Se connecter / S'enregistrer
Votre question

gros pb fenetre intempestive log hijackthis

Tags :
  • Fenêtre intempestive
  • Sécurité
Dernière réponse : dans Sécurité et virus
14 Février 2007 17:57:22



salut


voici mon log hijackthis

merci de m'aider


Logfile of HijackThis v1.99.1
Scan saved at 12:37:03, on 14/02/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Eset\nod32kui.exe
C:\WINDOWS\system32\ctfmon.exe
c:\progra~1\intern~1\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlservr.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Matthieu\Bureau\scann.exe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.chat-land.org/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: (no name) - _{BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - (no file)
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O2 - BHO: G DATA WebFilter Class - {0124123D-61B4-456f-AF86-78C53A0790C5} - (no file)
O2 - BHO: Poly HTML Filter BHO - {0140DF95-9128-4053-AE72-F43F0CFCA062} - (no file)
O2 - BHO: XBTP05231 Class - {031F120A-BBAF-45d8-B306-375F2A6B9398} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: (no name) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - (no file)
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O3 - Toolbar: Alcohol Soft - Alcohol 120% Toolbar - {1CE4EE89-2D5C-4361-AF3B-D902AB545381} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: (no name) - {0124123D-61B4-456f-AF86-78C53A0790C5} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [mp3bindsoftidle] "C:\Documents and Settings\All Users\Application Data\acethemp3bind\InternetAudio.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] ~"C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Slow info] C:\DOCUME~1\LOCALS~1\APPLIC~1\CASTWA~1\love32admin.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - Global Startup: Dial-Messenger.lnk = C:\Program Files\Dial-Messenger\Dial-Messenger.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Affiche les liens du domaine - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_domain_links.htm
O8 - Extra context menu item: Ajouter les liens sélectionnés au coffre des liens - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_collector_sel.htm
O8 - Extra context menu item: Ajouter les url de bannière dans AdsCleaner - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_banner.htm
O8 - Extra context menu item: Chercher avec Copernic Agent - res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXT
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Faire connaître la bannière à l’équipe de AdsCleaner - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_report_ad.htm
O8 - Extra context menu item: Marquer les liens sélectionnés dans AdsCleaner - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_sel.htm
O8 - Extra context menu item: Marquer tous les liens dans AdsCleaner - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_all.htm
O8 - Extra context menu item: Ouvrir les liens sélectionnés dans des nouvelles fenêtres - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_open_sel.htm
O8 - Extra context menu item: Ouvrir tous les liens dans des nouvelles fenêtres - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_open_all.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE (file missing)
O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE (file missing)
O9 - Extra button: Internet Radio by Endicosoft.com - {1F958B09-3312-7f0e-9723-4C1324C57B20} - C:\Program Files\Internet Radio\Radio.exe (file missing)
O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {084DAC27-6FA3-4F55-9005-033F2F102F5C} (ITPPDiagIE Class) - http://data.jeuxclassiques.com/npwwg.cab
O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - https://ssl-tb.sitadelle.com/selfcare.cegetel.net/templ...
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://drivers1.free.fr/telecharger.php?id=2&version=
O18 - Protocol: bw+0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: hola - {626601A0-4BAE-11D1-A7E1-00A0246C1E64} - (no file)
O18 - Protocol: holb - {626601A1-4BAE-11D1-A7E1-00A0246C1E64} - (no file)
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe





:jap: 

Autres pages sur : gros fenetre intempestive log hijackthis

a b 8 Sécurité
14 Février 2007 18:47:40

Bonsoir,

Télécharge LopResearch.zip
Dézippe-le sur ton Bureau.
Lance le fichier Scan.bat
Un rapport sera généré, poste son contenu ici.
16 Février 2007 11:09:58

salut

merci pour ton aide

voici le rapport


Rapport fait à 11:08:29,56 le 16/02/2007

Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 6CFF-57F0

R‚pertoire de C:\Documents and Settings\All Users\Application Data

17/01/2007 18:31 <REP> meet poke drv jugs
18/11/2006 12:26 <REP> NCH Swift Sound
17/11/2006 16:23 <REP> Sony Corporation
28/09/2006 21:20 <REP> acethemp3bind
28/09/2006 10:31 <REP> Google
29/08/2006 19:08 <REP> Messenger Plus!
01/08/2006 18:51 <REP> Adobe Systems
01/08/2006 18:47 <REP> Adobe
31/07/2006 16:15 <REP> VadeRetro
25/07/2006 23:13 <REP> CyberLink
25/07/2006 16:10 <REP> Spybot - Search & Destroy
12/07/2006 16:53 1372 QTSBandwidthCache
12/07/2006 16:08 <REP> Apple Computer
03/07/2006 08:59 <REP> MSN6
10/06/2006 22:46 <REP> Skype
01/06/2006 08:52 <REP> EarthBrowser
31/05/2006 12:29 <REP> Windows Genuine Advantage
15/05/2006 19:44 <REP> TuneUp Software
10/01/2006 20:51 <REP> DVD Shrink
29/07/2004 14:11 <REP> QuickTime
01/01/2002 11:58 62 desktop.ini
01/01/2002 11:57 <REP> Microsoft
01/01/2002 11:57 <REP> .
01/01/2002 11:57 <REP> ..
2 fichier(s) 1434 octets
22 R‚p(s) 4644401152 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 6CFF-57F0

