1\APPLIC~1\Mozilla
   [2006-12-28|02:10] C:\DOCUME~1\MARCKL~1\APPLIC~1\My Games
   [2007-06-12|21:29] C:\DOCUME~1\MARCKL~1\APPLIC~1\MySpace
   [2007-01-21|01:10] C:\DOCUME~1\MARCKL~1\APPLIC~1\NetMedia Providers
   [2008-05-28|00:56] C:\DOCUME~1\MARCKL~1\APPLIC~1\Notepad++
   [2007-02-02|01:11] C:\DOCUME~1\MARCKL~1\APPLIC~1\Opera
   [2008-07-13|23:21] C:\DOCUME~1\MARCKL~1\APPLIC~1\PacificPoker4
   [2006-09-01|16:34] C:\DOCUME~1\MARCKL~1\APPLIC~1\PatchUpdate_InstantShareJPG.log
   [2006-09-01|16:34] C:\DOCUME~1\MARCKL~1\APPLIC~1\PatchUpdate_IZClosingDiscError.log
   [2007-01-21|01:10] C:\DOCUME~1\MARCKL~1\APPLIC~1\Publish Providers
   [2007-06-08|00:16] C:\DOCUME~1\MARCKL~1\APPLIC~1\Real
   [2007-03-25|01:40] C:\DOCUME~1\MARCKL~1\APPLIC~1\SecuROM
   [2006-07-07|10:55] C:\DOCUME~1\MARCKL~1\APPLIC~1\Seven Zip
   [2005-08-29|22:43] C:\DOCUME~1\MARCKL~1\APPLIC~1\Sierra
   [2007-01-28|00:14] C:\DOCUME~1\MARCKL~1\APPLIC~1\SignupShield
   [2007-01-21|01:10] C:\DOCUME~1\MARCKL~1\APPLIC~1\Sony
   [2005-04-02|17:43] C:\DOCUME~1\MARCKL~1\APPLIC~1\Sun
   [2005-04-02|17:48] C:\DOCUME~1\MARCKL~1\APPLIC~1\sversion.ini
   [2005-04-03|17:33] C:\DOCUME~1\MARCKL~1\APPLIC~1\Symantec
   [2007-12-01|02:09] C:\DOCUME~1\MARCKL~1\APPLIC~1\TMNT
   [2008-03-30|14:20] C:\DOCUME~1\MARCKL~1\APPLIC~1\U3
   [2008-01-08|00:33] C:\DOCUME~1\MARCKL~1\APPLIC~1\Ulead Systems
   [2005-04-02|17:51] C:\DOCUME~1\MARCKL~1\APPLIC~1\user60.rdb
   [2007-11-13|03:11] C:\DOCUME~1\MARCKL~1\APPLIC~1\vlc
   [2006-06-30|23:55] C:\DOCUME~1\MARCKL~1\APPLIC~1\W?nSxS
   [2005-09-10|02:52] C:\DOCUME~1\MARCKL~1\APPLIC~1\Zylom
   [2006-08-15|08:36] C:\DOCUME~1\MARCKL~1\APPLIC~1\?icrosoft.NET

   [2007-03-12|18:13] C:\DOCUME~1\MaUdInE\APPLIC~1\Adobe
   [2006-10-15|12:05] C:\DOCUME~1\MaUdInE\APPLIC~1\AdobeDLM.log
   [2006-01-16|11:28] C:\DOCUME~1\MaUdInE\APPLIC~1\AdobeUM
   [2005-10-16|21:37] C:\DOCUME~1\MaUdInE\APPLIC~1\Apple Computer
   [2006-03-22|21:51] C:\DOCUME~1\MaUdInE\APPLIC~1\ATI
   [2005-04-02|10:01] C:\DOCUME~1\MaUdInE\APPLIC~1\desktop.ini
   [2006-10-15|12:05] C:\DOCUME~1\MaUdInE\APPLIC~1\dm.ini
   [2006-10-04|23:17] C:\DOCUME~1\MaUdInE\APPLIC~1\Google
   [2006-11-30|19:21] C:\DOCUME~1\MaUdInE\APPLIC~1\HP
   [2005-04-09|11:04] C:\DOCUME~1\MaUdInE\APPLIC~1\Identities
   [2005-06-28|15:15] C:\DOCUME~1\MaUdInE\APPLIC~1\Kazaa Lite
   [2005-06-05|21:07] C:\DOCUME~1\MaUdInE\APPLIC~1\Lavasoft
   [2005-06-05|20:50] C:\DOCUME~1\MaUdInE\APPLIC~1\Macromedia
   [2008-07-20|19:00] C:\DOCUME~1\MaUdInE\APPLIC~1\Microsoft
   [2007-06-17|18:31] C:\DOCUME~1\MaUdInE\APPLIC~1\Real
   [2005-06-13|21:14] C:\DOCUME~1\MaUdInE\APPLIC~1\Sun
   [2006-06-16|14:15] C:\DOCUME~1\MaUdInE\APPLIC~1\Symantec
   [2007-05-21|17:29] C:\DOCUME~1\MaUdInE\APPLIC~1\s?stem32
   [2006-08-15|08:34] C:\DOCUME~1\MaUdInE\APPLIC~1\?ppPatch
   [2006-08-30|17:39] C:\DOCUME~1\MaUdInE\APPLIC~1\??sembly

   [2008-07-20|19:00] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
   [2006-03-11|21:18] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec
 
   --------------------\  Tâches planifiées dans C:\WINDOWS	asks

   [2008-07-29 03:00][--ah-----] C:\WINDOWS	asks\BA2EA86096F55570.job
   [2008-07-29 01:51][--ah-----] C:\WINDOWS	asks\MP Scheduled Scan.job
   [2008-07-28 19:51][--a------] C:\WINDOWS	asks\Ad-Aware SE Personal.job
   [2008-07-27 13:14][--ah-----] C:\WINDOWS	asks\SA.DAT
   [2004-08-05 08:00][-r-h-----] C:\WINDOWS	asks\desktop.ini

   ( BA2EA86096F55570.job )=( c:\docume~1\marckl~1\applic~1\audion~1\OkayOnlineHeart.exe )

