Ligne 018 log hijackthis
Résolu
tenace
Messages postés
840
Statut
Membre
-
tenace Messages postés 840 Statut Membre -
tenace Messages postés 840 Statut Membre -
Bonsoir à tous,
Voici un log, exécuté sur un pc que je suis censé désinfecté.(Toshiba portable)
J'ai installé
antivir après avoir supprimé avast.
Ccleaner
Spybot
adaward
Si l'un d'entre vous pouvait me refiler un coup de main, cela m'arrangerait, car je suis sur le pc depuis hier 16.3O H.
Un grand merci d'avance
Kev.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:44:00, on 18/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TOSHIBA\TME3\Tmesbs32.exe
C:\Program Files\TOSHIBA\TME3\Tmesrv31.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TOSHIBA\Wireless Hotkey\TosHKCW.exe
C:\Program Files\TOSHIBA\TME3\TMERzCtl.EXE
C:\Program Files\TOSHIBA\TME3\TMEEJME.EXE
C:\Program Files\TOSHIBA\TME3\TMESBS32.EXE
C:\Program Files\TOSHIBA\DualPointUtility\TEDTray.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Microsoft Office\Office\1036\OLFSNT40.EXE
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Logitech\KhalShared\KHALMNPR.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avscan.exe
C:\Program Files\Trend Micro\HijackThis\test.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [TosHKCW.exe] "C:\Program Files\TOSHIBA\Wireless Hotkey\TosHKCW.exe"
O4 - HKLM\..\Run: [TMESRV.EXE] C:\Program Files\TOSHIBA\TME3\TMESRV31.EXE /Logon
O4 - HKLM\..\Run: [TMERzCtl.EXE] C:\Program Files\TOSHIBA\TME3\TMERzCtl.EXE /Service
O4 - HKLM\..\Run: [TMEEJME.EXE] C:\Program Files\TOSHIBA\TME3\TMEEJME.EXE
O4 - HKLM\..\Run: [TMESBS.EXE] C:\Program Files\TOSHIBA\TME3\TMESBS32.EXE /Client
O4 - HKLM\..\Run: [DpUtil] C:\Program Files\TOSHIBA\DualPointUtility\TEDTray.exe
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [Drag'n Drop CD+DVD] C:\Program Files\Drag'n Drop CD+DVD\BinFiles\DragDrop.exe /StartUp
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Symantec Fax Starter Edition Port.lnk = C:\Program Files\Microsoft Office\Office\1036\OLFSNT40.EXE
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: &Search - http://ko.bar.need2find.com/KO/menusearch.html?p=KO
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: bw+0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Filter hijack: text/html - (no CLSID) - (no file)
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Tmesbs32 (Tmesbs) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TME3\Tmesbs32.exe
O23 - Service: Tmesrv3 (Tmesrv) - TOSHIBA - C:\Program Files\TOSHIBA\TME3\Tmesrv31.exe
Voici un log, exécuté sur un pc que je suis censé désinfecté.(Toshiba portable)
J'ai installé
antivir après avoir supprimé avast.
Ccleaner
Spybot
adaward
Si l'un d'entre vous pouvait me refiler un coup de main, cela m'arrangerait, car je suis sur le pc depuis hier 16.3O H.
