Besoin d'analyse d'un log
Utilisateur anonyme
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,
voici un log pour vous ya t'il des virus???
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:22:58, on 21/11/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\Orange\Systray\SystrayApp.exe
C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Users\viviane\AppData\Local\symcq.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Users\viviane\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Users\viviane\AppData\Roaming\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
C:\Program Files\Orange\Launcher\Launcher.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Orange\Deskboard\deskboard.exe
C:\Program Files\Orange\connectivity\connectivitymanager.exe
C:\Program Files\Orange\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Orange\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Windows\explorer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\eMule\emule.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Orange\browser\browser.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fwww.msn.fr%2fimg%2ffr%2ffr-fr%2fdivertissement%2fcelebrites%2fgalery%2fwentworth02.jpg%3f
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/?ref=go
LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program
Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat
7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} -
C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus
2009\ievkbd.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\EoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} -
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program
files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live
Toolbar\msntb.dll
O2 - BHO: GamesBarBHO Class - {CB0D163C-E9F4-4236-9496-0597E24B23A5} - C:\Program Files\GamesBar\oberontb.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet
Explorer\mgToolbarIE.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live
Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program
Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - C:\Program Files\GamesBar\oberontb.dll
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0
\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [NSLauncher] C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe /startup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\Orange\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\Orange\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [PlatriumWeather] "C:\Program Files\Platrium\bin\1.2.103.0\Weather.exe" -auto
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common
Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKCU\..\Run: [TOSCDSPD] TOSCDSPD.EXE
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common
Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [symcq] "c:\users\viviane\appdata\local\symcq.exe" symcq
O4 - HKCU\..\Run: [Exetender] C:\Program Files\Player Metaboli\GPlayer.exe /schedule 300000
O4 - HKCU\..\RunOnce: [DependencyCheck] Performed
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE
LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: Outil de notification Live Search.lnk = viviane\AppData\Roaming\Microsoft\Live Search\Notification-
LiveSearch.exe
O4 - Startup: Ubisoft register.lnk = C:\Program Files\Ubisoft\Register\schedule.exe
O4 - Startup: YesMessenger.lnk = C:\Program Files\YesMessenger\YesMessenger.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live
Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0
\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program
Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: (no name) - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll
O9 - Extra 'Tools' menuitem: GamesBar - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program
Files\GamesBar\oberontb.dll
O9 - Extra button: Statistiques de la protection du trafic Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} -
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows
Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} -
C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-
bin/toshiba/tracker_url.pl?FR (file missing)
O13 - Gopher Prefix:
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) -
http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
O16 - DPF: {775879E2-7309-4619-BB02-AADE41F4B690} (CPlayFirstdreamControl Object) -
http://www.gamehouse.com/realarcade-webgames/dreamchronicles/DreamChronicles.cab
O16 - DPF: {935F9B04-0C7B-4454-A391-348C54AD7ADD} (Jolly Bear Games Player) - http://games.bigfishgames.com/fr_big
-city-adventure-sydney-australia/online/JBGamePlayer.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) -
http://game05.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) -
http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus
2009\avp.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common
Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France
Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google
Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common
Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common
Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec
Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common
Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program
Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power
Saver\TosCoSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common
Files\Ulead Systems\DVD\ULCDRSvr.exe
voici un log pour vous ya t'il des virus???
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:22:58, on 21/11/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\Orange\Systray\SystrayApp.exe
C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Users\viviane\AppData\Local\symcq.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Users\viviane\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Users\viviane\AppData\Roaming\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
C:\Program Files\Orange\Launcher\Launcher.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Orange\Deskboard\deskboard.exe
C:\Program Files\Orange\connectivity\connectivitymanager.exe
C:\Program Files\Orange\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Orange\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Windows\explorer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\Player Metaboli\GPlayer.exe
C:\Program Files\eMule\emule.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Orange\browser\browser.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fwww.msn.fr%2fimg%2ffr%2ffr-fr%2fdivertissement%2fcelebrites%2fgalery%2fwentworth02.jpg%3f
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/?ref=go
LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program
Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat
7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} -
C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus
2009\ievkbd.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\EoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} -
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program
files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live
Toolbar\msntb.dll
O2 - BHO: GamesBarBHO Class - {CB0D163C-E9F4-4236-9496-0597E24B23A5} - C:\Program Files\GamesBar\oberontb.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet
Explorer\mgToolbarIE.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live
Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program
Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - C:\Program Files\GamesBar\oberontb.dll
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0
\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [NSLauncher] C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe /startup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\Orange\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\Orange\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [PlatriumWeather] "C:\Program Files\Platrium\bin\1.2.103.0\Weather.exe" -auto
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common
Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKCU\..\Run: [TOSCDSPD] TOSCDSPD.EXE
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common
Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [symcq] "c:\users\viviane\appdata\local\symcq.exe" symcq
O4 - HKCU\..\Run: [Exetender] C:\Program Files\Player Metaboli\GPlayer.exe /schedule 300000
O4 - HKCU\..\RunOnce: [DependencyCheck] Performed
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE
LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: Outil de notification Live Search.lnk = viviane\AppData\Roaming\Microsoft\Live Search\Notification-
LiveSearch.exe
O4 - Startup: Ubisoft register.lnk = C:\Program Files\Ubisoft\Register\schedule.exe
O4 - Startup: YesMessenger.lnk = C:\Program Files\YesMessenger\YesMessenger.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live
Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0
\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program
Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: (no name) - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll
O9 - Extra 'Tools' menuitem: GamesBar - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program
Files\GamesBar\oberontb.dll
O9 - Extra button: Statistiques de la protection du trafic Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} -
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows
Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} -
C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-
bin/toshiba/tracker_url.pl?FR (file missing)
O13 - Gopher Prefix:
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) -
http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
O16 - DPF: {775879E2-7309-4619-BB02-AADE41F4B690} (CPlayFirstdreamControl Object) -
http://www.gamehouse.com/realarcade-webgames/dreamchronicles/DreamChronicles.cab
O16 - DPF: {935F9B04-0C7B-4454-A391-348C54AD7ADD} (Jolly Bear Games Player) - http://games.bigfishgames.com/fr_big
-city-adventure-sydney-australia/online/JBGamePlayer.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) -
http://game05.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) -
http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {C2E5034D-54EC-41F8-944A-D6E1AD5FACD8} - C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus
2009\avp.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common
Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France
Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google
Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common
Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common
Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec
Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common
Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program
Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power
Saver\TosCoSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common
Files\Ulead Systems\DVD\ULCDRSvr.exe
A voir également:
- Besoin d'analyse d'un log
- Analyse composant pc - Guide
- Analyse disque dur - Télécharger - Informations & Diagnostic
- Analyse performance pc - Guide
- Nouveau tag analysé - Forum Huawei
- Échec de l'analyse antivirus. ✓ - Forum Antivirus
3 réponses
salut y a t il des virus ????????????????????????????????????
tu es infecte jusqu'a la moelle
commence par ceci :
Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):
- Vas dans "Démarrer" puis Panneau de configuration.
- Double Clique sur l'icône Comptes d'utilisateurs et sur Activer ou désactiver le contrôle des comptes d'utilisateurs.
- Clique sur Continuer.
- Décoche la case Utiliser le contrôle des comptes d'utilisateurs pour vous aider à protéger votre ordinateur.
- Valide par OK et redémarre.
Tuto : https://forum.malekal.com/viewtopic.php?f=59&t=6517
Télécharge maintenant Navilog1 depuis-ce lien :
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, Fais un Clic-droit sur le raccourci Navilog1 présent sur ton bureau et choisis :
"Exécuter en tant qu'administrateur".
Au menu principal, Fais le choix 1
Laisse toi guider et patiente.
Patiente jusqu'au message :
*** Analyse Termine le ..... ***
Appuie sur une touche le blocnote va s'ouvrir.
Copie-colle l'intégralité du rapport dans une réponse.
Referme le blocnote
Le rapport fixnavi.txt est en outre sauvegardé a la racine du disque
Tuto : http://www.malekal.com/Adware.Magic_Control.php
ensuite :
Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2
* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique maintenant sur le raccourci de Toolbar-S&D.
* Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Poste le rapport généré. (C:\TB.txt)
tu es infecte jusqu'a la moelle
commence par ceci :
Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):
- Vas dans "Démarrer" puis Panneau de configuration.
- Double Clique sur l'icône Comptes d'utilisateurs et sur Activer ou désactiver le contrôle des comptes d'utilisateurs.
- Clique sur Continuer.
- Décoche la case Utiliser le contrôle des comptes d'utilisateurs pour vous aider à protéger votre ordinateur.
- Valide par OK et redémarre.
Tuto : https://forum.malekal.com/viewtopic.php?f=59&t=6517
Télécharge maintenant Navilog1 depuis-ce lien :
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, Fais un Clic-droit sur le raccourci Navilog1 présent sur ton bureau et choisis :
"Exécuter en tant qu'administrateur".
Au menu principal, Fais le choix 1
Laisse toi guider et patiente.
Patiente jusqu'au message :
*** Analyse Termine le ..... ***
Appuie sur une touche le blocnote va s'ouvrir.
Copie-colle l'intégralité du rapport dans une réponse.
Referme le blocnote
Le rapport fixnavi.txt est en outre sauvegardé a la racine du disque
Tuto : http://www.malekal.com/Adware.Magic_Control.php
ensuite :
Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2
* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique maintenant sur le raccourci de Toolbar-S&D.
* Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Poste le rapport généré. (C:\TB.txt)
jpeux te demander d'analyser se log aussi
merci
Logfile of Spyware Terminator v2.3.0.507 (db:2.011.021.000)
Scan Time: 21/11/2008 19:57:06 length: 261 s
Platform: WXP (5.1.0.2600)
User: Admin
Boot Mode: Normal
Scan type: Fast_Spyware_Scan
Scanned Objects: 41199 (Critical:13)
Filter: No System items, No Safe items, No Invalid items
Running Processes
Ati2evxx.exe [ATI Technologies Inc.] : C:\WINDOWS\system32\Ati2evxx.exe
AluSchedulerSvc.exe [Symantec Corporation] : C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
FTRTSVC.exe [France Telecom SA] : C:\Program Files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
Launcher.exe [France Telecom SA] : C:\Program Files\Orange\Launcher\Launcher.exe
AlertModule.exe [France Telecom SA] : C:\Program Files\Fichiers communs\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
systrayapp.exe [France Telecom SA] : C:\Program Files\Orange\systray\systrayapp.exe
connectivitymanager.exe [France Telecom SA] : C:\Program Files\Orange\connectivity\connectivitymanager.exe
browser.exe [France Telecom SA] : C:\Program Files\Orange\browser\browser.exe
CoreCom.exe [France Telecom SA] : C:\Program Files\Orange\connectivity\CoreCom\CoreCom.exe
OraConfigRecover.exe [France Telecom SA] : C:\Program Files\Orange\connectivity\CoreCom\OraConfigRecover.exe
FTCOMModule.exe [France Telecom SA] : C:\Program Files\Fichiers communs\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
Internet Settings
R - HKCU\Software\Microsoft\Internet Explorer\Main, Search Bar = http://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60327
R - HKLM\Software\Microsoft\Internet Explorer\Main, SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R - HKLM\Software\Microsoft\Internet Explorer\Main, CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R - HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName =
BHO
02 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - [Yahoo! Inc.] : C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
02 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - : C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
02 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - [Microsoft Corporation] : C:\Program Files\MSN Apps\MSN Toolbar\01.02.2001.0001\fr\msntb.dll
Toolbars
03 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - [Microsoft Corporation] : C:\Program Files\MSN Apps\MSN Toolbar\01.02.2001.0001\fr\msntb.dll
03 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - [Yahoo! Inc.] : C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
Shell Extensions
Microsoft Office Outlook - {00020D75-0000-0000-C000-000000000046} - [Microsoft Corporation] : C:\Program Files\Microsoft Office\OFFICE11\MLSHEXT.DLL
Outlook File Icon Extension - {0006F045-0000-0000-C000-000000000046} - [Microsoft Corporation] : C:\Program Files\Microsoft Office\OFFICE11\OLKFSTUB.DLL
Services
23 - : C:\WINDOWS\system32\drivers\acernbm.sys
23 - [Meetinghouse Data Communications] : C:\WINDOWS\system32\DRIVERS\AegisP.sys
23 - [Agere Systems] : C:\WINDOWS\system32\DRIVERS\AGRSM.sys
23 - [Realtek Semiconductor Corp.] : C:\WINDOWS\system32\drivers\ALCXWDM.SYS
23 - [ATI Technologies Inc.] : C:\WINDOWS\system32\Ati2evxx.exe
23 - [Symantec Corporation] : C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
23 - [Broadcom Corporation] : C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
23 - [Dritek System Inc.] : C:\WINDOWS\system32\Drivers\DKbFltr.sys