R‚pertoire de C:\Documents and Settings\Default User\Application Data

01/01/2002 11:58 62 desktop.ini
01/01/2002 11:57 <REP> ..
01/01/2002 11:57 <REP> Microsoft
01/01/2002 11:57 <REP> .
1 fichier(s) 62 octets
3 R‚p(s) 4644401152 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 6CFF-57F0

R‚pertoire de C:\Documents and Settings\Matthieu\Application Data

01/02/2007 21:48 <REP> OpenOffice.org2
28/12/2006 14:58 <REP> Shareaza
18/12/2006 10:02 <REP> BitTorrent
10/12/2006 20:33 <REP> SoftInform
10/12/2006 20:31 <REP> AdsCleaner
18/11/2006 12:36 1024 WavCodec.wff
18/11/2006 12:26 <REP> RecordPad
18/11/2006 12:25 <REP> NCH Swift Sound
17/11/2006 16:18 <REP> Sony Corporation
30/10/2006 14:54 16384 CDRusersDB.v12
05/10/2006 17:55 <REP> DivX
28/09/2006 21:16 <REP> Cast Way Roam
25/09/2006 16:45 <REP> PC Tools
17/09/2006 19:47 <REP> EBP
17/09/2006 19:47 <REP> Comptabilit‚
06/08/2006 17:33 <REP> Tor
04/08/2006 18:54 <REP> AdobeUM
04/08/2006 18:40 <REP> Talkback
31/07/2006 16:15 <REP> VadeRetro
31/07/2006 10:20 <REP> Thunderbird
25/07/2006 23:16 <REP> CyberLink
20/07/2006 15:21 <REP> vlc
19/07/2006 12:25 <REP> Media Player Classic
12/07/2006 16:16 <REP> Apple Computer
12/07/2006 09:10 <REP> Azureus
11/07/2006 12:50 <REP> Opera
03/07/2006 08:59 <REP> MSN6
11/06/2006 13:53 <REP> Chessmaster Challenge
10/06/2006 22:46 <REP> Skype
01/06/2006 08:52 <REP> EarthBrowser
31/05/2006 17:43 <REP> Leadertech
30/05/2006 15:10 <REP> Mozilla
19/05/2006 18:19 <REP> Publish Providers
19/05/2006 18:16 <REP> Sony
15/05/2006 20:15 <REP> Lavasoft
15/05/2006 19:46 <REP> TuneUp Software
14/04/2006 15:54 <REP> FotoWire
10/04/2006 20:01 <REP> Engelmann Media
24/03/2006 19:33 <REP> Sun
23/03/2006 11:21 <REP> EoRezo
21/03/2006 17:32 <REP> Google
14/03/2006 18:52 <REP> IsolatedStorage
14/03/2006 18:12 <REP> Symantec
09/01/2006 20:32 <REP> Real
09/01/2006 19:51 <REP> Ahead
20/07/2004 13:54 <REP> Microsoft Web Folders
01/07/2004 09:25 <REP> Help
18/06/2004 11:41 <REP> EPSON
17/06/2004 11:25 <REP> ArcSoft
16/06/2004 10:54 <REP> Copernic
15/06/2004 14:23 <REP> Adobe
15/06/2004 09:28 <REP> Macromedia
07/06/2004 09:44 <REP> ABBYY
07/06/2004 09:37 <REP> Identities
07/06/2004 09:37 62 desktop.ini
07/06/2004 09:37 <REP> ..
07/06/2004 09:37 <REP> .
07/06/2004 09:37 <REP> Microsoft
3 fichier(s) 17470 octets
55 R‚p(s) 4644397056 octets libres
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks

Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est 6CFF-57F0

R‚pertoire de C:\WINDOWS\Tasks

16/02/2007 09:37 276 ADDE70859185E3B1.job
09/12/2006 14:23 330 MP Scheduled Scan.job
15/05/2006 19:47 414 Maintenance en 1 clic.job
24/06/2004 13:05 244 Symantec AntiVirus Server.job
01/01/2002 12:07 6 SA.DAT
01/01/2002 12:05 65 desktop.ini
01/01/2002 12:05 <REP> ..
01/01/2002 12:05 <REP> .
6 fichier(s) 1ÿ335 octets
2 R‚p(s) 4ÿ644ÿ397ÿ056 octets libres

******************************************
Recherche dans Program files

Le dossier C:\Program Files\C2Media n'existe pas

*************** Fin du rapport ****************
Contenus similaires
a b 8 Sécurité
16 Février 2007 11:55:53

Re,

Désinstalle si possible :
Macrogaming/SweetIMBarForIE

- Lance Hijackthis ->Do a system scan only
->Coche les lignes ci-dessous :