   --------------------\  Listing des dossiers dans C:\Program Files

   [2008-03-26|11:50] C:\Program Files\_uninstallation_info
   [2008-04-17|10:55] C:\Program Files\Absolute Poker
   [2008-06-02|13:42] C:\Program Files\Adobe
   [2005-04-02|16:00] C:\Program Files\Ahead
   [2007-10-19|00:04] C:\Program Files\aMSN
   [2007-10-13|11:46] C:\Program Files\ATI Technologies
   [2008-05-30|02:29] C:\Program Files\AVG
   [2007-02-26|23:54] C:\Program Files\Avid
   [2008-02-29|20:00] C:\Program Files\AviSynth 2.5
   [2008-02-06|09:57] C:\Program Files\BitComet
   [2008-07-17|10:02] C:\Program Files\Blaze Media Pro
   [2008-06-02|13:44] C:\Program Files\Bonjour
   [2006-09-06|21:01] C:\Program Files\CCleaner
   [2007-04-25|10:48] C:\Program Files\CDisplay
   [2005-04-10|22:09] C:\Program Files\C-Media
   [2005-04-02|15:47] C:\Program Files\C-Media 3D Audio
   [2006-07-29|16:31] C:\Program Files\Common Files
   [2006-07-31|00:20] C:\Program Files\CureROM
   [2008-02-01|04:09] C:\Program Files\CyberLink
   [2008-06-22|23:17] C:\Program Files\Dictionnaire
   [2005-07-06|21:51] C:\Program Files\directx
   [2008-01-16|12:48] C:\Program Files\DivX
   [2005-08-29|22:19] C:\Program Files\D-Tools
   [2007-07-01|18:02] C:\Program Files\Dynex Wireless G Adapter
   [2008-02-29|20:00] C:\Program Files\eRightSoft
   [2005-09-09|14:37] C:\Program Files\EZFace
   [2008-06-18|11:37] C:\Program Files\Fichiers communs
   [2006-10-04|12:35] C:\Program Files\FileZilla
   [2008-07-23|10:40] C:\Program Files\FTP Commander
   [2008-05-31|03:53] C:\Program Files\Full Contact Poker
   [2007-03-31|22:43] C:\Program Files\fullcontactpoker_com.exe
   [2007-02-18|22:13] C:\Program Files\Google
   [2008-05-30|02:28] C:\Program Files\Grisoft
   [2007-01-11|17:18] C:\Program Files\gs
   [2005-07-21|19:07] C:\Program Files\Hasbro Interactive
   [2006-09-09|00:50] C:\Program Files\HP
   [2006-12-21|00:31] C:\Program Files\Illustrate
   [2007-10-23|01:49] C:\Program Files\ImTOO
   [2005-07-12|17:00] C:\Program Files\INSTALL.LOG
   [2008-06-01|20:24] C:\Program Files\InstallShield Installation Information
   [2008-07-26|18:23] C:\Program Files\Internet Explorer
   [2008-01-27|04:42] C:\Program Files\Java
   [2005-04-03|19:18] C:\Program Files\Kazaa Lite K++
   [2008-02-27|03:35] C:\Program Files\Lavasoft
   [2007-04-26|11:29] C:\Program Files\Learning Essentials
   [2008-03-10|23:05] C:\Program Files\LimeWire
   [2006-09-11|17:17] C:\Program Files\LocalAutorun
   [2005-07-06|21:50] C:\Program Files\Logitech
   [2006-03-22|21:55] C:\Program Files\Macrogaming
   [2007-04-26|11:21] C:\Program Files\MagicDisc
   [2007-04-26|11:15] C:\Program Files\MagicISO
   [2006-03-10|23:48] C:\Program Files\Maxtor
   [2005-04-02|16:38] C:\Program Files\Messenger
   [2005-04-03|23:35] C:\Program Files\M‚t‚oM‚dia
   [2005-04-03|16:45] C:\Program Files\microsoft frontpage
   [2006-05-30|16:45] C:\Program Files\Microsoft Office
   [2007-01-21|01:05] C:\Program Files\Microsoft SQL Server
   [2007-04-26|11:30] C:\Program Files\Microsoft Student
   [2006-05-30|15:58] C:\Program Files\Microsoft Visual Studio
   [2006-03-13|23:55] C:\Program Files\mIRC
   [2005-04-02|15:19] C:\Program Files\Movie Maker
   [2008-07-13|21:39] C:\Program Files\Mozilla Firefox
   [2005-04-02|15:17] C:\Program Files\MSN
   [2008-03-22|15:16] C:\Program Files\MSN Games
   [2005-09-28|13:55] C:\Program Files\MSN Gaming Zone
   [2006-09-07|00:28] C:\Program Files\MSXML 4.0
   [2007-10-13|01:14] C:\Program Files\MSXML 6.0
   [2005-04-03|19:53] C:\Program Files\MUSICMATCH
   [2007-06-12|21:32] C:\Program Files\MySpace
   [2006-06-15|15:07] C:\Program Files\M?crosoft.NET
   [2005-07-12|14:28] C:\Program Files\NetAssistant
   [2005-04-02|15:19] C:\Program Files\NetMeeting
   [2006-06-17|17:58] C:\Program Files\Norton AntiVirus
   [2008-05-28|00:56] C:\Program Files\Notepad++
   [2005-04-02|15:18] C:\Program Files\Online Services
   [2005-04-02|17:48] C:\Program Files\OpenOffice.org1.0.1
   [2007-03-20|02:40] C:\Program Files\Outerinfo
   [2007-10-13|01:13] C:\Program Files\Outlook Express
   [2008-01-08|04:27] C:\Program Files\PacificPoker
   [2008-07-16|03:39] C:\Program Files\PacificPoker4
   [2008-07-28|21:23] C:\Program Files\PartyGaming
   [2006-02-20|02:14] C:\Program Files\PartyPoker
   [2008-03-19|10:01] C:\Program Files\Passware
   [2006-06-18|02:06] C:\Program Files\Pcsx2
   [2007-12-27|19:21] C:\Program Files\PDF Writer
   [2008-01-24|17:49] C:\Program Files\Pivot Stickfigure Animator
   [2007-03-10|23:05] C:\Program Files\pokerpacific
   [2008-06-11|22:59] C:\Program Files\PokerStars.NET
   [2008-04-17|13:04] C:\Program Files\PokerTimeMPP
   [2006-05-21|02:31] C:\Program Files\PowerISO
   [2005-09-10|19:53] C:\Program Files\QuickTime
   [2007-12-27|20:13] C:\Program Files\Readiris Pro 11 Corporate Edition
   [2007-06-08|00:12] C:\Program Files\Real
   [2005-04-18|20:55] C:\Program Files\RealVNC
   [2007-02-26|23:52] C:\Program Files\SafeNet Sentinel
   [2005-04-02|15:20] C:\Program Files\Services en ligne
   [2006-03-28|03:13] C:\Program Files\solarus
   [2007-01-21|01:01] C:\Program Files\Sony
   [2007-12-27|20:13] C:\Program Files\Super DVD Creator 9.25.0
   [2007-05-14|23:22] C:\Program Files\Traction Software
   [2007-03-25|01:42] C:\Program Files\Ubisoft
   [2008-01-08|00:31] C:\Program Files\Ulead Systems
   [2007-01-21|01:14] C:\Program Files\Uninstall Information
   [2005-04-02|15:54] C:\Program Files\VIA
   [2007-06-23|23:52] C:\Program Files\VSTplugins
   [2008-02-29|12:11] C:\Program Files\Winamp
   [2005-08-31|09:46] C:\Program Files\WinAVI VideoConverter
   [2006-12-06|11:18] C:\Program Files\Windows Defender
   [2006-09-05|19:58] C:\Program Files\Windows Installer Clean Up
   [2005-04-17|20:37] C:\Program Files\Windows Journal Viewer
   [2008-03-03|14:41] C:\Program Files\Windows Live
   [2005-04-10|20:15] C:\Program Files\Windows Media Components
   [2006-12-14|17:04] C:\Program Files\Windows Media Connect
   [2006-12-14|17:06] C:\Program Files\Windows Media Connect 2
   [2006-12-14|17:06] C:\Program Files\Windows Media Player
   [2005-04-02|15:17] C:\Program Files\Windows NT
   [2005-04-02|15:20] C:\Program Files\WindowsUpdate
   [2005-04-11|20:59] C:\Program Files\WinMPG Video Convert
   [2007-12-20|19:55] C:\Program Files\WinRAR
   [2007-09-26|10:55] C:\Program Files\WinUHA
   [2005-04-03|18:50] C:\Program Files\WinZip
   [2005-04-02|15:22] C:\Program Files\xerox
   [2007-08-30|00:36] C:\Program Files\Xilisoft
   [2007-11-08|00:52] C:\Program Files\Xvid
   [2006-01-16|11:25] C:\Program Files\Yahoo!
   [2005-09-10|12:27] C:\Program Files\Zylom Games
   [2006-06-30|18:12] C:\Program Files\??mbols
   [2006-08-20|14:17] C:\Program Files\??sks