23 - [France Telecom SA] : C:\Program Files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
23 - [NewTech Infosystems, Inc.] : C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys
23 - [O2Micro] : C:\WINDOWS\system32\DRIVERS\ozscr.sys
23 - [Printing Communications Assoc., Inc. (PCAUSA)] : C:\WINDOWS\system32\PCANDIS5.SYS
23 - [StarForce Technologies, Inc.] : C:\WINDOWS\system32\drivers\prodrv06.sys
23 - [StarForce Technologies, Inc.] : C:\WINDOWS\system32\drivers\prohlp02.sys
23 - [StarForce Technologies, Inc.] : C:\WINDOWS\system32\drivers\prosync1.sys
23 - [Protection Technology] : C:\WINDOWS\system32\drivers\sfdrv01.sys
23 - [StarForce Technologies, Inc.] : C:\WINDOWS\system32\drivers\sfhlp01.sys
23 - [Protection Technology] : C:\WINDOWS\system32\drivers\sfhlp02.sys
23 - [Protection Technology] : C:\WINDOWS\system32\drivers\sfsync04.sys
23 - [Synaptics, Inc.] : C:\WINDOWS\system32\DRIVERS\SynTP.sys
Advanced Files Report
%SYSDIR%\CNMLM5u.DLL [CANON INC.] [Canon BJ Raster Printer Driver for Microsoft Windows XP / Windows 2000] MD5=155A9265F9FB07429D47F00C098CC104 SIZE=112128
%SYSDIR%\CNMLM45.DLL [CANON INC.] [Canon BJ Raster Printer Driver for Microsoft Windows XP / Windows 2000] MD5=A38EE0D28BDF73388FC7435894471A30 SIZE=97280
%SYSDIR%\spool\PRTPROCS\W32X86\CNMPD5u.DLL [CANON INC.] [Canon BJ Raster Printer Driver for Microsoft Windows XP / Windows 2000] MD5=5C4B3A8806B23078E9BF740972C1B1CA SIZE=17920
%SYSDIR%\spool\PRTPROCS\W32X86\CNMPD45.DLL [CANON INC.] [Canon BJ Raster Printer Driver for Microsoft Windows XP / Windows 2000] MD5=D01ABC5BDFDBFBC61C14F502F233F6B3 SIZE=13824
%SYSDIR%\Ati2evxx.exe [ATI Technologies Inc.] [ATI External Event Utility for WindowsNT and Windows9X] MD5=2A779F50F0958A9782E986A9A80C7C64 SIZE=151552
%PROGRAMFILES%\Symantec\LiveUpdate\AluSchedulerSvc.exe [Symantec Corporation] [LiveUpdate] MD5=DE220DCEA74E13E659FF6192C3AFE49C SIZE=243064
%COMMONFILES%\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [France Telecom SA] [CSS-Corporate] MD5=DA1485749B785ADCEB421874F5F3405B SIZE=65536
%COMMONFILES%\France Telecom\Shared Modules\FTRTSVC\0\IfHelper.dll [France Telecom SA] [CSS-Corporate] MD5=3C2F3E823423AD3DD895091790C89D19 SIZE=26112
%PROGRAMFILES%\Orange\Launcher\Inactivity.Dll [France Telecom SA] [CSS-Corporate] MD5=C1C8920A5A5A719FA5768D7BFE41E13E SIZE=6144
%PROGRAMFILES%\Orange\Launcher\Launcher.exe [France Telecom SA] [CSS-Corporate] MD5=AAAC76A931480ADD2C9B251621EB524E SIZE=598016
%PROGRAMFILES%\Orange\Launcher\ModifFT.dll [France Telecom SA] [CSS-Corporate] MD5=C81DDD2AC0C377BA76A0AC9C4E3D90FC SIZE=69632
%PROGRAMFILES%\Orange\Launcher\IfHelper.dll [France Telecom SA] [CSS-Corporate] MD5=3C2F3E823423AD3DD895091790C89D19 SIZE=26112
%PROGRAMFILES%\Orange\Launcher\WatchClient.dll MD5=8C45D3CD31760D324246FF905C010D1D SIZE=32768
%PROGRAMFILES%\Orange\Launcher\xerces-c_2_6.dll [Apache Software Foundation] [Xerces-C Version 2.6.0] MD5=6196BBB18036A2671C0B0C337A5EEAA4 SIZE=1761280
%COMMONFILES%\France Telecom\Shared Modules\AlertModule\0\AlertClient.dll [France Telecom SA] [CSS-Corporate] MD5=4B180EA93FA22A26D2EFB6E95F05B4C5 SIZE=35840
%PROGRAMFILES%\Orange\Launcher\Plugins\PluginUpdateDaemon.dll [France Telecom SA] [CSS-Corporate] MD5=12B2793914C50BD60F84B435DE29C23E SIZE=286720
%PROGRAMFILES%\Orange\Launcher\ShellDll.dll [France Telecom SA] [CSS-Corporate] MD5=460AEBD86FFB00438B52E8D0A3EF1EC2 SIZE=995328
%PROGRAMFILES%\Orange\Launcher\AutoDetect.dll [France Telecom SA] [CSS-Corporate] MD5=D2E24E79E3E2779805F473E8FA516E76 SIZE=45056