R3 - URLSearchHook: (no name) - _{BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - (no file)
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O2 - BHO: G DATA WebFilter Class - {0124123D-61B4-456f-AF86-78C53A0790C5} - (no file)
O2 - BHO: Poly HTML Filter BHO - {0140DF95-9128-4053-AE72-F43F0CFCA062} - (no file)
O2 - BHO: XBTP05231 Class - {031F120A-BBAF-45d8-B306-375F2A6B9398} - (no file)
O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O3 - Toolbar: (no name) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - (no file)
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O3 - Toolbar: Alcohol Soft - Alcohol 120% Toolbar - {1CE4EE89-2D5C-4361-AF3B-D902AB545381} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: (no name) - {0124123D-61B4-456f-AF86-78C53A0790C5} - (no file)
O4 - HKLM\..\Run: [mp3bindsoftidle] "C:\Documents and Settings\All Users\Application Data\acethemp3bind\InternetAudio.exe"
O4 - HKCU\..\Run: [Slow info] C:\DOCUME~1\LOCALS~1\APPLIC~1\CASTWA~1\love32admin.exe
O18 - Protocol: hola - {626601A0-4BAE-11D1-A7E1-00A0246C1E64} - (no file)
O18 - Protocol: holb - {626601A1-4BAE-11D1-A7E1-00A0246C1E64} - (no file)

Clique sur Fix checked (en bas à gauche)

Télécharge OTMoveIt (d'OldTimer). Sauvegarde-le sur ton Bureau.
Double-clique sur OTMoveIt.exe afin de le lancer.
Sélectionne TOUS les emplacements suivants :

C:\Program Files\Macrogaming
C:\Documents and Settings\All Users\Application Data\meet poke drv jugs
C:\Documents and Settings\All Users\Application Data\acethemp3bind
C:\Documents and Settings\Matthieu\Application Data\Cast Way Roam
C:\WINDOWS\Tasks\ADDE70859185E3B1.job


---> Clique-droit puis Copier

Retourne sur OTMoveIt, fais un Clique-droit sur le cadre de gauche puis choisis Coller.
Clique maintenant sur [#ff0000]MoveIt![/#f]

!! Si un fichier ou dossier ne peut être supprimé immédiatement, le logiciel te demandera de redémarrer. Accepte en cliquant sur YES

Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport est la date de sa création.
16 Février 2007 12:51:40

ok je vais le faire
16 Février 2007 13:03:43

voila merci pour ton aide


rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\



C:\Program Files\Macrogaming\SweetIMBarForIE\Cache moved successfully.
C:\Program Files\Macrogaming\SweetIMBarForIE moved successfully.
C:\Program Files\Macrogaming\SweetIM\update moved successfully.
C:\Program Files\Macrogaming\SweetIM\resources moved successfully.
C:\Program Files\Macrogaming\SweetIM\logs moved successfully.
C:\Program Files\Macrogaming\SweetIM\data\contentdb moved successfully.
C:\Program Files\Macrogaming\SweetIM\data moved successfully.
C:\Program Files\Macrogaming\SweetIM\conf\users moved successfully.
C:\Program Files\Macrogaming\SweetIM\conf moved successfully.
C:\Program Files\Macrogaming\SweetIM moved successfully.
C:\Program Files\Macrogaming moved successfully.
C:\Documents and Settings\All Users\Application Data\meet poke drv jugs moved successfully.
Folder cleanup failed. C:\Documents and Settings\All Users\Application Data\acethemp3bind scheduled to be deleted on reboot.
C:\Documents and Settings\Matthieu\Application Data\Cast Way Roam moved successfully.
C:\WINDOWS\Tasks\ADDE70859185E3B1.job moved successfully.

Created on 02/16/2007 13:00:04
a b 8 Sécurité
16 Février 2007 13:56:13

Reposte un rapport Hijackthis & LopResearch.
16 Février 2007 14:16:08

Logfile of HijackThis v1.99.1
Scan saved at 14:15:45, on 16/02/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Eset\nod32kui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlservr.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\Program Files\eMule\eMule.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Matthieu\Bureau\scann.exe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/webhp?sourceid=navclient&hl=fr&ie=...
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Slow info] C:\DOCUME~1\Matthieu\APPLIC~1\CASTWA~1\love32admin.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Affiche les liens du domaine - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_domain_links.htm
O8 - Extra context menu item: Ajouter les liens sélectionnés au coffre des liens - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_collector_sel.htm
O8 - Extra context menu item: Ajouter les url de bannière dans AdsCleaner - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_banner.htm
O8 - Extra context menu item: Chercher avec Copernic Agent - res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXT
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Faire connaître la bannière à l’équipe de AdsCleaner - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_report_ad.htm
O8 - Extra context menu item: Marquer les liens sélectionnés dans AdsCleaner - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_sel.htm
O8 - Extra context menu item: Marquer tous les liens dans AdsCleaner - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_all.htm
O8 - Extra context menu item: Ouvrir les liens sélectionnés dans des nouvelles fenêtres - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_open_sel.htm
O8 - Extra context menu item: Ouvrir tous les liens dans des nouvelles fenêtres - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_open_all.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE (file missing)
O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE (file missing)
O9 - Extra button: Internet Radio by Endicosoft.com - {1F958B09-3312-7f0e-9723-4C1324C57B20} - C:\Program Files\Internet Radio\Radio.exe (file missing)
O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {084DAC27-6FA3-4F55-9005-033F2F102F5C} (ITPPDiagIE Class) - http://data.jeuxclassiques.com/npwwg.cab
O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - https://ssl-tb.sitadelle.com/selfcare.cegetel.net/templ...
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://drivers1.free.fr/telecharger.php?id=2&version=
O18 - Protocol: bw+0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

16 Février 2007 20:10:05

bonsoir angeldark

je n' ai plus de probleme

merci

et bonne continuation

a b 8 Sécurité
16 Février 2007 21:32:38

Re,

On n'a pas finit.