   --------------------\  Listing des dossiers dans C:\Program Files\Fichiers communs

   [2008-06-02|13:44] C:\Program Files\Fichiers communs\Adobe
   [2007-02-01|11:19] C:\Program Files\Fichiers communs\Adobe Systems Shared
   [2005-04-02|16:00] C:\Program Files\Fichiers communs\Ahead
   [2006-05-30|15:58] C:\Program Files\Fichiers communs\Designer
   [2007-02-26|23:55] C:\Program Files\Fichiers communs\Digidesign
   [2006-08-15|02:45] C:\Program Files\Fichiers communs\DirectX
   [2005-07-06|21:50] C:\Program Files\Fichiers communs\FotoWire
   [2007-11-08|02:11] C:\Program Files\Fichiers communs\GTK
   [2005-04-03|19:51] C:\Program Files\Fichiers communs\InstallShield
   [2005-04-02|17:43] C:\Program Files\Fichiers communs\Java
   [2005-07-06|21:51] C:\Program Files\Fichiers communs\Logitech
   [2008-01-18|18:58] C:\Program Files\Fichiers communs\Macromedia
   [2008-01-17|14:38] C:\Program Files\Fichiers communs\Macrovision Shared
   [2008-05-30|02:28] C:\Program Files\Fichiers communs\Microsoft Shared
   [2005-07-11|19:13] C:\Program Files\Fichiers communs\Motive
   [2005-04-02|15:19] C:\Program Files\Fichiers communs\MSSoap
   [2005-10-16|22:05] C:\Program Files\Fichiers communs\NSV
   [2005-04-02|10:01] C:\Program Files\Fichiers communs\ODBC
   [2007-06-08|00:13] C:\Program Files\Fichiers communs\Real
   [2007-02-26|23:52] C:\Program Files\Fichiers communs\SafeNet Sentinel
   [2005-04-02|15:19] C:\Program Files\Fichiers communs\Services
   [2005-04-02|10:01] C:\Program Files\Fichiers communs\SpeechEngines
   [2006-06-18|01:48] C:\Program Files\Fichiers communs\Symantec Shared
   [2007-10-13|01:12] C:\Program Files\Fichiers communs\System
   [2008-03-03|14:38] C:\Program Files\Fichiers communs\WindowsLiveInstaller
   [2008-02-27|03:33] C:\Program Files\Fichiers communs\Wise Installation Wizard
   [2007-06-08|00:13] C:\Program Files\Fichiers communs\xing shared

   --------------------\  Process

   ( 56 Processus )

   iexplore.exe ~ [5720]
   iexplore.exe ~ [4336]
   iexplore.exe ~ [4540]

   --------------------\  Recherche avec S_Lop

   C:\DOCUME~1\MARCKL~1\LOCALS~1\Temp\bis59.exe
   C:\DOCUME~1\MARCDE~1\APPLIC~1\AUDION~1
 
   --------------------\  Recherche de Fichiers / Dossiers Lop

   C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
   C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin\about thunk.exe
   C:\DOCUME~1\MARCDE~1\APPLIC~1\audion~1
   C:\DOCUME~1\MARCKL~1\APPLIC~1\audion~1
   C:\DOCUME~1\MARCKL~1\APPLIC~1\audion~1\icosraav.exe
   C:\DOCUME~1\MARCKL~1\APPLIC~1\audion~1\OkayOnlineHeart.exe
   C:\DOCUME~1\MARCKL~1\APPLIC~1\audion~1\Program Grid.exe
   C:\WINDOWS\Prefetch\WINZIX-2.3.0.0-SETUP.EXE-3467EA7E.pf
   C:\WINDOWS\Prefetch\WINZIX.EXE-13D951E4.pf
   C:\DOCUME~1\MARCKL~1\Cookies\marc klein@adultfriendfinder[1].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc_klein@adultfriendfinder[2].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc_klein@ads.poweradvertising[1].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc_klein@advertising[1].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc_klein@adopt.euroclick[2].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc klein@pacificpoker[2].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc_klein@pacificpoker[1].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc klein@partygaming.122.2o7[1].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc klein@partygaming.122.2o7[2].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc klein@partypoker[1].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc_klein@partypoker[1].txt
   C:\WINDOWS\Tasks\BA2EA86096F55570.job
 
   --------------------\  Verification du Registre

   [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\HoleMapiAdmin]
   "DisplayName"="CiD Help"
   "UninstallString"="C:\DOCUME~1\MARCKL~1\APPLIC~1\AUDION~1\Program Grid.exe -uninstall"

   [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 
   "Bend Great"="C:\DOCUME~1\MARCKL~1\APPLIC~1\AUDION~1\Program Grid.exe"
   "Bend Great"="C:\DOCUME~1\MARCKL~1\APPLIC~1\AUDION~1\Program Grid.exe"

   [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
   "Online chin internet bolt"="C:\Documents and Settings\All Users\Application Data\Bags Plus Online Chin\about thunk.exe"

   --------------------\  Verification du fichier Hosts

   Fichier Hosts PROPRE


   --------------------\  Recherche de fichiers avec Catchme
 
   catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
   Rootkit scan 2008-07-29 03:40:31
   Windows 5.1.2600 Service Pack 2 NTFS
   scanning hidden processes ...
   scanning hidden files ...
   C:\DOCUME~1\MARCKL~1\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 685 bytes hidden from API
   scan completed successfully
   hidden processes: 0
   hidden files: 1
 
   --------------------\  Recherche d'autres infections

   --------------------\  Cracks & Keygens ..

   
   [F:715][D:54]-> C:\DOCUME~1\MARCKL~1\LOCALS~1\Temp
   [F:1082][D:0]-> C:\DOCUME~1\MARCKL~1\Cookies
   [F:6546][D:13]-> C:\DOCUME~1\MARCKL~1\LOCALS~1\TEMPOR~1\content.IE5

   --------------------\  Fin du rapport a  3:53:44,80

merci 

Marc

Destrio5 · Answer

---> Relance Lop S&D
---> Choisis cette fois-ci l'option 2 (Suppression)
---> Ne ferme pas la fenêtre lors de la suppression !
---> Poste le rapport généré (C:\lopR.txt)

(Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)

99Marc99 · Answer

Re Bonjour, ou bonsoir.. avec le décalage horaire...