%PROGRAMFILES%\Orange\Launcher\StyleIHM.dll [France Telecom SA] [CSS-Corporate] MD5=3D96B10BCCDD58875E4C0044CE01C960 SIZE=815104
%PROGRAMFILES%\Orange\Launcher\SynchroDll.dll [France Telecom SA] [CSS-Corporate] MD5=B1A34318EDBBE6E29DB19BE40ACFD5F1 SIZE=315392
%PROGRAMFILES%\Orange\Launcher\Plugins\IHMPluginUpdateDaemon.dll [France Telecom SA] [ORAHSS] MD5=AA3BA4DD08B95F94A797C4B0FE7B99B9 SIZE=9216
%PROGRAMFILES%\Orange\Launcher\Skin\Default\main\ResourceStyle.dll [France Telecom SA] [CSS-Corporate] MD5=61AD8626F54FBAB494E58455D26DFBEC SIZE=245760
%PROGRAMFILES%\Orange\Launcher\AppFactoryPlugins\AppFactoryDefault.dll [France Telecom SA] [CSS-Corporate] MD5=6978FD07CB8ADEF7C7070C7AAC5E9BC3 SIZE=327680
%PROGRAMFILES%\Orange\Launcher\AppFactoryPlugins\AppFactoryFake.dll [France Telecom SA] [CSS-Corporate] MD5=A9E5B41683640B724025A2A0239D7A9B SIZE=339968
%PROGRAMFILES%\Orange\Launcher\AppFactoryPlugins\AppFactoryMozilla.dll [France Telecom SA] [CSS-Corporate] MD5=41CDC54A23AE7E078DD977C1223D9B3C SIZE=446464
%PROGRAMFILES%\Orange\Launcher\AppFactoryPlugins\AppFactoryMS.dll [France Telecom SA] [CSS-Corporate] MD5=92D50B84F813451BC3878C346B98ED2D SIZE=729088
%PROGRAMFILES%\Orange\Launcher\AppFactoryPlugins\IHMAppFactoryMS.dll [France Telecom SA] [ORAHSS] MD5=80614E5C5B06A91313C46F21DB2B8137 SIZE=10240
%PROGRAMFILES%\Orange\Launcher\Plugins\PluginLnhSettings.dll [France Telecom SA] [CSS-Corporate] MD5=045D0848F15FA103AB916BBE2AB9CC12 SIZE=454656
%PROGRAMFILES%\Orange\Launcher\Plugins\IHMPluginLnhSettings.dll [France Telecom SA] [ORAHSS] MD5=2A26D3E33D369C17F0EC19B1D3EB895E SIZE=8704
%PROGRAMFILES%\Orange\Launcher\Plugins\PluginLnhConnectivitySettings.dll [France Telecom SA] [CSS-Corporate] MD5=EB15D6FCD11750DEF5E80AF4E2364A42 SIZE=1040384
%PROGRAMFILES%\Orange\Launcher\Plugins\IHMPluginLnhConnectivitySettings.dll [France Telecom SA] [ORAHSS] MD5=AC1606855CCADCA56E116F859BA52261 SIZE=36352
%PROGRAMFILES%\Orange\Launcher\Plugins\PluginLnhIdentityInventory.dll [France Telecom SA] [CSS-Corporate] MD5=FE7595C762D0860BB0BC574B19A930DE SIZE=606208
%PROGRAMFILES%\Orange\Launcher\Plugins\IHMPluginLnhIdentityInventory.dll [France Telecom SA] [ORAHSS] MD5=2AD25AD5440E51881B78ED33911FD26B SIZE=10240
%PROGRAMFILES%\Orange\Launcher\Plugins\PluginLnhIdentitySelectUI.dll [France Telecom SA] [CSS-Corporate] MD5=3B1DDD97C126F43757F6F2A69F18055C SIZE=458752
%PROGRAMFILES%\Orange\Launcher\Plugins\IHMPluginLnhIdentitySelectUI.dll [France Telecom SA] [ORAHSS] MD5=86D7EEEDB80F16DF001F0482D111933D SIZE=49152
%PROGRAMFILES%\Orange\Launcher\Plugins\PluginLnhIdentitySynchro.dll [France Telecom SA] [CSS-Corporate] MD5=63A132292DC4FB74C86674BFC450251C SIZE=516096
%PROGRAMFILES%\Orange\Launcher\Plugins\PluginLnhPolling.dll [France Telecom SA] [CSS-Corporate] MD5=5459F3C07D58E6F02E48AF824A00A47C SIZE=122880
%PROGRAMFILES%\Orange\Launcher\Plugins\PluginLnhPromptManager2.dll [France Telecom SA] [CSS-Corporate] MD5=99808D6BE028068F492274586E263FF5 SIZE=589824
%PROGRAMFILES%\Orange\Launcher\Plugins\PluginLnhToaster.dll [France Telecom SA] [CSS-Corporate] MD5=D8C94D79BE98BF0BBD07A1495CC1CA61 SIZE=81920
%PROGRAMFILES%\Orange\Launcher\Plugins\PluginLnhInactivity.dll [France Telecom SA] [CSS-Corporate] MD5=7C6716922705F747808E087AB4DBE105 SIZE=73728
%PROGRAMFILES%\Orange\Launcher\Plugins\PluginLnhHelpFactory.dll [France Telecom SA] [CSS-Corporate] MD5=44B2D7DA5DF8060A646C290980084122 SIZE=221184
%PROGRAMFILES%\Orange\Launcher\Plugins\PluginLnhRecovery.dll [France Telecom SA] [CSS-Corporate] MD5=E81A6ECCF13D9F0D65771B83BCF4B368 SIZE=233472
%PROGRAMFILES%\Orange\Launcher\Plugins\pluginLnhShell.dll [France Telecom SA] [CSS-Corporate] MD5=F9B2389D96DAF16FDD5D08EA69FE148F SIZE=122880
%COMMONFILES%\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe [France Telecom SA] [CSS-Corporate] MD5=E9257AE2500A3C8272B6C32A1329DAA3 SIZE=90112
%PROGRAMFILES%\Orange\systray\systrayapp.exe [France Telecom SA] [CSS-Corporate] MD5=12902A626CAE9F362AAE39EF1FC79E87 SIZE=94208
%PROGRAMFILES%\Orange\systray\StyleIHM.dll [France Telecom SA] [CSS-Corporate] MD5=3D96B10BCCDD58875E4C0044CE01C960 SIZE=815104
%PROGRAMFILES%\Orange\Systray\Skin\default\main\ResourceStyle.dll [France Telecom SA] [CSS-Corporate] MD5=61AD8626F54FBAB494E58455D26DFBEC SIZE=245760
%PROGRAMFILES%\Orange\connectivity\connectivitymanager.exe [France Telecom SA] [CSS-Corporate] MD5=54ABBCF1C68FAEFF10BCCD254740AE16 SIZE=716800
%PROGRAMFILES%\Orange\connectivity\ConnectivityFactory.dll [France Telecom SA] [CSS-Corporate] MD5=DCD5A80859150B89F97C4E5638846FA3 SIZE=126976
%PROGRAMFILES%\Orange\connectivity\Sqlite3.dll [France Telecom SA] [CSS-Corporate] MD5=F14B88504933B696AEF08B335F6AA797 SIZE=294912
%PROGRAMFILES%\Orange\connectivity\ModifFT.dll [France Telecom SA] [CSS-Corporate] MD5=C81DDD2AC0C377BA76A0AC9C4E3D90FC SIZE=69632
%PROGRAMFILES%\Orange\connectivity\IfHelper.dll [France Telecom SA] [CSS-Corporate] MD5=3C2F3E823423AD3DD895091790C89D19 SIZE=26112
%COMMONFILES%\France Telecom\Shared Modules\PTPCommunication\0\PTPCommunication.dll [France Telecom SA] [CSS-Corporate] MD5=2D2E5DE9D628CA8204E32E23789E2AF7 SIZE=77824
%PROGRAMFILES%\Orange\Connectivity\HandlerProxy.dll [France Telecom SA] [CSS-Corporate] MD5=3DDC356C0DDA70B859E588A878EA5F9F SIZE=86016
%PROGRAMFILES%\Orange\Connectivity\HandlerConnection.dll [France Telecom SA] [CSS-Corporate] MD5=D4B3EFC59D141BF991D6BD35A57FC286 SIZE=303104
%PROGRAMFILES%\Orange\browser\browser.exe [France Telecom SA] [CSS-Corporate] MD5=6C792BDF5AC76B8E3EFE91DEB91E34D4 SIZE=1134592
%PROGRAMFILES%\Orange\browser\StyleIHM.dll [France Telecom SA] [CSS-Corporate] MD5=3D96B10BCCDD58875E4C0044CE01C960 SIZE=815104
%PROGRAMFILES%\Orange\browser\Sqlite3.dll [France Telecom SA] [CSS-Corporate] MD5=F14B88504933B696AEF08B335F6AA797 SIZE=294912
%PROGRAMFILES%\Orange\browser\xerces-c_2_6.dll [Apache Software Foundation] [Xerces-C Version 2.6.0] MD5=6196BBB18036A2671C0B0C337A5EEAA4 SIZE=1761280
%PROGRAMFILES%\Orange\Browser\IHMBrowser.dll [France Telecom SA] [ORAHSS] MD5=0597DE91CC592B96B7031D4E605C9CD3 SIZE=73728
%PROGRAMFILES%\Orange\Browser\skin\Default\main\ResourceStyle.dll [France Telecom SA] [CSS-Corporate] MD5=61AD8626F54FBAB494E58455D26DFBEC SIZE=245760
%COMMONFILES%\France Telecom\Shared Modules\FTServiceProvider\0\FTServiceProviderDLL.dll [France Telecom SA] [CSS-Corporate] MD5=8822E12F4D9392D10F10CDCADED63330 SIZE=73728
%PROGRAMFILES%\Orange\Browser\pluginbubble.dll [France Telecom SA] [CSS-Corporate] MD5=A5961EDAE6CBF61CE02A97ED725DF594 SIZE=135168
%PROGRAMFILES%\Orange\Browser\IHMpluginbubble.dll [France Telecom SA] [ORAHSS] MD5=297AA9A9F4C11515A3D9B0831DDF4E38 SIZE=9216
%PROGRAMFILES%\Orange\Browser\plugincore.dll [France Telecom SA] [CSS-Corporate] MD5=97934E79D8DBCE5D8324166E52E9D2F0 SIZE=471040
%PROGRAMFILES%\Orange\Browser\IHMplugincore.dll [France Telecom SA] [ORAHSS] MD5=AFB5F1F885A4D8C3095981ECEAAFA908 SIZE=10752
%PROGRAMFILES%\Orange\Browser\PluginLinks.dll [France Telecom SA] [CSS-Corporate] MD5=8208869E6F6642827AFF5859C1F9A7FE SIZE=782336
%PROGRAMFILES%\Orange\Browser\IHMPluginLinks.dll [France Telecom SA] [ORAHSS] MD5=D2254B0632237353E0D6DDBD804B7C9F SIZE=33792
%PROGRAMFILES%\Orange\Browser\PluginMemo.dll [France Telecom SA] [CSS-Corporate] MD5=EE2708ECDD82509D2BB1191443E658C0 SIZE=311296
%PROGRAMFILES%\Orange\Browser\IHMPluginMemo.dll [France Telecom SA] [ORAHSS] MD5=223CC86C0F8A00B45EB749DCD159FF8C SIZE=10752
%PROGRAMFILES%\Orange\Browser\pluginpopup.dll [France Telecom SA] [CSS-Corporate] MD5=1C997A3CBB69127F47F32E7F066409A1 SIZE=360448
%PROGRAMFILES%\Orange\Browser\IHMpluginpopup.dll [France Telecom SA] [ORAHSS] MD5=BF03AE28D30AC46B6FFABDFDAD77F9AE SIZE=12288
%PROGRAMFILES%\Orange\Browser\pluginRss.dll [France Telecom SA] [CSS-Corporate] MD5=278C07451770D0AD389E46CE7722FB99 SIZE=618496
%PROGRAMFILES%\Orange\Browser\IHMpluginRss.dll [France Telecom SA] [ORAHSS] MD5=C3F0CA5FA70D9BA79475BC736BE640AB SIZE=19968
%PROGRAMFILES%\Orange\Browser\pluginsearch.dll [France Telecom SA] [CSS-Corporate] MD5=D1A72CE707B61CC014BF6FB91D91C9D2 SIZE=446464
%PROGRAMFILES%\Orange\Browser\IHMpluginsearch.dll [France Telecom SA] [ORAHSS] MD5=7FFFB340AC3E460C8B96AE1BEAC5CC16 SIZE=13824
%PROGRAMFILES%\Orange\Browser\pluginImageMgr.dll [France Telecom SA] [CSS-Corporate] MD5=B3F1D2168FCCC6AC03E43D33D15E70D5 SIZE=401408
%PROGRAMFILES%\Orange\Browser\PluginGenSettings.dll [France Telecom SA] [CSS-Corporate] MD5=045D0848F15FA103AB916BBE2AB9CC12 SIZE=454656
%PROGRAMFILES%\Orange\Dashboard\TotoATLmod.dll [TotoATLMod Module] MD5=0609C4A977D14D14A1A47EC91DD7925D SIZE=253952
%PROGRAMFILES%\Orange\connectivity\CoreCom\CoreCom.exe [France Telecom SA] [CSS-Corporate] MD5=032F85FBFE612ECC455ABA7474E5914F SIZE=360448
%PROGRAMFILES%\Orange\connectivity\CoreCom\IfHelper.dll [France Telecom SA] [CSS-Corporate] MD5=3C2F3E823423AD3DD895091790C89D19 SIZE=26112
%PROGRAMFILES%\Orange\connectivity\CoreCom\WLANManager.dll [France Telecom SA] [CSS-Corporate] MD5=5A0D68DF8A6F5CDA3C6CF40A5C1B18EC SIZE=106496
%PROGRAMFILES%\Orange\connectivity\CoreCom\PMStub.dll [France Telecom SA] [CSS-Corporate] MD5=119B8C01E26C8D155FE929481769FA2B SIZE=65536
%PROGRAMFILES%\Orange\connectivity\CoreCom\PhoneManager.dll [France Telecom SA] [CSS-Corporate] MD5=3653ABDC1D2556ECC3527CFF04839AB4 SIZE=241664
%PROGRAMFILES%\Orange\connectivity\CoreCom\ShellDll.dll [France Telecom SA] [CSS-Corporate] MD5=460AEBD86FFB00438B52E8D0A3EF1EC2 SIZE=995328
%PROGRAMFILES%\Orange\connectivity\CoreCom\AutoDetect.dll [France Telecom SA] [CSS-Corporate] MD5=D2E24E79E3E2779805F473E8FA516E76 SIZE=45056
%PROGRAMFILES%\Orange\connectivity\CoreCom\GPRS.dll [France Telecom SA] [CSS-Corporate] MD5=D5A11D87EAF27F9C48500F605AF05DF7 SIZE=45056
%PROGRAMFILES%\Orange\connectivity\CoreCom\ModifFT.dll [France Telecom SA] [CSS-Corporate] MD5=C81DDD2AC0C377BA76A0AC9C4E3D90FC SIZE=69632
%PROGRAMFILES%\Orange\connectivity\CoreCom\NDIS_Gen.dll [France Telecom SA] [CSS-Corporate] MD5=15A1A3BECCDBE59DB9AF723AD121518D SIZE=106496
%SYSDIR%\W32N50.dll [Printing Communications Assoc., Inc. (PCAUSA)] [PCAUSA Rawether for Windows] MD5=58729B4DF51BC160837B2E020EF74456 SIZE=94208
%PROGRAMFILES%\Orange\connectivity\CoreCom\OraConfigRecover.exe [France Telecom SA] [CSS-Corporate] MD5=987B72E406C172F9F5184F1B4F0CE1BB SIZE=28672
%COMMONFILES%\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe [France Telecom SA] [CSS-Corporate] MD5=167A81D7A06119ABF84042F88EE6F6DF SIZE=65536
%PROGRAMFILES%\MSN Apps\MSN Toolbar\01.02.2001.0001\fr\msntb.dll [Microsoft Corporation] [MSN Toolbar] MD5=159BB1651E75D6F1220B6C36AACFC552 SIZE=282624
%PROGRAMFILES%\Yahoo!\Companion\Installs\cpn\yt.dll [Yahoo! Inc.] [Yahoo! Toolbar] MD5=2785037CE05B63D5607C9D5DFB2FEEE4 SIZE=440384