Un grand merci d'avance
Kev.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:44:00, on 18/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TOSHIBA\TME3\Tmesbs32.exe
C:\Program Files\TOSHIBA\TME3\Tmesrv31.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TOSHIBA\Wireless Hotkey\TosHKCW.exe
C:\Program Files\TOSHIBA\TME3\TMERzCtl.EXE
C:\Program Files\TOSHIBA\TME3\TMEEJME.EXE
C:\Program Files\TOSHIBA\TME3\TMESBS32.EXE
C:\Program Files\TOSHIBA\DualPointUtility\TEDTray.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Microsoft Office\Office\1036\OLFSNT40.EXE
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Logitech\KhalShared\KHALMNPR.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avscan.exe
C:\Program Files\Trend Micro\HijackThis\test.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [TosHKCW.exe] "C:\Program Files\TOSHIBA\Wireless Hotkey\TosHKCW.exe"
O4 - HKLM\..\Run: [TMESRV.EXE] C:\Program Files\TOSHIBA\TME3\TMESRV31.EXE /Logon
O4 - HKLM\..\Run: [TMERzCtl.EXE] C:\Program Files\TOSHIBA\TME3\TMERzCtl.EXE /Service
O4 - HKLM\..\Run: [TMEEJME.EXE] C:\Program Files\TOSHIBA\TME3\TMEEJME.EXE
O4 - HKLM\..\Run: [TMESBS.EXE] C:\Program Files\TOSHIBA\TME3\TMESBS32.EXE /Client
O4 - HKLM\..\Run: [DpUtil] C:\Program Files\TOSHIBA\DualPointUtility\TEDTray.exe
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [Drag'n Drop CD+DVD] C:\Program Files\Drag'n Drop CD+DVD\BinFiles\DragDrop.exe /StartUp
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Symantec Fax Starter Edition Port.lnk = C:\Program Files\Microsoft Office\Office\1036\OLFSNT40.EXE
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: &Search - http://ko.bar.need2find.com/KO/menusearch.html?p=KO
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: bw+0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {96E70D13-6DF0-4583-9F5A-CF93F4E0963B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Filter hijack: text/html - (no CLSID) - (no file)
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Tmesbs32 (Tmesbs) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TME3\Tmesbs32.exe
O23 - Service: Tmesrv3 (Tmesrv) - TOSHIBA - C:\Program Files\TOSHIBA\TME3\Tmesrv31.exe
A voir également:
- Ligne 018 log hijackthis
- Hijackthis - Télécharger - Antivirus & Antimalwares
- Partager photos en ligne - Guide
- Mètre en ligne - Guide
- Formulaire en ligne de meta - Guide
- Apparaitre hors ligne instagram - Guide
7 réponses
salut toptitbal.
on vire kazaA, hein ? ;)
tenace :
* Télécharge OTMoveIt2 (de Old_Timer) sur ton bureau : http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe
* Double-clique sur OTMoveIt.exe pour lancer le programme,
* Copie la liste de fichiers ou de dossiers ci-dessous et colle-la dans la fenêtre du programme "Paste Custom List of Files/Folders to Move" :
C:\Program Files\KaZaA
C:\Program Files\KaZaA\My Shared Folder
C:\Program Files\KaZaA\Help
C:\Program Files\KaZaA\My Search Agents
C:\Program Files\KaZaA\Promotions
C:\Program Files\KaZaA\Skins
C:\Program Files\KaZaA\licenses
C:\Program Files\KaZaA\My Unshared Folder
C:\Program Files\KaZaA\rjn.a92
C:\Program Files\Need2Find
C:\Program Files\Need2Find\bar
* Clique sur MoveIt! pour lancer la suppression,
* Le résultat appraraîtra dans le cadre Results.
* Clique sur Exit pour fermer le programme.
* Poste le rapport qui est situé ici : C:\\\_OTMoveIt\MovedFiles
* Il te sera peut-être demandé de redémarrer ton PC. Dans ce cas, clique sur Yes.
puis dis nous ce que tu penses de boonty ?
@+
on vire kazaA, hein ? ;)
tenace :
* Télécharge OTMoveIt2 (de Old_Timer) sur ton bureau : http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe
* Double-clique sur OTMoveIt.exe pour lancer le programme,
* Copie la liste de fichiers ou de dossiers ci-dessous et colle-la dans la fenêtre du programme "Paste Custom List of Files/Folders to Move" :
C:\Program Files\KaZaA
C:\Program Files\KaZaA\My Shared Folder
C:\Program Files\KaZaA\Help
C:\Program Files\KaZaA\My Search Agents
C:\Program Files\KaZaA\Promotions
C:\Program Files\KaZaA\Skins
C:\Program Files\KaZaA\licenses
C:\Program Files\KaZaA\My Unshared Folder
C:\Program Files\KaZaA\rjn.a92
C:\Program Files\Need2Find
C:\Program Files\Need2Find\bar
* Clique sur MoveIt! pour lancer la suppression,
* Le résultat appraraîtra dans le cadre Results.
* Clique sur Exit pour fermer le programme.
* Poste le rapport qui est situé ici : C:\\\_OTMoveIt\MovedFiles
* Il te sera peut-être demandé de redémarrer ton PC. Dans ce cas, clique sur Yes.
puis dis nous ce que tu penses de boonty ?
@+
Bonjour
Desktop Messenger, désinstalle-le par ajout/suppression de programmes.