Bon la mon ordi va bocoup mieux.. j'ai fait un scan complet avec avg cette nuit et il a repéré 4 malware en rapport avec mon probleme. J'ai aussi lancé Lop S&D en faisant l'option 2 .   Résultat:  je ne vois plus les 2-3 iexplore.exe qui ne voulais pas se fermer.. je n'ai plus de pop-up non désiré non plus... 

voici le log de Lop S&D:  est-ce que mon ordi est "guéri"

merci


   --------------------\  Lop S&D 4.2.2-4  XP/Vista

   [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
   [ USER : Marc Klein ] [ "C:\Lop SD" ] [ Selection : 1 ]
   [ 2008-07-29 |  3:36:52,42 ] [ PC : MARC-FD32BE0A68 ]
   [ MAJ : 25-07-2008 | 17:45 ]
 
   --------------------\  Listing des dossiers dans APPLIC~1  

   [2005-04-02|10:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
   [2006-05-21|21:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\Lavasoft
   [2008-07-20|19:00] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

   [2007-10-23|02:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{CFAB4006-0AE0-414D-866A-DCB2C46553CF}
   [2008-06-02|14:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
   [2007-02-01|11:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
   [2005-09-10|19:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
   [2008-07-20|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg8
   [2008-07-29|00:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
   [2008-02-01|04:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
   [2005-04-02|10:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
   [2007-06-03|17:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
   [2008-01-17|18:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet
   [2005-04-09|00:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GameHouse
   [2006-09-29|13:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
   [2007-01-04|18:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GTek
   [2006-08-23|20:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
   [2008-06-02|21:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
   [2008-02-27|03:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
   [2008-01-18|18:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia
   [2007-07-01|18:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
   [2005-07-11|19:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
   [2005-04-03|21:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PopCap
   [2008-01-28|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
   [2005-04-10|18:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
   [2007-01-19|10:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
   [2006-08-23|20:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
   [2007-01-21|01:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
   [2006-06-17|17:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
   [2008-03-22|15:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
   [2008-01-08|00:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
   [2006-05-24|01:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
   [2008-03-03|14:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
   [2006-01-16|11:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
   [2005-06-18|01:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

   [2005-04-02|10:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
   [2005-04-02|15:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

   [2008-02-01|04:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\CyberLink
   [2008-07-20|19:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

   [2008-07-18|20:52] C:\DOCUME~1\MARCDE~1\APPLIC~1\Adobe
   [2006-05-24|02:01] C:\DOCUME~1\MARCDE~1\APPLIC~1\AdobeUM
   [2006-08-24|00:36] C:\DOCUME~1\MARCDE~1\APPLIC~1\Apple Computer
   [2006-05-23|23:56] C:\DOCUME~1\MARCDE~1\APPLIC~1\ATI
   [2008-07-29|00:47] C:\DOCUME~1\MARCDE~1\APPLIC~1\Audio Noun Build
   [2005-04-02|10:01] C:\DOCUME~1\MARCDE~1\APPLIC~1\desktop.ini
   [2008-07-18|20:51] C:\DOCUME~1\MARCDE~1\APPLIC~1\Google
   [2006-05-24|23:10] C:\DOCUME~1\MARCDE~1\APPLIC~1\Help
   [2006-09-05|18:54] C:\DOCUME~1\MARCDE~1\APPLIC~1\HP
   [2006-05-23|23:55] C:\DOCUME~1\MARCDE~1\APPLIC~1\Identities
   [2006-05-24|01:06] C:\DOCUME~1\MARCDE~1\APPLIC~1\Lavasoft
   [2006-05-24|02:00] C:\DOCUME~1\MARCDE~1\APPLIC~1\Macromedia
   [2008-07-20|19:00] C:\DOCUME~1\MARCDE~1\APPLIC~1\Microsoft
   [2006-05-24|11:19] C:\DOCUME~1\MARCDE~1\APPLIC~1\Symantec