  • Fais un scan en ligne Kaspersky avec Internet Explorer :
  • Clique sur
  • Clique maintenant sur J'accepte.
  • Valide l'installation d'un ou de plusieurs ActiveX si c'est nécessaire.
  • Patiente pendant l'installation des Mises à jour.
  • Choisis par la suite l'analyse du Poste de travail
  • Sauvegarde puis colle le rapport généré en fin d'analyse.

    AIDE : Configurer le contrôle des ActiveX

    NOTE : Si tu reçois le message "La licence de Kaspersky On-line Scanner est périmée", va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte toi sur le site de Kaspersky pour retenter le scan en ligne.
    21 Février 2007 14:08:52

    salut angeldark

    voici le rapport


    -------------------------------------------------------------------------------
    KASPERSKY ON-LINE SCANNER REPORT
    Wednesday, February 21, 2007 2:07:24 PM
    Système d'exploitation : Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
    Kaspersky On-line Scanner version : 5.0.83.0
    Dernière mise à jour de la base antivirus Kaspersky : 21/02/2007
    Enregistrements dans la base antivirus Kaspersky : 256292
    -------------------------------------------------------------------------------

    Paramètres d'analyse:
    Analyser avec la base antivirus suivante: standard
    Analyser les archives: vrai
    Analyser les bases de messagerie: vrai

    Cible de l'analyse - Poste de travail:
    A:\
    C:\
    D:\
    E:\

    Statistiques de l'analyse:
    Total d'objets analysés: 56968
    Nombre de virus trouvés: 1
    Nombre d'objets infectés: 4 / 0
    Nombre d'objets suspects: 0
    Durée de l'analyse: 01:07:14

    Nom de l'objet infecté / Nom du virus / Dernière action
    C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Support\MPLog-12092006-142015.log L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\Matthieu\Cookies\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Matthieu\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Matthieu\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\Matthieu\Local Settings\Application Data\Microsoft\Windows Defender\FileTracker\{2507A94F-7490-4423-AC1C-3783EC044CD7} L'objet est verrouillé ignoré
    C:\Documents and Settings\Matthieu\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Matthieu\Local Settings\Historique\History.IE5\MSHist012007022120070222\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Matthieu\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Matthieu\ntuser.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Matthieu\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\Program Files\ESET\cache\CACHE.NDB L'objet est verrouillé ignoré
    C:\Program Files\ESET\infected\33LK1ACA.NQF Infecté : Trojan-Downloader.Win32.VB.ft ignoré
    C:\Program Files\ESET\infected\J5M0RRBA.NQF Infecté : Trojan-Downloader.Win32.VB.ft ignoré
    C:\Program Files\ESET\infected\KIOPXFAA.NQF Infecté : Trojan-Downloader.Win32.VB.ft ignoré
    C:\Program Files\ESET\infected\S24FUDBA.NQF Infecté : Trojan-Downloader.Win32.VB.ft ignoré
    C:\Program Files\ESET\logs\virlog.dat L'objet est verrouillé ignoré
    C:\Program Files\ESET\logs\warnlog.dat L'objet est verrouillé ignoré
    C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Data\master.mdf L'objet est verrouillé ignoré
    C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Data\mastlog.ldf L'objet est verrouillé ignoré
    C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Data\model.mdf L'objet est verrouillé ignoré
    C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Data\modellog.ldf L'objet est verrouillé ignoré
    C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Data\tempdb.mdf L'objet est verrouillé ignoré
    C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Data\templog.ldf L'objet est verrouillé ignoré
    C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\LOG\ERRORLOG L'objet est verrouillé ignoré
    C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
    C:\System Volume Information\_restore{5096CD18-3979-4D67-A431-10C09B146108}\RP631\change.log L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB824141$\user32.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB824141$\win32k.sys L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\accwiz.exe L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\crypt32.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\cryptsvc.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\hh.exe L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\hhctrl.ocx L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\hhsetup.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\html32.cnv L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\itss.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\locator.exe L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\magnify.exe L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\migwiz.exe L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\mrxsmb.sys L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\narrator.exe L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\newdev.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\ntdll.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\ntkrnlpa.exe L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\ntoskrnl.exe L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\osk.exe L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\pchshell.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\raspptp.sys L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\shell32.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\shmedia.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\srrstr.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\srv.sys L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\sysmain.sdb L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\user32.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\win32k.sys L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\winsrv.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826939$\zipfldr.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826942$\dhcpcsvc.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826942$\ndis.sys L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826942$\ndisuio.sys L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826942$\netshell.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826942$\wzcdlg.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826942$\wzcsapi.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB826942$\wzcsvc.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828035$\msgsvc.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828035$\wkssvc.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\catsrv.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\catsrvut.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\clbcatex.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\clbcatq.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\colbact.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\comadmin.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\comrepl.exe L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\comsvcs.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\comuid.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\es.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\migregdb.exe L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\msdtcprx.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\msdtctm.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\msdtcuiu.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\mtxclu.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\mtxoci.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\ole32.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\rpcrt4.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\rpcss.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB828741$\txflog.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB833407$\bssym7.ttf L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB833998$\shell32.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB833998$\sxs.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\callcont.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\cmdevtgprov.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\evtgprov.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\gdi32.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\h323.tsp L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\h323msp.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\ipnathlp.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\lsasrv.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\mf3216.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\msasn1.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\msgina.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\mst120.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\netapi32.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\nmcom.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\rtcdll.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallKB835732$\schannel.dll L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallQ828026$\msdxm.ocx L'objet est verrouillé ignoré
    C:\WINDOWS\$NtUninstallQ828026$\wmpcore.dll L'objet est verrouillé ignoré
    C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\Debug\WPD\wpdtrace.log L'objet est verrouillé ignoré
    C:\WINDOWS\Internet Logs\fwpktlog.txt L'objet est verrouillé ignoré
    C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
    C:\WINDOWS\SoftwareDistribution\EventCache\{0B2F0E88-3E09-4CDA-B3EA-4766BE5A2635}.bin L'objet est verrouillé ignoré
    C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
    C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\Internet.evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\drivers\sptd.sys L'objet est verrouillé ignoré
    C:\WINDOWS\system32\drivers\sptd0957.sys L'objet est verrouillé ignoré
    C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\spool\PRINTERS\00002.SHD L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\Temp\Perflib_Perfdata_120.dat L'objet est verrouillé ignoré
    C:\WINDOWS\Temp\Perflib_Perfdata_7c4.dat L'objet est verrouillé ignoré
    C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré
    C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré
    C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré

    Analyse terminée.
    a b 8 Sécurité
    21 Février 2007 14:11:23

    Rien de bien méchant.

    Vide ce dossier :
    C:\Program Files\ESET\infected\

    Télécharge LopResearch.zip
    Dézippe-le sur ton Bureau.
    Lance le fichier Scan.bat
    Un rapport sera généré, poste son contenu ici.
    21 Février 2007 14:22:10


    le voilà


    Rapport fait à 14:21:28,45 le 21/02/2007

    Le volume dans le lecteur C n'a pas de nom.
    Le num‚ro de s‚rie du volume est 6CFF-57F0

    R‚pertoire de C:\Documents and Settings\All Users\Application Data

    18/11/2006 12:26 <REP> NCH Swift Sound
    17/11/2006 16:23 <REP> Sony Corporation
    28/09/2006 21:20 <REP> acethemp3bind
    28/09/2006 10:31 <REP> Google
    29/08/2006 19:08 <REP> Messenger Plus!
    01/08/2006 18:51 <REP> Adobe Systems
    01/08/2006 18:47 <REP> Adobe
    31/07/2006 16:15 <REP> VadeRetro
    25/07/2006 23:13 <REP> CyberLink
    25/07/2006 16:10 <REP> Spybot - Search & Destroy
    12/07/2006 16:53 1372 QTSBandwidthCache
    12/07/2006 16:08 <REP> Apple Computer
    03/07/2006 08:59 <REP> MSN6
    10/06/2006 22:46 <REP> Skype
    01/06/2006 08:52 <REP> EarthBrowser
    31/05/2006 12:29 <REP> Windows Genuine Advantage
    15/05/2006 19:44 <REP> TuneUp Software
    10/01/2006 20:51 <REP> DVD Shrink
    29/07/2004 14:11 <REP> QuickTime
    01/01/2002 11:58 62 desktop.ini
    01/01/2002 11:57 <REP> Microsoft
    01/01/2002 11:57 <REP> .
    01/01/2002 11:57 <REP> ..
    2 fichier(s) 1434 octets
    21 R‚p(s) 2421284864 octets libres
    Le volume dans le lecteur C n'a pas de nom.
    Le num‚ro de s‚rie du volume est 6CFF-57F0

    R‚pertoire de C:\Documents and Settings\Default User\Application Data

    01/01/2002 11:58 62 desktop.ini
    01/01/2002 11:57 <REP> ..
    01/01/2002 11:57 <REP> Microsoft
    01/01/2002 11:57 <REP> .
    1 fichier(s) 62 octets
    3 R‚p(s) 2421284864 octets libres
    Le volume dans le lecteur C n'a pas de nom.
    Le num‚ro de s‚rie du volume est 6CFF-57F0