%PROGRAMFILES%\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [AcroIEHelper Module] MD5=8394ABFC1BE196A62C9F532511936DF7 SIZE=37808
deskpan.dll
%PROGRAMFILES%\Microsoft Office\OFFICE11\MLSHEXT.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=2C52103F83C6AF5617DC574888582D76 SIZE=29272
%PROGRAMFILES%\Microsoft Office\OFFICE11\OLKFSTUB.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=96EA89DA972DD842910AA9AA80BC013E SIZE=232536
%SYSDIR%\svchost.exe -k netsvcs
%SYSDIR%\drivers\acernbm.sys MD5=1F056A9DC1E5941B064907A1869EE230 SIZE=6538
%SYSDIR%\DRIVERS\AegisP.sys [Meetinghouse Data Communications] [AEGIS Client 3.4.5.0] MD5=30BB1BDE595CA65FD5549462080D94E5 SIZE=21035
%SYSDIR%\DRIVERS\AGRSM.sys [Agere Systems] [Agere SoftModem Driver] MD5=ED5C8B22DE2021339A7C7FCCFE5C5D7E SIZE=1156672
%SYSDIR%\drivers\ALCXWDM.SYS [Realtek Semiconductor Corp.] [Windows (R) WDM driver for Realtek AC'97 Audio] MD5=E3E7C0F401E7024E8DC0DBE3CE7DCD59 SIZE=730700
%SYSDIR%\DRIVERS\bcm4sbxp.sys [Broadcom Corporation] [Broadcom 440x 10/100 Integrated Controller] MD5=BA03A18635D4B0830C9262CD80D4026B SIZE=41728
%SYSDIR%\svchost.exe -k bthsvcs
%SYSDIR%\svchost -k DcomLaunch
%SYSDIR%\Drivers\DKbFltr.sys [Dritek System Inc.] [Dritek MMKey] MD5=96A48BDA68BF734AAE79F910AB884A34 SIZE=17983
%SYSDIR%\svchost.exe -k NetworkService
%SYSDIR%\svchost.exe -k HTTPFilter
%SYSDIR%\svchost.exe -k LocalService
%SYSDIR%\DRIVERS\NTIDrvr.sys [NewTech Infosystems, Inc.] MD5=3C25D8A23C366FBE1511B4A250A1A2AD SIZE=6016
%SYSDIR%\DRIVERS\ozscr.sys [O2Micro] [O2Micro (c) SmartCardBus Reader] MD5=7F8D43FD4159B16EBFD65E13EE34677F SIZE=20579
%SYSDIR%\PCANDIS5.SYS [Printing Communications Assoc., Inc. (PCAUSA)] [PCAUSA Rawether for Windows] MD5=ECD2F9D67B06606064DAF6961A6D5EFE SIZE=32128
%SYSDIR%\drivers\prodrv06.sys [StarForce Technologies, Inc.] [StarForce Protection System] MD5=E87132348AAA995FCB3A8870F0DA525D SIZE=50816
%SYSDIR%\drivers\prohlp02.sys [StarForce Technologies, Inc.] [StarForce Protection System] MD5=EFA0B90D3F2DDD18F064F94A3E9AA503 SIZE=94464
%SYSDIR%\drivers\prosync1.sys [StarForce Technologies, Inc.] [StarForce Protection System] MD5=CC3D1BB199CBB576B0FBAABA626B6714 SIZE=6848
%SYSDIR%\svchost -k rpcss
%SYSDIR%\drivers\sfdrv01.sys [Protection Technology] [StarForce Protection System] MD5=4C0D673281178CB496011A2E28571FC8 SIZE=50688
%SYSDIR%\drivers\sfhlp01.sys [StarForce Technologies, Inc.] [StarForce Protection System] MD5=95654A66531B8A198D0D5D153CC95F8E SIZE=4448
%SYSDIR%\drivers\sfhlp02.sys [Protection Technology] [StarForce Protection System] MD5=15BE2B5E4DC5B8623CF167720682ABC9 SIZE=6656
%SYSDIR%\drivers\sfsync04.sys [Protection Technology] [StarForce Protection System] MD5=21A4C510AB071A10BCB638FE4254D101 SIZE=49664
%SYSDIR%\svchost.exe -k imgsvc
%SYSDIR%\DRIVERS\SynTP.sys [Synaptics, Inc.] [Synaptics Device Driver] MD5=DECAF721585F9DB53D60D70FD064B6BB SIZE=263536
%WINDIR%\AGRSMMSG.exe [Agere Systems] [Agere SoftModem Messaging Applet] MD5=D4977E5B6B3BF4DAA1F35D6EE44DA80F SIZE=87751
%SYSDIR%\px.dll [Sonic Solutions] [Px] MD5=7D25F8B95F875411190F0C786291692D SIZE=462848
%WINDIR%\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ITA.dll [Microsoft Corporation] [Microsoft® Visual Studio® 2005] MD5=CB23B162AC655F24C6711A5F5DF348C6 SIZE=61440
%WINDIR%\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll [Microsoft Corporation] [Microsoft® Visual Studio® 2005] MD5=1B7524806D0270B81360C63A2FA047CB SIZE=1101824
%COMMONFILES%\Microsoft Shared\Smart Tag\FPERSON.DLL [Microsoft Corporation] [Microsoft Office 2003] MD5=B88AECBFC7434B37D6921199D9C47947 SIZE=179768
End of Report