   [2008-07-04|00:47] C:\DOCUME~1\MARCKL~1\APPLIC~1\Adobe
   [2007-01-04|18:22] C:\DOCUME~1\MARCKL~1\APPLIC~1\AdobeDLM.log
   [2007-05-03|18:41] C:\DOCUME~1\MARCKL~1\APPLIC~1\AdobeUM
   [2005-09-11|14:57] C:\DOCUME~1\MARCKL~1\APPLIC~1\Apple Computer
   [2006-03-15|22:50] C:\DOCUME~1\MARCKL~1\APPLIC~1\ATI
   [2008-07-29|00:01] C:\DOCUME~1\MARCKL~1\APPLIC~1\Audio Noun Build
   [2007-01-20|21:45] C:\DOCUME~1\MARCKL~1\APPLIC~1\Cakewalk
   [2006-08-28|01:59] C:\DOCUME~1\MARCKL~1\APPLIC~1\CrystalSpace
   [2008-02-01|04:23] C:\DOCUME~1\MARCKL~1\APPLIC~1\CyberLink
   [2005-04-02|10:01] C:\DOCUME~1\MARCKL~1\APPLIC~1\desktop.ini
   [2007-05-25|00:14] C:\DOCUME~1\MARCKL~1\APPLIC~1\Digital Red
   [2007-07-26|22:08] C:\DOCUME~1\MARCKL~1\APPLIC~1\DivX
   [2007-01-04|18:22] C:\DOCUME~1\MARCKL~1\APPLIC~1\dm.ini
   [2008-03-22|14:10] C:\DOCUME~1\MARCKL~1\APPLIC~1\EA
   [2005-07-06|21:50] C:\DOCUME~1\MARCKL~1\APPLIC~1\FotoWire
   [2008-01-22|06:04] C:\DOCUME~1\MARCKL~1\APPLIC~1\GDIPFONTCACHEV1.DAT
   [2006-09-01|16:33] C:\DOCUME~1\MARCKL~1\APPLIC~1\GdiplusUpgrade_MSIApproach_Wrapper.log
   [2006-09-14|11:28] C:\DOCUME~1\MARCKL~1\APPLIC~1\Google
   [2007-01-04|18:46] C:\DOCUME~1\MARCKL~1\APPLIC~1\GTek
   [2005-07-21|18:54] C:\DOCUME~1\MARCKL~1\APPLIC~1\Help
   [2006-09-01|16:35] C:\DOCUME~1\MARCKL~1\APPLIC~1\HelpFilesUpdatePatch_HELPFILEREPLACE.log
   [2006-09-01|16:35] C:\DOCUME~1\MARCKL~1\APPLIC~1\HelpFilesUpdatePatch_PRINTHELPWRAPPER.log
   [2006-08-23|20:49] C:\DOCUME~1\MARCKL~1\APPLIC~1\HP
   [2007-01-20|21:45] C:\DOCUME~1\MARCKL~1\APPLIC~1\Identities
   [2006-09-02|16:48] C:\DOCUME~1\MARCKL~1\APPLIC~1\Image Zone Express
   [2007-03-25|02:00] C:\DOCUME~1\MARCKL~1\APPLIC~1\InstallShield
   [2005-04-03|19:18] C:\DOCUME~1\MARCKL~1\APPLIC~1\Kazaa Lite
   [2008-02-27|03:35] C:\DOCUME~1\MARCKL~1\APPLIC~1\Lavasoft
   [2005-09-07|22:14] C:\DOCUME~1\MARCKL~1\APPLIC~1\Leadertech
   [2008-04-15|15:11] C:\DOCUME~1\MARCKL~1\APPLIC~1\LimeWire
   [2008-04-08|17:05] C:\DOCUME~1\MARCKL~1\APPLIC~1\Macromedia
   [2008-04-17|11:00] C:\DOCUME~1\MARCKL~1\APPLIC~1\Microgaming
   [2007-07-01|18:08] C:\DOCUME~1\MARCKL~1\APPLIC~1\Microsoft
   [2005-04-03|16:45] C:\DOCUME~1\MARCKL~1\APPLIC~1\Microsoft Web Folders
   [2008-05-30|16:25] C:\DOCUME~1\MARCKL~1\APPLIC~1\Mozilla
   [2006-12-28|02:10] C:\DOCUME~1\MARCKL~1\APPLIC~1\My Games
   [2007-06-12|21:29] C:\DOCUME~1\MARCKL~1\APPLIC~1\MySpace
   [2007-01-21|01:10] C:\DOCUME~1\MARCKL~1\APPLIC~1\NetMedia Providers
   [2008-05-28|00:56] C:\DOCUME~1\MARCKL~1\APPLIC~1\Notepad++
   [2007-02-02|01:11] C:\DOCUME~1\MARCKL~1\APPLIC~1\Opera
   [2008-07-13|23:21] C:\DOCUME~1\MARCKL~1\APPLIC~1\PacificPoker4
   [2006-09-01|16:34] C:\DOCUME~1\MARCKL~1\APPLIC~1\PatchUpdate_InstantShareJPG.log
   [2006-09-01|16:34] C:\DOCUME~1\MARCKL~1\APPLIC~1\PatchUpdate_IZClosingDiscError.log
   [2007-01-21|01:10] C:\DOCUME~1\MARCKL~1\APPLIC~1\Publish Providers
   [2007-06-08|00:16] C:\DOCUME~1\MARCKL~1\APPLIC~1\Real
   [2007-03-25|01:40] C:\DOCUME~1\MARCKL~1\APPLIC~1\SecuROM
   [2006-07-07|10:55] C:\DOCUME~1\MARCKL~1\APPLIC~1\Seven Zip
   [2005-08-29|22:43] C:\DOCUME~1\MARCKL~1\APPLIC~1\Sierra
   [2007-01-28|00:14] C:\DOCUME~1\MARCKL~1\APPLIC~1\SignupShield
   [2007-01-21|01:10] C:\DOCUME~1\MARCKL~1\APPLIC~1\Sony
   [2005-04-02|17:43] C:\DOCUME~1\MARCKL~1\APPLIC~1\Sun
   [2005-04-02|17:48] C:\DOCUME~1\MARCKL~1\APPLIC~1\sversion.ini
   [2005-04-03|17:33] C:\DOCUME~1\MARCKL~1\APPLIC~1\Symantec
   [2007-12-01|02:09] C:\DOCUME~1\MARCKL~1\APPLIC~1\TMNT
   [2008-03-30|14:20] C:\DOCUME~1\MARCKL~1\APPLIC~1\U3
   [2008-01-08|00:33] C:\DOCUME~1\MARCKL~1\APPLIC~1\Ulead Systems
   [2005-04-02|17:51] C:\DOCUME~1\MARCKL~1\APPLIC~1\user60.rdb
   [2007-11-13|03:11] C:\DOCUME~1\MARCKL~1\APPLIC~1\vlc
   [2006-06-30|23:55] C:\DOCUME~1\MARCKL~1\APPLIC~1\W?nSxS
   [2005-09-10|02:52] C:\DOCUME~1\MARCKL~1\APPLIC~1\Zylom
   [2006-08-15|08:36] C:\DOCUME~1\MARCKL~1\APPLIC~1\?icrosoft.NET

   [2007-03-12|18:13] C:\DOCUME~1\MaUdInE\APPLIC~1\Adobe
   [2006-10-15|12:05] C:\DOCUME~1\MaUdInE\APPLIC~1\AdobeDLM.log
   [2006-01-16|11:28] C:\DOCUME~1\MaUdInE\APPLIC~1\AdobeUM
   [2005-10-16|21:37] C:\DOCUME~1\MaUdInE\APPLIC~1\Apple Computer
   [2006-03-22|21:51] C:\DOCUME~1\MaUdInE\APPLIC~1\ATI
   [2005-04-02|10:01] C:\DOCUME~1\MaUdInE\APPLIC~1\desktop.ini
   [2006-10-15|12:05] C:\DOCUME~1\MaUdInE\APPLIC~1\dm.ini
   [2006-10-04|23:17] C:\DOCUME~1\MaUdInE\APPLIC~1\Google
   [2006-11-30|19:21] C:\DOCUME~1\MaUdInE\APPLIC~1\HP
   [2005-04-09|11:04] C:\DOCUME~1\MaUdInE\APPLIC~1\Identities
   [2005-06-28|15:15] C:\DOCUME~1\MaUdInE\APPLIC~1\Kazaa Lite
   [2005-06-05|21:07] C:\DOCUME~1\MaUdInE\APPLIC~1\Lavasoft
   [2005-06-05|20:50] C:\DOCUME~1\MaUdInE\APPLIC~1\Macromedia
   [2008-07-20|19:00] C:\DOCUME~1\MaUdInE\APPLIC~1\Microsoft
   [2007-06-17|18:31] C:\DOCUME~1\MaUdInE\APPLIC~1\Real
   [2005-06-13|21:14] C:\DOCUME~1\MaUdInE\APPLIC~1\Sun
   [2006-06-16|14:15] C:\DOCUME~1\MaUdInE\APPLIC~1\Symantec
   [2007-05-21|17:29] C:\DOCUME~1\MaUdInE\APPLIC~1\s?stem32
   [2006-08-15|08:34] C:\DOCUME~1\MaUdInE\APPLIC~1\?ppPatch
   [2006-08-30|17:39] C:\DOCUME~1\MaUdInE\APPLIC~1\??sembly

   [2008-07-20|19:00] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
   [2006-03-11|21:18] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec
 
   --------------------\  Tâches planifiées dans C:\WINDOWS	asks

   [2008-07-29 03:00][--ah-----] C:\WINDOWS	asks\BA2EA86096F55570.job
   [2008-07-29 01:51][--ah-----] C:\WINDOWS	asks\MP Scheduled Scan.job
   [2008-07-28 19:51][--a------] C:\WINDOWS	asks\Ad-Aware SE Personal.job
   [2008-07-27 13:14][--ah-----] C:\WINDOWS	asks\SA.DAT
   [2004-08-05 08:00][-r-h-----] C:\WINDOWS	asks\desktop.ini

   ( BA2EA86096F55570.job )=( c:\docume~1\marckl~1\applic~1\audion~1\OkayOnlineHeart.exe )