    R‚pertoire de C:\Documents and Settings\Matthieu\Application Data

    01/02/2007 21:48 <REP> OpenOffice.org2
    28/12/2006 14:58 <REP> Shareaza
    18/12/2006 10:02 <REP> BitTorrent
    10/12/2006 20:33 <REP> SoftInform
    10/12/2006 20:31 <REP> AdsCleaner
    18/11/2006 12:36 1024 WavCodec.wff
    18/11/2006 12:26 <REP> RecordPad
    18/11/2006 12:25 <REP> NCH Swift Sound
    17/11/2006 16:18 <REP> Sony Corporation
    30/10/2006 14:54 16384 CDRusersDB.v12
    05/10/2006 17:55 <REP> DivX
    25/09/2006 16:45 <REP> PC Tools
    17/09/2006 19:47 <REP> EBP
    17/09/2006 19:47 <REP> Comptabilit‚
    06/08/2006 17:33 <REP> Tor
    04/08/2006 18:54 <REP> AdobeUM
    04/08/2006 18:40 <REP> Talkback
    31/07/2006 16:15 <REP> VadeRetro
    31/07/2006 10:20 <REP> Thunderbird
    25/07/2006 23:16 <REP> CyberLink
    20/07/2006 15:21 <REP> vlc
    19/07/2006 12:25 <REP> Media Player Classic
    12/07/2006 16:16 <REP> Apple Computer
    12/07/2006 09:10 <REP> Azureus
    11/07/2006 12:50 <REP> Opera
    03/07/2006 08:59 <REP> MSN6
    11/06/2006 13:53 <REP> Chessmaster Challenge
    10/06/2006 22:46 <REP> Skype
    01/06/2006 08:52 <REP> EarthBrowser
    31/05/2006 17:43 <REP> Leadertech
    30/05/2006 15:10 <REP> Mozilla
    19/05/2006 18:19 <REP> Publish Providers
    19/05/2006 18:16 <REP> Sony
    15/05/2006 20:15 <REP> Lavasoft
    15/05/2006 19:46 <REP> TuneUp Software
    14/04/2006 15:54 <REP> FotoWire
    10/04/2006 20:01 <REP> Engelmann Media
    24/03/2006 19:33 <REP> Sun
    23/03/2006 11:21 <REP> EoRezo
    21/03/2006 17:32 <REP> Google
    14/03/2006 18:52 <REP> IsolatedStorage
    14/03/2006 18:12 <REP> Symantec
    09/01/2006 20:32 <REP> Real
    09/01/2006 19:51 <REP> Ahead
    20/07/2004 13:54 <REP> Microsoft Web Folders
    01/07/2004 09:25 <REP> Help
    18/06/2004 11:41 <REP> EPSON
    17/06/2004 11:25 <REP> ArcSoft
    16/06/2004 10:54 <REP> Copernic
    15/06/2004 14:23 <REP> Adobe
    15/06/2004 09:28 <REP> Macromedia
    07/06/2004 09:44 <REP> ABBYY
    07/06/2004 09:37 <REP> Identities
    07/06/2004 09:37 62 desktop.ini
    07/06/2004 09:37 <REP> ..
    07/06/2004 09:37 <REP> .
    07/06/2004 09:37 <REP> Microsoft
    3 fichier(s) 17470 octets
    54 R‚p(s) 2421280768 octets libres
    ******************************************
    Recherche des taches planifiées dans C:\WINDOWS\tasks

    Le volume dans le lecteur C n'a pas de nom.
    Le num‚ro de s‚rie du volume est 6CFF-57F0

    R‚pertoire de C:\WINDOWS\Tasks

    09/12/2006 14:23 330 MP Scheduled Scan.job
    15/05/2006 19:47 414 Maintenance en 1 clic.job
    24/06/2004 13:05 244 Symantec AntiVirus Server.job
    01/01/2002 12:07 6 SA.DAT
    01/01/2002 12:05 65 desktop.ini
    01/01/2002 12:05 <REP> ..
    01/01/2002 12:05 <REP> .
    5 fichier(s) 1ÿ059 octets
    2 R‚p(s) 2ÿ421ÿ280ÿ768 octets libres

    ******************************************
    Recherche dans Program files

    Le dossier C:\Program Files\C2Media n'existe pas

    *************** Fin du rapport ****************
    a b 8 Sécurité
    21 Février 2007 14:32:20

    Re,

    - Lance Hijackthis ->Do a system scan only
    ->Coche les lignes ci-dessous :

    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
    O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
    O4 - HKCU\..\Run: [Slow info] C:\DOCUME~1\Matthieu\APPLIC~1\CASTWA~1\love32admin.exe

    Clique sur Fix checked (en bas à gauche)

    Télécharge OTMoveIt (d'OldTimer). Sauvegarde-le sur ton Bureau.
    Double-clique sur OTMoveIt.exe afin de le lancer.
    Sélectionne TOUS les emplacements suivants :

    C:\Documents and Settings\All Users\Application Data\acethemp3bind
    C:\Documents and Settings\Matthieu\Application Data\Cast Way Roam
    C:\Documents and Settings\Matthieu\Application Data\EoRezo


    ---> Clique-droit puis Copier

    Retourne sur OTMoveIt, fais un Clique-droit sur le cadre de gauche puis choisis Coller.
    Clique maintenant sur [#ff0000]MoveIt![/#f]

    !! Si un fichier ou dossier ne peut être supprimé immédiatement, le logiciel te demandera de redémarrer. Accepte en cliquant sur YES

    Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
    Le nom du rapport est la date de sa création.
    21 Février 2007 14:42:48


    rapport situé dans ce dossier

    C:\Documents and Settings\All Users\Application Data\acethemp3bind moved successfully.
    File/Folder C:\Documents and Settings\Matthieu\Application Data\Cast Way Roam not found.
    C:\Documents and Settings\Matthieu\Application Data\EoRezo\db moved successfully.
    C:\Documents and Settings\Matthieu\Application Data\EoRezo moved successfully.