Tu as une barre d'outils infectée :
Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2
* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique maintenant sur le raccourci de Toolbar-S&D.
* Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Poste le rapport généré. (C:\TB.txt)
Desktop Messenger, désinstalle-le par ajout/suppression de programmes.
Tu as une barre d'outils infectée :
Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2
* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique maintenant sur le raccourci de Toolbar-S&D.
* Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Poste le rapport généré. (C:\TB.txt)
salut,
les lignes 018 sont generé par la web cam logitec, tu peux toutes les supprimer
ainsi que :
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Symantec Fax Starter Edition Port.lnk = C:\Program Files\Microsoft Office\Office\1036\OLFSNT40.EXE
O8 - Extra context menu item: &Search - http://ko.bar.need2find.com/KO/menusearch.html?p=KO
comment fixer :
Tutoriel d´utilisation (video) : (Merci a Balltrap34 pour cette réalisation)
-> http://perso.orange.fr/rginformatique/section%20virus/demohijack.htm
acrobat reader n´est pas a jour :
ta version de acrobat reader n´est pas a jour, tu veux la derniere verion en date alors desinstale ta version par le panneau de configuration / ajoue et suppression de programme
et instale la derniere :
https://get2.adobe.com/reader/otherversions/
ou oublie completement acrobat reader et instales foxit plus léger a la place:
https://www.clubic.com/telecharger-fiche13808-foxit-reader.html
puis qu´est ce que tu pense de ca ?
A propos de Boonty games
Utilises tu des jeux de boonty games depuis longtemps ?
Voici une petite information sur Boonty games
Leur politique :
"Il se peut que nous partageons aussi des informations payantes avec des tiers
qui fournissent des services payants et partage des données regroupées montrant le type
et le nombre de jeux vidéos que vous téléchargez, votre age, votre sexe, vos occupations,
niveau d'éducation, localité géographique, données sur l'équipement de votre ordinateur,
internet et intérêts pour les jeux vidéos, activités et entraînement des jeux édités.
De plus, nous partageons les adresses email avec des tiers fournisseurs de compte mails
qui nous assistent en envoyant nos mails a de nombreux clients en même temps..."
Si tu es d'accord avec eux, pas de problèmes sinon...
@+
les lignes 018 sont generé par la web cam logitec, tu peux toutes les supprimer
ainsi que :
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Symantec Fax Starter Edition Port.lnk = C:\Program Files\Microsoft Office\Office\1036\OLFSNT40.EXE
O8 - Extra context menu item: &Search - http://ko.bar.need2find.com/KO/menusearch.html?p=KO
comment fixer :
Tutoriel d´utilisation (video) : (Merci a Balltrap34 pour cette réalisation)
-> http://perso.orange.fr/rginformatique/section%20virus/demohijack.htm
acrobat reader n´est pas a jour :
ta version de acrobat reader n´est pas a jour, tu veux la derniere verion en date alors desinstale ta version par le panneau de configuration / ajoue et suppression de programme
et instale la derniere :
https://get2.adobe.com/reader/otherversions/
ou oublie completement acrobat reader et instales foxit plus léger a la place:
https://www.clubic.com/telecharger-fiche13808-foxit-reader.html
puis qu´est ce que tu pense de ca ?
A propos de Boonty games
Utilises tu des jeux de boonty games depuis longtemps ?
Voici une petite information sur Boonty games
Leur politique :
"Il se peut que nous partageons aussi des informations payantes avec des tiers
qui fournissent des services payants et partage des données regroupées montrant le type
et le nombre de jeux vidéos que vous téléchargez, votre age, votre sexe, vos occupations,
niveau d'éducation, localité géographique, données sur l'équipement de votre ordinateur,
internet et intérêts pour les jeux vidéos, activités et entraînement des jeux édités.
De plus, nous partageons les adresses email avec des tiers fournisseurs de compte mails
qui nous assistent en envoyant nos mails a de nombreux clients en même temps..."
Si tu es d'accord avec eux, pas de problèmes sinon...