   --------------------\  Listing des dossiers dans C:\Program Files

   [2008-03-26|11:50] C:\Program Files\_uninstallation_info
   [2008-04-17|10:55] C:\Program Files\Absolute Poker
   [2008-06-02|13:42] C:\Program Files\Adobe
   [2005-04-02|16:00] C:\Program Files\Ahead
   [2007-10-19|00:04] C:\Program Files\aMSN
   [2007-10-13|11:46] C:\Program Files\ATI Technologies
   [2008-05-30|02:29] C:\Program Files\AVG
   [2007-02-26|23:54] C:\Program Files\Avid
   [2008-02-29|20:00] C:\Program Files\AviSynth 2.5
   [2008-02-06|09:57] C:\Program Files\BitComet
   [2008-07-17|10:02] C:\Program Files\Blaze Media Pro
   [2008-06-02|13:44] C:\Program Files\Bonjour
   [2006-09-06|21:01] C:\Program Files\CCleaner
   [2007-04-25|10:48] C:\Program Files\CDisplay
   [2005-04-10|22:09] C:\Program Files\C-Media
   [2005-04-02|15:47] C:\Program Files\C-Media 3D Audio
   [2006-07-29|16:31] C:\Program Files\Common Files
   [2006-07-31|00:20] C:\Program Files\CureROM
   [2008-02-01|04:09] C:\Program Files\CyberLink
   [2008-06-22|23:17] C:\Program Files\Dictionnaire
   [2005-07-06|21:51] C:\Program Files\directx
   [2008-01-16|12:48] C:\Program Files\DivX
   [2005-08-29|22:19] C:\Program Files\D-Tools
   [2007-07-01|18:02] C:\Program Files\Dynex Wireless G Adapter
   [2008-02-29|20:00] C:\Program Files\eRightSoft
   [2005-09-09|14:37] C:\Program Files\EZFace
   [2008-06-18|11:37] C:\Program Files\Fichiers communs
   [2006-10-04|12:35] C:\Program Files\FileZilla
   [2008-07-23|10:40] C:\Program Files\FTP Commander
   [2008-05-31|03:53] C:\Program Files\Full Contact Poker
   [2007-03-31|22:43] C:\Program Files\fullcontactpoker_com.exe
   [2007-02-18|22:13] C:\Program Files\Google
   [2008-05-30|02:28] C:\Program Files\Grisoft
   [2007-01-11|17:18] C:\Program Files\gs
   [2005-07-21|19:07] C:\Program Files\Hasbro Interactive
   [2006-09-09|00:50] C:\Program Files\HP
   [2006-12-21|00:31] C:\Program Files\Illustrate
   [2007-10-23|01:49] C:\Program Files\ImTOO
   [2005-07-12|17:00] C:\Program Files\INSTALL.LOG
   [2008-06-01|20:24] C:\Program Files\InstallShield Installation Information
   [2008-07-26|18:23] C:\Program Files\Internet Explorer
   [2008-01-27|04:42] C:\Program Files\Java
   [2005-04-03|19:18] C:\Program Files\Kazaa Lite K++
   [2008-02-27|03:35] C:\Program Files\Lavasoft
   [2007-04-26|11:29] C:\Program Files\Learning Essentials
   [2008-03-10|23:05] C:\Program Files\LimeWire
   [2006-09-11|17:17] C:\Program Files\LocalAutorun
   [2005-07-06|21:50] C:\Program Files\Logitech
   [2006-03-22|21:55] C:\Program Files\Macrogaming
   [2007-04-26|11:21] C:\Program Files\MagicDisc
   [2007-04-26|11:15] C:\Program Files\MagicISO
   [2006-03-10|23:48] C:\Program Files\Maxtor
   [2005-04-02|16:38] C:\Program Files\Messenger
   [2005-04-03|23:35] C:\Program Files\M‚t‚oM‚dia
   [2005-04-03|16:45] C:\Program Files\microsoft frontpage
   [2006-05-30|16:45] C:\Program Files\Microsoft Office
   [2007-01-21|01:05] C:\Program Files\Microsoft SQL Server
   [2007-04-26|11:30] C:\Program Files\Microsoft Student
   [2006-05-30|15:58] C:\Program Files\Microsoft Visual Studio
   [2006-03-13|23:55] C:\Program Files\mIRC
   [2005-04-02|15:19] C:\Program Files\Movie Maker
   [2008-07-13|21:39] C:\Program Files\Mozilla Firefox
   [2005-04-02|15:17] C:\Program Files\MSN
   [2008-03-22|15:16] C:\Program Files\MSN Games
   [2005-09-28|13:55] C:\Program Files\MSN Gaming Zone
   [2006-09-07|00:28] C:\Program Files\MSXML 4.0
   [2007-10-13|01:14] C:\Program Files\MSXML 6.0
   [2005-04-03|19:53] C:\Program Files\MUSICMATCH
   [2007-06-12|21:32] C:\Program Files\MySpace
   [2006-06-15|15:07] C:\Program Files\M?crosoft.NET
   [2005-07-12|14:28] C:\Program Files\NetAssistant
   [2005-04-02|15:19] C:\Program Files\NetMeeting
   [2006-06-17|17:58] C:\Program Files\Norton AntiVirus
   [2008-05-28|00:56] C:\Program Files\Notepad++
   [2005-04-02|15:18] C:\Program Files\Online Services
   [2005-04-02|17:48] C:\Program Files\OpenOffice.org1.0.1
   [2007-03-20|02:40] C:\Program Files\Outerinfo
   [2007-10-13|01:13] C:\Program Files\Outlook Express
   [2008-01-08|04:27] C:\Program Files\PacificPoker
   [2008-07-16|03:39] C:\Program Files\PacificPoker4
   [2008-07-28|21:23] C:\Program Files\PartyGaming
   [2006-02-20|02:14] C:\Program Files\PartyPoker
   [2008-03-19|10:01] C:\Program Files\Passware
   [2006-06-18|02:06] C:\Program Files\Pcsx2
   [2007-12-27|19:21] C:\Program Files\PDF Writer
   [2008-01-24|17:49] C:\Program Files\Pivot Stickfigure Animator
   [2007-03-10|23:05] C:\Program Files\pokerpacific
   [2008-06-11|22:59] C:\Program Files\PokerStars.NET
   [2008-04-17|13:04] C:\Program Files\PokerTimeMPP
   [2006-05-21|02:31] C:\Program Files\PowerISO
   [2005-09-10|19:53] C:\Program Files\QuickTime
   [2007-12-27|20:13] C:\Program Files\Readiris Pro 11 Corporate Edition
   [2007-06-08|00:12] C:\Program Files\Real
   [2005-04-18|20:55] C:\Program Files\RealVNC
   [2007-02-26|23:52] C:\Program Files\SafeNet Sentinel
   [2005-04-02|15:20] C:\Program Files\Services en ligne
   [2006-03-28|03:13] C:\Program Files\solarus
   [2007-01-21|01:01] C:\Program Files\Sony
   [2007-12-27|20:13] C:\Program Files\Super DVD Creator 9.25.0
   [2007-05-14|23:22] C:\Program Files\Traction Software
   [2007-03-25|01:42] C:\Program Files\Ubisoft
   [2008-01-08|00:31] C:\Program Files\Ulead Systems
   [2007-01-21|01:14] C:\Program Files\Uninstall Information
   [2005-04-02|15:54] C:\Program Files\VIA
   [2007-06-23|23:52] C:\Program Files\VSTplugins
   [2008-02-29|12:11] C:\Program Files\Winamp
   [2005-08-31|09:46] C:\Program Files\WinAVI VideoConverter
   [2006-12-06|11:18] C:\Program Files\Windows Defender
   [2006-09-05|19:58] C:\Program Files\Windows Installer Clean Up
   [2005-04-17|20:37] C:\Program Files\Windows Journal Viewer
   [2008-03-03|14:41] C:\Program Files\Windows Live
   [2005-04-10|20:15] C:\Program Files\Windows Media Components
   [2006-12-14|17:04] C:\Program Files\Windows Media Connect
   [2006-12-14|17:06] C:\Program Files\Windows Media Connect 2
   [2006-12-14|17:06] C:\Program Files\Windows Media Player
   [2005-04-02|15:17] C:\Program Files\Windows NT
   [2005-04-02|15:20] C:\Program Files\WindowsUpdate
   [2005-04-11|20:59] C:\Program Files\WinMPG Video Convert
   [2007-12-20|19:55] C:\Program Files\WinRAR
   [2007-09-26|10:55] C:\Program Files\WinUHA
   [2005-04-03|18:50] C:\Program Files\WinZip
   [2005-04-02|15:22] C:\Program Files\xerox
   [2007-08-30|00:36] C:\Program Files\Xilisoft
   [2007-11-08|00:52] C:\Program Files\Xvid
   [2006-01-16|11:25] C:\Program Files\Yahoo!
   [2005-09-10|12:27] C:\Program Files\Zylom Games
   [2006-06-30|18:12] C:\Program Files\??mbols
   [2006-08-20|14:17] C:\Program Files\??sks

   --------------------\  Listing des dossiers dans C:\Program Files\Fichiers communs

   [2008-06-02|13:44] C:\Program Files\Fichiers communs\Adobe
   [2007-02-01|11:19] C:\Program Files\Fichiers communs\Adobe Systems Shared
   [2005-04-02|16:00] C:\Program Files\Fichiers communs\Ahead
   [2006-05-30|15:58] C:\Program Files\Fichiers communs\Designer
   [2007-02-26|23:55] C:\Program Files\Fichiers communs\Digidesign
   [2006-08-15|02:45] C:\Program Files\Fichiers communs\DirectX
   [2005-07-06|21:50] C:\Program Files\Fichiers communs\FotoWire
   [2007-11-08|02:11] C:\Program Files\Fichiers communs\GTK
   [2005-04-03|19:51] C:\Program Files\Fichiers communs\InstallShield
   [2005-04-02|17:43] C:\Program Files\Fichiers communs\Java
   [2005-07-06|21:51] C:\Program Files\Fichiers communs\Logitech
   [2008-01-18|18:58] C:\Program Files\Fichiers communs\Macromedia
   [2008-01-17|14:38] C:\Program Files\Fichiers communs\Macrovision Shared
   [2008-05-30|02:28] C:\Program Files\Fichiers communs\Microsoft Shared
   [2005-07-11|19:13] C:\Program Files\Fichiers communs\Motive
   [2005-04-02|15:19] C:\Program Files\Fichiers communs\MSSoap
   [2005-10-16|22:05] C:\Program Files\Fichiers communs\NSV
   [2005-04-02|10:01] C:\Program Files\Fichiers communs\ODBC
   [2007-06-08|00:13] C:\Program Files\Fichiers communs\Real
   [2007-02-26|23:52] C:\Program Files\Fichiers communs\SafeNet Sentinel
   [2005-04-02|15:19] C:\Program Files\Fichiers communs\Services
   [2005-04-02|10:01] C:\Program Files\Fichiers communs\SpeechEngines
   [2006-06-18|01:48] C:\Program Files\Fichiers communs\Symantec Shared
   [2007-10-13|01:12] C:\Program Files\Fichiers communs\System
   [2008-03-03|14:38] C:\Program Files\Fichiers communs\WindowsLiveInstaller
   [2008-02-27|03:33] C:\Program Files\Fichiers communs\Wise Installation Wizard
   [2007-06-08|00:13] C:\Program Files\Fichiers communs\xing shared

   --------------------\  Process

   ( 56 Processus )

   iexplore.exe ~ [5720]
   iexplore.exe ~ [4336]
   iexplore.exe ~ [4540]

   --------------------\  Recherche avec S_Lop

   C:\DOCUME~1\MARCKL~1\LOCALS~1\Temp\bis59.exe
   C:\DOCUME~1\MARCDE~1\APPLIC~1\AUDION~1
 
   --------------------\  Recherche de Fichiers / Dossiers Lop

   C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
   C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin\about thunk.exe
   C:\DOCUME~1\MARCDE~1\APPLIC~1\audion~1
   C:\DOCUME~1\MARCKL~1\APPLIC~1\audion~1
   C:\DOCUME~1\MARCKL~1\APPLIC~1\audion~1\icosraav.exe
   C:\DOCUME~1\MARCKL~1\APPLIC~1\audion~1\OkayOnlineHeart.exe
   C:\DOCUME~1\MARCKL~1\APPLIC~1\audion~1\Program Grid.exe
   C:\WINDOWS\Prefetch\WINZIX-2.3.0.0-SETUP.EXE-3467EA7E.pf
   C:\WINDOWS\Prefetch\WINZIX.EXE-13D951E4.pf
   C:\DOCUME~1\MARCKL~1\Cookies\marc klein@adultfriendfinder[1].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc_klein@adultfriendfinder[2].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc_klein@ads.poweradvertising[1].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc_klein@advertising[1].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc_klein@adopt.euroclick[2].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc klein@pacificpoker[2].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc_klein@pacificpoker[1].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc klein@partygaming.122.2o7[1].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc klein@partygaming.122.2o7[2].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc klein@partypoker[1].txt
   C:\DOCUME~1\MARCKL~1\Cookies\marc_klein@partypoker[1].txt
   C:\WINDOWS\Tasks\BA2EA86096F55570.job
 
   --------------------\  Verification du Registre

   [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\HoleMapiAdmin]
   "DisplayName"="CiD Help"
   "UninstallString"="C:\DOCUME~1\MARCKL~1\APPLIC~1\AUDION~1\Program Grid.exe -uninstall"

   [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 
   "Bend Great"="C:\DOCUME~1\MARCKL~1\APPLIC~1\AUDION~1\Program Grid.exe"
   "Bend Great"="C:\DOCUME~1\MARCKL~1\APPLIC~1\AUDION~1\Program Grid.exe"

   [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
   "Online chin internet bolt"="C:\Documents and Settings\All Users\Application Data\Bags Plus Online Chin\about thunk.exe"

   --------------------\  Verification du fichier Hosts

   Fichier Hosts PROPRE


   --------------------\  Recherche de fichiers avec Catchme
 
   catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
   Rootkit scan 2008-07-29 03:40:31
   Windows 5.1.2600 Service Pack 2 NTFS
   scanning hidden processes ...
   scanning hidden files ...
   C:\DOCUME~1\MARCKL~1\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 685 bytes hidden from API
   scan completed successfully
   hidden processes: 0
   hidden files: 1
 
   --------------------\  Recherche d'autres infections

   --------------------\  Cracks & Keygens ..

   
   [F:715][D:54]-> C:\DOCUME~1\MARCKL~1\LOCALS~1\Temp
   [F:1082][D:0]-> C:\DOCUME~1\MARCKL~1\Cookies
   [F:6546][D:13]-> C:\DOCUME~1\MARCKL~1\LOCALS~1\TEMPOR~1\content.IE5

   --------------------\  Fin du rapport a  3:53:44,80
   Aucun fichier / dossier Lop trouvé ! 
 
   --------------------\  Verification du Registre
 
   ..... OK !

   --------------------\  Verification du fichier Hosts

   Fichier Hosts PROPRE


   --------------------\  Recherche de fichiers avec Catchme
 
   catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
   Rootkit scan 2008-07-29 10:50:53
   Windows 5.1.2600 Service Pack 2 NTFS
   scanning hidden processes ...
   scanning hidden files ...
   C:\DOCUME~1\MARCKL~1\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 685 bytes hidden from API
   scan completed successfully
   hidden processes: 0
   hidden files: 1
 
   --------------------\  Recherche d'autres infections

   --------------------\  Cracks & Keygens ..

  
   [F:711][D:54]-> C:\DOCUME~1\MARCKL~1\LOCALS~1\Temp
   [F:1071][D:0]-> C:\DOCUME~1\MARCKL~1\Cookies
   [F:6579][D:13]-> C:\DOCUME~1\MARCKL~1\LOCALS~1\TEMPOR~1\content.IE5

   --------------------\  Fin du rapport a 10:53:34,52

Destrio5 · Answer

Bien, poste un nouveau rapport HijackThis.

99Marc99 · Answer

le voici

Logfile of HijackThis v1.99.1
Scan saved at 13:51:10, on 2008-07-30
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Dynex Wireless G Adapter\WLService.exe
C:\Program Files\Dynex Wireless G Adapter\WLanCfgG.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\VTTimer.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb12.exe
C:\WINDOWS\system32\ctfmon.exe
C:\program files\MétéoMédia\MétéoIMédia\WeatherEye.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe
C:\Program Files\Winamp\winamp.exe
C:\WINDOWS\system32	askmgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\iexplore.exe
E:\PDF.Writer\ADOBE\Acrobat\Acrobat.exe
C:\DOCUME~1\MARCKL~1\LOCALS~1\Temp\Adobelm_Cleanup.0001
C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
C:\DOCUME~1\MARCKL~1\LOCALS~1\Temp\Adobelm_Cleanup.0001
C:\Documents and Settings\Marc Decommerce\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = prosearching.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fsympatico.msn.ca%2fdefaultf.aspx%2f%3f
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = prosearching.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = prosearching.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {D2AF9DF9-0E39-0DEF-4172-5CF008BA3DB6} - (no file)
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE	oolbar.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\PDF.Writer\ADOBE\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1	oolbar.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet	ools\BitCometBHO_1.1.7.4.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Encarta Web Companion Helper Object - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE	oolbar.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Encarta Web Companion - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb12.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MétéoIMédia] C:\program files\MétéoMédia\MétéoIMédia\WeatherEye.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [L07AXLRD_383439062] "H:\ENCARTA\Microsoft Student with Encarta Premium 2007 DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O8 - Extra context menu item: Convert link target to Adobe PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://E:\PDF.Writer\ADOBE\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\Marc Gaudreau\Programmes\Absolute Poker\Absolute Poker.lnk
O9 - Extra 'Tools' menuitem: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\Marc Gaudreau\Programmes\Absolute Poker\Absolute Poker.lnk
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files\BitComet	ools\BitCometBHO_1.1.7.4.dll
O9 - Extra button: PacificPoker4 - {94EDF7B4-4272-4af3-8F8B-4E2F68E225B7} - C:\PROGRA~1\PACIFI~2\pacificpoker.exe (file missing)
O9 - Extra button: Encarta Search Bar - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: PartyCasino.com - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - C:\Program Files\PartyGaming\PartyCasino\RunCasino.exe
O9 - Extra 'Tools' menuitem: PartyCasino.com - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - C:\Program Files\PartyGaming\PartyCasino\RunCasino.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/binFrameWork/v10/StagingUI.cab55579.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5) - http://upload.facebook.com/controls/FacebookPhotoUploader5.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {25365FF3-2746-4230-9DA7-163CCA318309} (Automatic Driver Installation Control) - http://inst.c-wss.com/n024p/FR/install/gtdownlr.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (MSN Games – Buddy Invite) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/BinFrameWork/v10/ZBuddy.cab55579.cab
O16 - DPF: {3DA5D23B-EFE1-4181-ADB7-7D457567AACA} (TGOnlineCtrl Class) - http://zone.msn.com/bingame/pacz/default/pandaonline.cab
O16 - DPF: {3FE16C08-D6A7-4133-84FC-D5BFB4F7D886} (WebGameLoader Class) - http://zone.msn.com/bingame/rtlw/default/ReflexiveWebGameLoader.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/binframework/v10/ZPAChat.cab55579.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/controls/FacebookPhotoUploader3.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1112473915984
O16 - DPF: {64D01C7F-810D-446E-A07E-16C764235644} (AtlAtomadersCtlAttrib Class) - http://zone.msn.com/bingame/amad/default/atomaders.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game15.zylomgames.com/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} (SproutLauncherCtrl Class) - http://zone.msn.com/bingame/feed/default/SproutLauncher.cab
O16 - DPF: {D77EF652-9A6B-40C8-A4B9-1C0697C6CF41} (TikGames Online Control) - http://zone.msn.com/bingame/shpo/default/shapo.cab
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (MSN Games – Game Communicator) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/binframework/v10/StProxy.cab55579.cab
O16 - DPF: {DAF5D9A2-D982-4671-83E4-0398706A5F6A} (SCEWebLauncherCtl Object) - http://zone.msn.com/bingame/hsol/default/SCEWebLauncher.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/bingame/dim2/default/popcaploader_v6.cab
O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} (HeartbeatCtl Class) - http://fdl.msn.com/zone/datafiles/heartbeat.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/binary/Chess.cab57176.cab
O16 - DPF: {EB387D2F-E27B-4D36-979E-847D1036C65D} (QDiagHUpdateObj Class) - http://h30155.www3.hp.com/ediags/hpfix/aio/fr/check/qdiagh.cab?326
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by125fd.bay125.hotmail.msn.com/activex/HMAtchmt.ocx
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F773E7B2-62A9-4524-9109-87D2F0BEFAA4} (ChessControl Class) - http://zone.msn.com/bingame/zpagames/zpa_kqrp.cab56961.cab
O16 - DPF: {FF3C5A9F-5A91-4930-80E8-4709194C2AD3} (CheckersZPA Object) - http://zone.msn.com/bingame/zpagames/CheckersZPA.cab40641.cab
O18 - Protocol: bw+0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {14168818-826A-4C3F-A7F7-E9B1C35BD0E2} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - AppInit_DLLs: avgrsstx.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Dynex DX-WGDTC Service (Dynex DX-WGDTC WLService) - Unknown owner - C:\Program Files\Dynex Wireless G Adapter\WLService.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SAVScan - Unknown owner - C:\Program Files\Norton AntiVirus\SAVScan.exe (file missing)
O23 - Service: ScriptBlocking Service (SBService) - Unknown owner - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe (file missing)
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe

Pop-up et des pages internet

11 réponses

Votre réponse

Discussions similaires

Newsletters