    Created on 02/21/2007 14:41:23
    a b 8 Sécurité
    21 Février 2007 15:02:18

    Reposte un rapport Hijackthis & LopResearch.
    21 Février 2007 15:05:21

    Logfile of HijackThis v1.99.1
    Scan saved at 15:05:00, on 21/02/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\System32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Windows Defender\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Eset\nod32kui.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlservr.exe
    C:\Program Files\Eset\nod32krn.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\System32\wbem\wmiapsrv.exe
    C:\WINDOWS\system32\LVComsX.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\Matthieu\Bureau\scann.exe.exe

    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
    O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
    O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
    O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O8 - Extra context menu item: Affiche les liens du domaine - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_domain_links.htm
    O8 - Extra context menu item: Ajouter les liens sélectionnés au coffre des liens - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_collector_sel.htm
    O8 - Extra context menu item: Ajouter les url de bannière dans AdsCleaner - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_banner.htm
    O8 - Extra context menu item: Chercher avec Copernic Agent - res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXT
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Faire connaître la bannière à l’équipe de AdsCleaner - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_report_ad.htm
    O8 - Extra context menu item: Marquer les liens sélectionnés dans AdsCleaner - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_sel.htm
    O8 - Extra context menu item: Marquer tous les liens dans AdsCleaner - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_all.htm
    O8 - Extra context menu item: Ouvrir les liens sélectionnés dans des nouvelles fenêtres - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_open_sel.htm
    O8 - Extra context menu item: Ouvrir tous les liens dans des nouvelles fenêtres - C:\Program Files\SoftInform\AdsCleaner Professional\System\Scripts\off_open_all.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE (file missing)
    O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE (file missing)
    O9 - Extra button: Internet Radio by Endicosoft.com - {1F958B09-3312-7f0e-9723-4C1324C57B20} - C:\Program Files\Internet Radio\Radio.exe (file missing)
    O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE (file missing)
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O16 - DPF: {084DAC27-6FA3-4F55-9005-033F2F102F5C} (ITPPDiagIE Class) - http://data.jeuxclassiques.com/npwwg.cab
    O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
    O16 - DPF: {42E1F024-ECC3-456F-B98A-4CE5ACDBF25C} (ActiveFormX Contrôle) - https://ssl-tb.sitadelle.com/selfcare.cegetel.net/templ...
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://drivers1.free.fr/telecharger.php?id=2&version=
    O17 - HKLM\System\CCS\Services\Tcpip\..\{CE5DD361-50B6-4855-8CF4-F6C68EDB7D37}: NameServer = 192.168.30.1
    O18 - Protocol: bw+0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: offline-8876480 - {A667DA75-03E6-4559-AD89-0F952CDFA725} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
    O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
    O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
    O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SsBeSvc.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
    O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

    21 Février 2007 15:06:04

    Rapport fait à 15:05:46,14 le 21/02/2007

    Le volume dans le lecteur C n'a pas de nom.
    Le num‚ro de s‚rie du volume est 6CFF-57F0

    R‚pertoire de C:\Documents and Settings\All Users\Application Data

    18/11/2006 12:26 <REP> NCH Swift Sound
    17/11/2006 16:23 <REP> Sony Corporation
    28/09/2006 10:31 <REP> Google
    29/08/2006 19:08 <REP> Messenger Plus!
    01/08/2006 18:51 <REP> Adobe Systems
    01/08/2006 18:47 <REP> Adobe
    31/07/2006 16:15 <REP> VadeRetro
    25/07/2006 23:13 <REP> CyberLink
    25/07/2006 16:10 <REP> Spybot - Search & Destroy
    12/07/2006 16:53 1372 QTSBandwidthCache
    12/07/2006 16:08 <REP> Apple Computer
    03/07/2006 08:59 <REP> MSN6
    10/06/2006 22:46 <REP> Skype
    01/06/2006 08:52 <REP> EarthBrowser
    31/05/2006 12:29 <REP> Windows Genuine Advantage
    15/05/2006 19:44 <REP> TuneUp Software
    10/01/2006 20:51 <REP> DVD Shrink
    29/07/2004 14:11 <REP> QuickTime
    01/01/2002 11:58 62 desktop.ini
    01/01/2002 11:57 <REP> Microsoft
    01/01/2002 11:57 <REP> .
    01/01/2002 11:57 <REP> ..
    2 fichier(s) 1434 octets
    20 R‚p(s) 2388418560 octets libres
    Le volume dans le lecteur C n'a pas de nom.
    Le num‚ro de s‚rie du volume est 6CFF-57F0