@+
Bonsoir à toi et merci pour ta réponse rapide
Voici le rapport :
-----------\\ ToolBar S&D 1.2.0 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) M processor 1700MHz )
BIOS : v1.50
USER : Administrateur ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.27 (Activated)
C:\ (Local Disk) - FAT32 - Total : 27 Go Free : 3 Go
D:\ (Local Disk) - FAT32 - Total : 27 Go Free : 25 Go
E:\ (CD or DVD)
"C:\ToolBar SD" ( MAJ : 14-09-2008|23:30 )
Option : [1] ( 18/09/2008|18:10 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\Program Files\KaZaA
C:\Program Files\KaZaA\My Shared Folder
C:\Program Files\KaZaA\Help
C:\Program Files\KaZaA\My Search Agents
C:\Program Files\KaZaA\Promotions
C:\Program Files\KaZaA\Skins
C:\Program Files\KaZaA\licenses
C:\Program Files\KaZaA\My Unshared Folder
C:\Program Files\KaZaA\rjn.a92
C:\Program Files\Need2Find
C:\Program Files\Need2Find\bar
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\---Yahoo.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\01net.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\1px_dark.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\1px_green.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\1px_white.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\DownloadCOM.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\ErrorPageTemplate.css
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Thumbs.db
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\YouTube.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\a.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\amazon.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\an.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\arrowB.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\arrowT.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\arrow_down.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\arrow_red.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\arrow_red2.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\arrow_up.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\autofill.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\avstate.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\b.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\background2.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\bg_pub.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\bg_ttl.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\bgmeteo_results.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\bn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\btn_close.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\btn_minus.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\btn_moreforecast.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\c.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\canalblog.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\cn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\d.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\dictionary2.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\dn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\dropdown.css
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\f.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_argentine.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_australia.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_brazil.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_canada.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_china.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_france.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_germany.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_greece.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_hongkong.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_india.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_indonesia.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_italy.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_japan.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_korea.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_mexico.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_netherlands.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_spain.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_sweeden.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_taiwan.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_uk.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_usa.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\fn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\g.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\gaming.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\gn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\gograph.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred0.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred0_5.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred1.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred1_5.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred2.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred2_5.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred3.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred3_5.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred4.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred4_5.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred5.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_aquarius.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_aries.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_cancer.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_capricorn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_gemini.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_leo.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_libra.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_pisces.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_sagittarius.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_scorpio.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_taurus.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_virgo.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\help.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\hideremove.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\highlight.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\hn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\i.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\icotemp_placeholder.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\in.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\ipsearch.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\j.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\jn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\k.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\kn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\l.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\ln.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\loading.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\login.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\logo.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\n.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\new02.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\news.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\news.html
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\nn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\o.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\on.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\p.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\p_yahoo.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\pestscanimg.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\pn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\popup_off.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\popup_on.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\popup_ona.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\q.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\qn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\r.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\relatedlinks.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\report.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\rn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\rss.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\rss.xsl
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\rss1.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\rsslib.js
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\s.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\security.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\siteinfo.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\slider.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\sn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\spacer.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\stars-red1.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\stars-red2.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\stars-red3.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\stars-red4.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\stars-red5.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\storage.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\t.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\tab_icon.png
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\tablib.js
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\tabwelcome_en.html
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\tabwelcome_fr.html
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\technorati.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\thes_search.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\tn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\tools.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\translate.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\u.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\un.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\v.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\vmlib.js
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\vn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\w.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\web.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\wikipedia.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\wn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\x.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\xp_close_small.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\yahoo.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\yahoo_search.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\z.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\zn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\zoom.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\NewCfg
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\vmntoolbartb1500.cfg
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\img1_6.cfg
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\p_yahoo_fr.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\1
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\ErrorLog.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\IEtab.zip
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\pixsy.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\rssmenu1_6.zip
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\userbadsites.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\utf8.js
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\downfile
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\tabdata.js
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo1.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo2.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\rssmenu1_6a.zip
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt128866710
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\COMBOSEARCH.acs
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt7480426
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\IEtab1_7.zip
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\IEtab1_7b.zip
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo3.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo4.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo5.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo6.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo7.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo8.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo9.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo10.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo11.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo12.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo13.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo14.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo15.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo16.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo17.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo18.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo19.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo20.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt204432207
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt418976696
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt93923334
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt104700
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt85613
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt288243612
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt493873182
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt
C:\Program Files\VMNToolbar
C:\Program Files\VMNToolbar\uninstall.exe
C:\Program Files\VMNToolbar\toolbar.ini
C:\Program Files\VMNToolbar\install.ico
C:\Program Files\VMNToolbar\vmntoolbar.dll
C:\WINDOWS\smdat32m.sys
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="https://www.msn.com/fr-fr"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
1 - "C:\ToolBar SD\TB_1.txt" - 18/09/2008|18:07 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 18/09/2008|18:11 - Option : [1]
-----------\\ Fin du rapport a 18:11:19,18
Pour desktop messenger il n'est pas dans la liste des pgmes à ajouter ou supprimer
Voici le rapport :
-----------\\ ToolBar S&D 1.2.0 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) M processor 1700MHz )
BIOS : v1.50
USER : Administrateur ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.27 (Activated)
C:\ (Local Disk) - FAT32 - Total : 27 Go Free : 3 Go
D:\ (Local Disk) - FAT32 - Total : 27 Go Free : 25 Go
E:\ (CD or DVD)
"C:\ToolBar SD" ( MAJ : 14-09-2008|23:30 )
Option : [1] ( 18/09/2008|18:10 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\Program Files\KaZaA
C:\Program Files\KaZaA\My Shared Folder
C:\Program Files\KaZaA\Help
C:\Program Files\KaZaA\My Search Agents
C:\Program Files\KaZaA\Promotions
C:\Program Files\KaZaA\Skins
C:\Program Files\KaZaA\licenses
C:\Program Files\KaZaA\My Unshared Folder
C:\Program Files\KaZaA\rjn.a92
C:\Program Files\Need2Find
C:\Program Files\Need2Find\bar
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\---Yahoo.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\01net.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\1px_dark.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\1px_green.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\1px_white.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\DownloadCOM.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\ErrorPageTemplate.css
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Thumbs.db
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\YouTube.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\a.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\amazon.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\an.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\arrowB.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\arrowT.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\arrow_down.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\arrow_red.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\arrow_red2.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\arrow_up.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\autofill.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\avstate.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\b.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\background2.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\bg_pub.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\bg_ttl.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\bgmeteo_results.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\bn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\btn_close.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\btn_minus.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\btn_moreforecast.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\c.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\canalblog.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\cn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\d.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\dictionary2.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\dn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\dropdown.css
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\f.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_argentine.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_australia.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_brazil.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_canada.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_china.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_france.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_germany.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_greece.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_hongkong.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_india.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_indonesia.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_italy.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_japan.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_korea.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_mexico.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_netherlands.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_spain.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_sweeden.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_taiwan.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_uk.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\flag_usa.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\fn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\g.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\gaming.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\gn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\gograph.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred0.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred0_5.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred1.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred1_5.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred2.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred2_5.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred3.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred3_5.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred4.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred4_5.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\graphred5.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_aquarius.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_aries.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_cancer.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_capricorn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_gemini.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_leo.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_libra.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_pisces.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_sagittarius.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_scorpio.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_taurus.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\h_virgo.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\help.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\hideremove.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\highlight.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\hn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\i.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\icotemp_placeholder.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\in.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\ipsearch.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\j.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\jn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\k.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\kn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\l.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\ln.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\loading.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\login.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\logo.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\n.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\new02.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\news.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\news.html
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\nn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\o.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\on.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\p.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\p_yahoo.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\pestscanimg.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\pn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\popup_off.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\popup_on.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\popup_ona.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\q.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\qn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\r.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\relatedlinks.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\report.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\rn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\rss.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\rss.xsl
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\rss1.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\rsslib.js
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\s.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\security.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\siteinfo.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\slider.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\sn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\spacer.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\stars-red1.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\stars-red2.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\stars-red3.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\stars-red4.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\stars-red5.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\storage.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\t.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\tab_icon.png
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\tablib.js
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\tabwelcome_en.html
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\tabwelcome_fr.html
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\technorati.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\thes_search.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\tn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\tools.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\translate.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\u.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\un.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\v.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\vmlib.js
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\vn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\w.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\web.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\wikipedia.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\wn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\x.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\xp_close_small.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\yahoo.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\yahoo_search.gif
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\z.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\zn.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\zoom.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\NewCfg
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\vmntoolbartb1500.cfg
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\img1_6.cfg
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\p_yahoo_fr.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\1
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\ErrorLog.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\IEtab.zip
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\pixsy.bmp
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\rssmenu1_6.zip
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\userbadsites.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\utf8.js
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\downfile
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\tabdata.js
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo1.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo2.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\rssmenu1_6a.zip
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt128866710
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\COMBOSEARCH.acs
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt7480426
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\IEtab1_7.zip
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\IEtab1_7b.zip
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo3.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo4.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo5.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo6.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo7.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo8.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo9.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo10.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo11.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo12.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo13.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo14.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo15.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo16.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo17.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo18.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo19.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Sinfo20.txt
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt204432207
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt418976696
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt93923334
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt104700
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt85613
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt288243612
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt493873182
C:\DOCUME~1\ADMINI~1\APPLIC~1\VMNToolbar\Paris__weather.txt
C:\Program Files\VMNToolbar
C:\Program Files\VMNToolbar\uninstall.exe
C:\Program Files\VMNToolbar\toolbar.ini
C:\Program Files\VMNToolbar\install.ico
C:\Program Files\VMNToolbar\vmntoolbar.dll
C:\WINDOWS\smdat32m.sys
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="https://www.msn.com/fr-fr"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
1 - "C:\ToolBar SD\TB_1.txt" - 18/09/2008|18:07 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 18/09/2008|18:11 - Option : [1]
-----------\\ Fin du rapport a 18:11:19,18
Pour desktop messenger il n'est pas dans la liste des pgmes à ajouter ou supprimer
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
ok, voici le log
C:\Program Files\KaZaA\My Unshared Folder moved successfully.
C:\Program Files\KaZaA\data moved successfully.
C:\Program Files\KaZaA\licenses moved successfully.
C:\Program Files\KaZaA\Skins\Black Glass moved successfully.
C:\Program Files\KaZaA\Skins moved successfully.
C:\Program Files\KaZaA\Promotions moved successfully.
C:\Program Files\KaZaA\My Search Agents moved successfully.
C:\Program Files\KaZaA\Help moved successfully.
C:\Program Files\KaZaA\My Shared Folder moved successfully.
C:\Program Files\KaZaA moved successfully.
File/Folder C:\Program Files\KaZaA\My Shared Folder not found.
File/Folder C:\Program Files\KaZaA\Help not found.
File/Folder C:\Program Files\KaZaA\My Search Agents not found.
File/Folder C:\Program Files\KaZaA\Promotions not found.
File/Folder C:\Program Files\KaZaA\Skins not found.
File/Folder C:\Program Files\KaZaA\licenses not found.
File/Folder C:\Program Files\KaZaA\My Unshared Folder not found.
File/Folder C:\Program Files\KaZaA\rjn.a92 not found.
C:\Program Files\Need2Find\bar\History moved successfully.
C:\Program Files\Need2Find\bar\Settings moved successfully.
C:\Program Files\Need2Find\bar\Cache moved successfully.
C:\Program Files\Need2Find\bar\1.bin moved successfully.
C:\Program Files\Need2Find\bar moved successfully.
C:\Program Files\Need2Find moved successfully.
File/Folder C:\Program Files\Need2Find\bar not found.
OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 09182008_182104
C:\Program Files\KaZaA\My Unshared Folder moved successfully.
C:\Program Files\KaZaA\data moved successfully.
C:\Program Files\KaZaA\licenses moved successfully.
C:\Program Files\KaZaA\Skins\Black Glass moved successfully.
C:\Program Files\KaZaA\Skins moved successfully.
C:\Program Files\KaZaA\Promotions moved successfully.
C:\Program Files\KaZaA\My Search Agents moved successfully.
C:\Program Files\KaZaA\Help moved successfully.
C:\Program Files\KaZaA\My Shared Folder moved successfully.
C:\Program Files\KaZaA moved successfully.
File/Folder C:\Program Files\KaZaA\My Shared Folder not found.
File/Folder C:\Program Files\KaZaA\Help not found.
File/Folder C:\Program Files\KaZaA\My Search Agents not found.
File/Folder C:\Program Files\KaZaA\Promotions not found.
File/Folder C:\Program Files\KaZaA\Skins not found.
File/Folder C:\Program Files\KaZaA\licenses not found.
File/Folder C:\Program Files\KaZaA\My Unshared Folder not found.
File/Folder C:\Program Files\KaZaA\rjn.a92 not found.
C:\Program Files\Need2Find\bar\History moved successfully.
C:\Program Files\Need2Find\bar\Settings moved successfully.
C:\Program Files\Need2Find\bar\Cache moved successfully.
C:\Program Files\Need2Find\bar\1.bin moved successfully.
C:\Program Files\Need2Find\bar moved successfully.
C:\Program Files\Need2Find moved successfully.
File/Folder C:\Program Files\Need2Find\bar not found.
OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 09182008_182104
voici le dernier log après suppression :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:33:05, on 18/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TOSHIBA\TME3\Tmesbs32.exe
C:\Program Files\TOSHIBA\TME3\Tmesrv31.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TOSHIBA\Wireless Hotkey\TosHKCW.exe
C:\Program Files\TOSHIBA\TME3\TMERzCtl.EXE
C:\Program Files\TOSHIBA\TME3\TMEEJME.EXE
C:\Program Files\TOSHIBA\TME3\TMESBS32.EXE
C:\Program Files\TOSHIBA\DualPointUtility\TEDTray.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Logitech\KhalShared\KHALMNPR.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avscan.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\test.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [TosHKCW.exe] "C:\Program Files\TOSHIBA\Wireless Hotkey\TosHKCW.exe"
O4 - HKLM\..\Run: [TMESRV.EXE] C:\Program Files\TOSHIBA\TME3\TMESRV31.EXE /Logon
O4 - HKLM\..\Run: [TMERzCtl.EXE] C:\Program Files\TOSHIBA\TME3\TMERzCtl.EXE /Service
O4 - HKLM\..\Run: [TMEEJME.EXE] C:\Program Files\TOSHIBA\TME3\TMEEJME.EXE
O4 - HKLM\..\Run: [TMESBS.EXE] C:\Program Files\TOSHIBA\TME3\TMESBS32.EXE /Client
O4 - HKLM\..\Run: [DpUtil] C:\Program Files\TOSHIBA\DualPointUtility\TEDTray.exe
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [Drag'n Drop CD+DVD] C:\Program Files\Drag'n Drop CD+DVD\BinFiles\DragDrop.exe /StartUp
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Filter hijack: text/html - (no CLSID) - (no file)
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Tmesbs32 (Tmesbs) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TME3\Tmesbs32.exe
O23 - Service: Tmesrv3 (Tmesrv) - TOSHIBA - C:\Program Files\TOSHIBA\TME3\Tmesrv31.exe
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:33:05, on 18/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TOSHIBA\TME3\Tmesbs32.exe
C:\Program Files\TOSHIBA\TME3\Tmesrv31.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TOSHIBA\Wireless Hotkey\TosHKCW.exe
C:\Program Files\TOSHIBA\TME3\TMERzCtl.EXE
C:\Program Files\TOSHIBA\TME3\TMEEJME.EXE
C:\Program Files\TOSHIBA\TME3\TMESBS32.EXE
C:\Program Files\TOSHIBA\DualPointUtility\TEDTray.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Logitech\KhalShared\KHALMNPR.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avscan.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\test.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [TosHKCW.exe] "C:\Program Files\TOSHIBA\Wireless Hotkey\TosHKCW.exe"
O4 - HKLM\..\Run: [TMESRV.EXE] C:\Program Files\TOSHIBA\TME3\TMESRV31.EXE /Logon
O4 - HKLM\..\Run: [TMERzCtl.EXE] C:\Program Files\TOSHIBA\TME3\TMERzCtl.EXE /Service
O4 - HKLM\..\Run: [TMEEJME.EXE] C:\Program Files\TOSHIBA\TME3\TMEEJME.EXE
O4 - HKLM\..\Run: [TMESBS.EXE] C:\Program Files\TOSHIBA\TME3\TMESBS32.EXE /Client
O4 - HKLM\..\Run: [DpUtil] C:\Program Files\TOSHIBA\DualPointUtility\TEDTray.exe
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [Drag'n Drop CD+DVD] C:\Program Files\Drag'n Drop CD+DVD\BinFiles\DragDrop.exe /StartUp
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Filter hijack: text/html - (no CLSID) - (no file)
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Tmesbs32 (Tmesbs) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TME3\Tmesbs32.exe
O23 - Service: Tmesrv3 (Tmesrv) - TOSHIBA - C:\Program Files\TOSHIBA\TME3\Tmesrv31.exe