    R‚pertoire de C:\Documents and Settings\Default User\Application Data

    01/01/2002 11:58 62 desktop.ini
    01/01/2002 11:57 <REP> ..
    01/01/2002 11:57 <REP> Microsoft
    01/01/2002 11:57 <REP> .
    1 fichier(s) 62 octets
    3 R‚p(s) 2388418560 octets libres
    Le volume dans le lecteur C n'a pas de nom.
    Le num‚ro de s‚rie du volume est 6CFF-57F0

    R‚pertoire de C:\Documents and Settings\Matthieu\Application Data

    01/02/2007 21:48 <REP> OpenOffice.org2
    28/12/2006 14:58 <REP> Shareaza
    18/12/2006 10:02 <REP> BitTorrent
    10/12/2006 20:33 <REP> SoftInform
    10/12/2006 20:31 <REP> AdsCleaner
    18/11/2006 12:36 1024 WavCodec.wff
    18/11/2006 12:26 <REP> RecordPad
    18/11/2006 12:25 <REP> NCH Swift Sound
    17/11/2006 16:18 <REP> Sony Corporation
    30/10/2006 14:54 16384 CDRusersDB.v12
    05/10/2006 17:55 <REP> DivX
    25/09/2006 16:45 <REP> PC Tools
    17/09/2006 19:47 <REP> EBP
    17/09/2006 19:47 <REP> Comptabilit‚
    06/08/2006 17:33 <REP> Tor
    04/08/2006 18:54 <REP> AdobeUM
    04/08/2006 18:40 <REP> Talkback
    31/07/2006 16:15 <REP> VadeRetro
    31/07/2006 10:20 <REP> Thunderbird
    25/07/2006 23:16 <REP> CyberLink
    20/07/2006 15:21 <REP> vlc
    19/07/2006 12:25 <REP> Media Player Classic
    12/07/2006 16:16 <REP> Apple Computer
    12/07/2006 09:10 <REP> Azureus
    11/07/2006 12:50 <REP> Opera
    03/07/2006 08:59 <REP> MSN6
    11/06/2006 13:53 <REP> Chessmaster Challenge
    10/06/2006 22:46 <REP> Skype
    01/06/2006 08:52 <REP> EarthBrowser
    31/05/2006 17:43 <REP> Leadertech
    30/05/2006 15:10 <REP> Mozilla
    19/05/2006 18:19 <REP> Publish Providers
    19/05/2006 18:16 <REP> Sony
    15/05/2006 20:15 <REP> Lavasoft
    15/05/2006 19:46 <REP> TuneUp Software
    14/04/2006 15:54 <REP> FotoWire
    10/04/2006 20:01 <REP> Engelmann Media
    24/03/2006 19:33 <REP> Sun
    21/03/2006 17:32 <REP> Google
    14/03/2006 18:52 <REP> IsolatedStorage
    14/03/2006 18:12 <REP> Symantec
    09/01/2006 20:32 <REP> Real
    09/01/2006 19:51 <REP> Ahead
    20/07/2004 13:54 <REP> Microsoft Web Folders
    01/07/2004 09:25 <REP> Help
    18/06/2004 11:41 <REP> EPSON
    17/06/2004 11:25 <REP> ArcSoft
    16/06/2004 10:54 <REP> Copernic
    15/06/2004 14:23 <REP> Adobe
    15/06/2004 09:28 <REP> Macromedia
    07/06/2004 09:44 <REP> ABBYY
    07/06/2004 09:37 <REP> Identities
    07/06/2004 09:37 62 desktop.ini
    07/06/2004 09:37 <REP> ..
    07/06/2004 09:37 <REP> .
    07/06/2004 09:37 <REP> Microsoft
    3 fichier(s) 17470 octets
    53 R‚p(s) 2388414464 octets libres
    ******************************************
    Recherche des taches planifiées dans C:\WINDOWS\tasks

    Le volume dans le lecteur C n'a pas de nom.
    Le num‚ro de s‚rie du volume est 6CFF-57F0

    R‚pertoire de C:\WINDOWS\Tasks

    09/12/2006 14:23 330 MP Scheduled Scan.job
    15/05/2006 19:47 414 Maintenance en 1 clic.job
    24/06/2004 13:05 244 Symantec AntiVirus Server.job
    01/01/2002 12:07 6 SA.DAT
    01/01/2002 12:05 65 desktop.ini
    01/01/2002 12:05 <REP> ..
    01/01/2002 12:05 <REP> .
    5 fichier(s) 1ÿ059 octets
    2 R‚p(s) 2ÿ388ÿ414ÿ464 octets libres

    ******************************************
    Recherche dans Program files

    Le dossier C:\Program Files\C2Media n'existe pas

    *************** Fin du rapport ****************
    a b 8 Sécurité
    21 Février 2007 15:39:00

    Toujours des problèmes ?
    21 Février 2007 15:54:21


    apparemment je n'ai pas de probleme

    merci pour ton aide

    ps : quel antivirus me conseilles tu ?
    a b 8 Sécurité
    21 Février 2007 15:58:14

    Garde Nod32, il est très bien.
    21 Février 2007 16:01:15

    ok @+++++++
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS