olimar

De retour aprés une petite pause repas et, que de réponse !!! Bien cool les gars Au moins on ne se sent pas tout seul dans cette jungle informatique Donc pour ce petit "soucis", je ne fais rien vu que tout le monde semble d'accord pour dire que ça n'en ai pas un. Concernant E-mule, cher charles, on peut en dialoguer ailleurs si tu veux car la charte nous l'interdit içi. Mais c'est un tres vaste sujet. Par contre si c'est pour me mettre en garde contre une possible infection, alors je te remercie. Je pensais qu'avec Avast et Zone Alarme j'étais assez bien protégé, mais apparement non. Et malgré le fait que je lance Spybot et ad-aware tres frequement. Encore merci à tous et tres bonne soirée. Et Yoooppi demain c'est vendredi !!!

Salut Bruce lee et salut à tout le monde, Si tu suis le lien donné par Cupidon68, il semblerai bien que igfxtray soit bel et bien un cheval de troie, alors quoi faire

Salut Cupidon, Merci d'avoir jeter ton oeil avisé sur ce rapport Que me conseil tu afin d'elimer ce nouveau soucis??

Bonjour à tous, Pour pas prendre de risque, j'ai éliminé Mailskinner J'ai refait un Scan Hijackthis, et apparement il est plus là. Je vous poste quand même le rapport au cas ou... StartupList report, 15.03.2006, 05:13:06 StartupList version: 1.52.2 Started from : C:\Documents and Settings\Olivier\Bureau\HijackThis.EXE Detected: Windows XP SP2 (WinNT 5.01.2600) Detected: Internet Explorer v6.00 SP2 (6.00.2900.2180) * Using default options * Including empty and uninteresting sections * Showing rarely important sections ================================================== Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe C:\Program Files\ltmoh\Ltmoh.exe C:\WINDOWS\AGRSMMSG.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\WINDOWS\system32\cisvc.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\MsPMSPSv.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\eMule\emule.exe C:\WINDOWS\system32\cidaemon.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Java\jre1.5.0_04\bin\jucheck.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Documents and Settings\Olivier\Bureau\HijackThis.exe -------------------------------------------------- Listing of startup folders: Shell folders Startup: [C:\Documents and Settings\Olivier\Menu Démarrer\Programmes\Démarrage] *No files* Shell folders AltStartup: *Folder not found* User shell folders Startup: *Folder not found* User shell folders AltStartup: *Folder not found* Shell folders Common Startup: [C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage] *No files* Shell folders Common AltStartup: *Folder not found* User shell folders Common Startup: *Folder not found* User shell folders Alternate Common Startup: *Folder not found* -------------------------------------------------- Checking Windows NT UserInit: [HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] UserInit = C:\WINDOWS\system32\userinit.exe, [HKLM\Software\Microsoft\Windows\CurrentVersion\Winlogon] *Registry key not found* [HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] *Registry value not found* [HKCU\Software\Microsoft\Windows\CurrentVersion\Winlogon] *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run IgfxTray = C:\WINDOWS\system32\igfxtray.exe HotKeysCmds = C:\WINDOWS\system32\hkcmd.exe avast! = C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe Zone Labs Client = C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe QuickTime Task = "C:\Program Files\QuickTime\qttask.exe" -atboottime TkBellExe = "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot SynTPLpr = C:\Program Files\Synaptics\SynTP\SynTPLpr.exe SynTPEnh = C:\Program Files\Synaptics\SynTP\SynTPEnh.exe SunJavaUpdateSched = C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe RoxioEngineUtility = "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe" RoxioDragToDisc = "C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe" RoxioAudioCentral = "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe" NeroFilterCheck = C:\WINDOWS\system32\NeroCheck.exe LtMoh = C:\Program Files\ltmoh\Ltmoh.exe AGRSMMSG = AGRSMMSG.exe -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\Run SP2 Connection Patcher = "C:\Program Files\SP2 Connection Patcher\SP2ConnPatcher.exe" -n=200 LDM = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce *No values found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\Run [OptionalComponents] *No values found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\Run *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- File association entry for .EXE: HKEY_CLASSES_ROOT\exefile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .COM: HKEY_CLASSES_ROOT\comfile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .BAT: HKEY_CLASSES_ROOT\batfile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .PIF: HKEY_CLASSES_ROOT\piffile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .SCR: HKEY_CLASSES_ROOT\scrfile\shell\open\command (Default) = "%1" /S -------------------------------------------------- File association entry for .HTA: HKEY_CLASSES_ROOT\htafile\shell\open\command (Default) = C:\WINDOWS\System32\mshta.exe "%1" %* -------------------------------------------------- File association entry for .TXT: HKEY_CLASSES_ROOT\txtfile\shell\open\command (Default) = %SystemRoot%\system32\NOTEPAD.EXE %1 -------------------------------------------------- Enumerating Active Setup stub paths: HKLM\Software\Microsoft\Active Setup\Installed Components (* = disabled by HKCU twin) [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] StubPath = C:\WINDOWS\inf\unregmp2.exe /ShowWMP [>{26923b43-4d38-484f-9b9e-de460746276c}] * StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE [>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] * StubPath = RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP [>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] * StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE [{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] * StubPath = %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] * StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install [{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT [{5945c046-1e7d-11d1-bc44-00c04fd912be}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub [{7790769C-0471-11d2-AF11-00C04FA35D02}] * StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install [{89820200-ECBD-11cf-8B85-00AA005B4340}] * StubPath = regsvr32.exe /s /n /i:U shell32.dll [{89820200-ECBD-11cf-8B85-00AA005B4383}] * StubPath = %SystemRoot%\system32\ie4uinit.exe -------------------------------------------------- Enumerating ICQ Agent Autostart apps: HKCU\Software\Mirabilis\ICQ\Agent\Apps *Registry key not found* -------------------------------------------------- Load/Run keys from C:\WINDOWS\WIN.INI: load=*INI section not found* run=*INI section not found* Load/Run keys from Registry: HKLM\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found* HKLM\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found* HKLM\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found* HKCU\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found* HKCU\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found* HKCU\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found* HKCU\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found* HKCU\..\Windows NT\CurrentVersion\Windows: load= HKCU\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: load=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: AppInit_DLLs= -------------------------------------------------- Shell & screensaver key from C:\WINDOWS\SYSTEM.INI: Shell=*INI section not found* SCRNSAVE.EXE=*INI section not found* drivers=*INI section not found* Shell & screensaver key from Registry: Shell=Explorer.exe SCRNSAVE.EXE=C:\WINDOWS\System32\logon.scr drivers=*Registry value not found* Policies Shell key: HKCU\..\Policies: Shell=*Registry value not found* HKLM\..\Policies: Shell=*Registry value not found* -------------------------------------------------- Checking for EXPLORER.EXE instances: C:\WINDOWS\Explorer.exe: PRESENT! C:\Explorer.exe: not present C:\WINDOWS\Explorer\Explorer.exe: not present C:\WINDOWS\System\Explorer.exe: not present C:\WINDOWS\System32\Explorer.exe: not present C:\WINDOWS\Command\Explorer.exe: not present C:\WINDOWS\Fonts\Explorer.exe: not present -------------------------------------------------- Checking for superhidden extensions: .lnk: HIDDEN! (arrow overlay: yes) .pif: HIDDEN! (arrow overlay: yes) .exe: not hidden .com: not hidden .bat: not hidden .hta: not hidden .scr: not hidden .shs: HIDDEN! .shb: HIDDEN! .vbs: not hidden .vbe: not hidden .wsh: not hidden .scf: HIDDEN! (arrow overlay: NO!) .url: HIDDEN! (arrow overlay: yes) .js: not hidden .jse: not hidden -------------------------------------------------- Verifying REGEDIT.EXE integrity: - Regedit.exe found in C:\WINDOWS - .reg open command is normal (regedit.exe %1) - Regedit.exe has no CompanyName property! It is either missing or named something else. - Regedit.exe has no OriginalFilename property! It is either missing or named something else. - Regedit.exe has no FileDescription property! It is either missing or named something else. Registry check failed! -------------------------------------------------- Enumerating Browser Helper Objects: (no name) - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (no name) - C:\WINDOWS\DOWNLO~1\bluewin.dll - {4E7BD74F-2B8D-469E-DCF7-E869A199B87D} -------------------------------------------------- Enumerating Task Scheduler jobs: 1-Click Maintenance.job FRU Task #Hewlett-Packard#hp psc 1100 series#1117101806.job -------------------------------------------------- Enumerating Download Program Files: [Java Plug-in 1.5.0_04] InProcServer32 = C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll CODEBASE = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab [shockwave Flash Object] InProcServer32 = C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx CODEBASE = http://download.macromedia.com/pub/shockwa...ash/swflash.cab -------------------------------------------------- Enumerating Winsock LSP files: NameSpace #1: C:\WINDOWS\System32\mswsock.dll NameSpace #2: C:\WINDOWS\System32\winrnr.dll NameSpace #3: C:\WINDOWS\System32\mswsock.dll Protocol #1: C:\WINDOWS\system32\mswsock.dll Protocol #2: C:\WINDOWS\system32\mswsock.dll Protocol #3: C:\WINDOWS\system32\mswsock.dll Protocol #4: C:\WINDOWS\system32\rsvpsp.dll Protocol #5: C:\WINDOWS\system32\rsvpsp.dll Protocol #6: C:\WINDOWS\system32\mswsock.dll Protocol #7: C:\WINDOWS\system32\mswsock.dll Protocol #8: C:\WINDOWS\system32\mswsock.dll Protocol #9: C:\WINDOWS\system32\mswsock.dll Protocol #10: C:\WINDOWS\system32\mswsock.dll Protocol #11: C:\WINDOWS\system32\mswsock.dll -------------------------------------------------- Enumerating Windows NT/2000/XP services Pilote ACPI Microsoft: System32\DRIVERS\ACPI.sys (system) Pilote de contrôleur intégré Microsoft: System32\DRIVERS\ACPIEC.sys (system) Suppresseur d'écho acoustique (Noyau Microsoft): system32\drivers\aec.sys (manual start) Environnement de prise en charge de réseau AFD: \SystemRoot\System32\drivers\afd.sys (system) Agere Systems Soft Modem: system32\DRIVERS\AGRSM.sys (manual start) Avertissement: %SystemRoot%\System32\svchost.exe -k LocalService (disabled) Service de la passerelle de la couche Application: %SystemRoot%\System32\alg.exe (manual start) Gestion d'applications: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start) avast! iAVS4 Control Service: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe" (autostart) Pilote de média asynchrone RAS: System32\DRIVERS\asyncmac.sys (manual start) Contrôleur de disque dur IDE/ESDI standard: System32\DRIVERS\atapi.sys (system) Protocole client ATM ARP: System32\DRIVERS\atmarpc.sys (manual start) Audio Windows: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote audio Stub: System32\DRIVERS\audstub.sys (manual start) avast! Antivirus: "C:\Program Files\Alwil Software\Avast4\ashServ.exe" (autostart) avast! Mail Scanner: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (manual start) avast! Web Scanner: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (manual start) Service de transfert intelligent en arrière-plan: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Explorateur d'ordinateur: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) C-DillaCdaC11BA: C:\WINDOWS\system32\drivers\CDAC11BA.EXE (autostart) CdaC15BA: \??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS (autostart) Pilote de CD-ROM: System32\DRIVERS\cdrom.sys (system) Service d'indexation: C:\WINDOWS\system32\cisvc.exe (autostart) Gestionnaire de l'Album: %SystemRoot%\system32\clipsrv.exe (disabled) Pilote d'adaptateur secteur Microsoft: System32\DRIVERS\CmBatt.sys (manual start) Pilote de batterie composite Microsoft: System32\DRIVERS\compbatt.sys (system) Application système COM+: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} (manual start) Services de cryptographie: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Cirrus Logic WDM Audio Codec Driver: system32\drivers\cwawdm.sys (manual start) Lanceur de processus serveur DCOM: %SystemRoot%\system32\svchost -k DcomLaunch (autostart) Client DHCP: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote de disque: System32\DRIVERS\disk.sys (system) Service d'administration du Gestionnaire de disque logique: %SystemRoot%\System32\dmadmin.exe /com (manual start) dmboot: System32\drivers\dmboot.sys (disabled) Pilote de Gestionnaire de disque logique: System32\drivers\dmio.sys (system) dmload: System32\drivers\dmload.sys (system) Gestionnaire de disque logique: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Synthétiseur DLS du noyau Microsoft: system32\drivers\DMusic.sys (manual start) Client DNS: %SystemRoot%\System32\svchost.exe -k NetworkService (autostart) Filtre de décodeur DRM (Noyau Microsoft): system32\drivers\drmkaud.sys (manual start) Service de rapport d'erreurs: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Journal des événements: %SystemRoot%\system32\services.exe (autostart) Système d'événements de COM+: C:\WINDOWS\System32\svchost.exe -k netsvcs (manual start) ewido security suite control: C:\Program Files\ewido anti-malware\ewidoctrl.exe (autostart) Compatibilité avec le Changement rapide d'utilisateur: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Pilote de contrôleur de lecteur de disquettes: System32\DRIVERS\fdc.sys (manual start) FltMgr: system32\drivers\fltmgr.sys (system) Pilote du Gestionnaire de volume: System32\DRIVERS\ftdisk.sys (system) Classificateur de paquets générique: System32\DRIVERS\msgpc.sys (manual start) Aide et support: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Accès du périphérique d'interface utilisateur: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled) Pilote de classe HID Microsoft: System32\DRIVERS\hidusb.sys (manual start) IEEE-1284.4 Driver HPZid412: system32\DRIVERS\HPZid412.sys (manual start) Print Class Driver for IEEE-1284.4 HPZipr12: system32\DRIVERS\HPZipr12.sys (manual start) USB to IEEE-1284.4 Translation Driver HPZius12: system32\DRIVERS\HPZius12.sys (manual start) HTTP: System32\Drivers\HTTP.sys (manual start) HTTP SSL: %SystemRoot%\System32\svchost.exe -k HTTPFilter (manual start) Pilote pour clavier i8042 et souris sur port PS/2: System32\DRIVERS\i8042prt.sys (system) ialm: system32\DRIVERS\ialmnt5.sys (manual start) InstallDriver Table Manager: "C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe" (manual start) Pilote de filtre de gravure CD: system32\DRIVERS\imapi.sys (system) Service COM de gravage de CD IMAPI: C:\WINDOWS\System32\imapi.exe (manual start) Pilote de processeur Intel: System32\DRIVERS\intelppm.sys (system) Pilote du pare-feu Windows IPv6: system32\drivers\ip6fw.sys (manual start) Pilote de filtre de trafic IP: System32\DRIVERS\ipfltdrv.sys (manual start) Pilote de tunnelage IP dans IP: System32\DRIVERS\ipinip.sys (manual start) Traducteur d'adresses réseau IP: System32\DRIVERS\ipnat.sys (manual start) Pilote IPSEC: System32\DRIVERS\ipsec.sys (system) Service énumérateur IR: System32\DRIVERS\irenum.sys (manual start) Pilote de bus Plug-and-Play ISA/EISA: System32\DRIVERS\isapnp.sys (system) Pilote de la classe Clavier: System32\DRIVERS\kbdclass.sys (system) Mélangeur audio Wave de noyau Microsoft: system32\drivers\kmixer.sys (manual start) Serveur: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Station de travail: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Logitech HID/USB Mouse Filter Driver: system32\DRIVERS\LHidFlt2.Sys (manual start) Logitech USB Receiver device driver: System32\Drivers\LHidUsb.Sys (manual start) Assistance TCP/IP NetBIOS: %SystemRoot%\System32\svchost.exe -k LocalService (autostart) Logitech Mouse Class Filter Driver: system32\DRIVERS\LMouFlt2.Sys (manual start) Affichage des messages: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled) Partage de Bureau à distance NetMeeting: C:\WINDOWS\System32\mnmsrvc.exe (manual start) Pilote de la classe Souris: System32\DRIVERS\mouclass.sys (system) Pilote HID de souris: System32\DRIVERS\mouhid.sys (manual start) Redirecteur client WebDav: System32\DRIVERS\mrxdav.sys (manual start) MRXSMB: System32\DRIVERS\mrxsmb.sys (system) Distributed Transaction Coordinator: C:\WINDOWS\System32\msdtc.exe (manual start) Windows Installer: C:\WINDOWS\system32\msiexec.exe /V (manual start) Proxy de service de répartition Microsoft: system32\drivers\MSKSSRV.sys (manual start) Proxy d'horloge de répartition Microsoft: system32\drivers\MSPCLOCK.sys (manual start) Proxy de gestion de qualité de répartition Microsoft: system32\drivers\MSPQM.sys (manual start) Pilote BIOS de gestion de systèmes Microsoft: System32\DRIVERS\mssmbios.sys (manual start) Pilote TAPI NDIS d'accès distant: System32\DRIVERS\ndistapi.sys (manual start) NDIS mode utilisateur E/S Protocole: System32\DRIVERS\ndisuio.sys (manual start) Pilote réseau étendu NDIS d'accès distant: System32\DRIVERS\ndiswan.sys (manual start) Interface NetBIOS: System32\DRIVERS\netbios.sys (system) NetBIOS sur TCP/IP: System32\DRIVERS\netbt.sys (system) DDE réseau: %SystemRoot%\system32\netdde.exe (disabled) DSDM DDE réseau: %SystemRoot%\system32\netdde.exe (disabled) Ouverture de session réseau: %SystemRoot%\System32\lsass.exe (manual start) Connexions réseau: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) NLA (Network Location Awareness): %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Fournisseur de la prise en charge de sécurité LM NT: %SystemRoot%\System32\lsass.exe (manual start) Stockage amovible: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start) Pilote de filtre de trafic IPX: System32\DRIVERS\nwlnkflt.sys (manual start) Pilote de transfert de trafic IPX: System32\DRIVERS\nwlnkfwd.sys (manual start) Pilote de port parallèle: System32\DRIVERS\parport.sys (manual start) Pilote de bus PCI: System32\DRIVERS\pci.sys (system) PCIIde: System32\DRIVERS\pciide.sys (system) Pcmcia: System32\DRIVERS\pcmcia.sys (system) Plug-and-Play: %SystemRoot%\system32\services.exe (autostart) Pml Driver HPZ12: C:\WINDOWS\system32\HPZipm12.exe (manual start) Services IPSEC: %SystemRoot%\System32\lsass.exe (autostart) Miniport réseau étendu (PPTP): System32\DRIVERS\raspptp.sys (manual start) Pilote processeur: System32\DRIVERS\processr.sys (system) Emplacement protégé: %SystemRoot%\system32\lsass.exe (autostart) Planificateur de paquets QoS: System32\DRIVERS\psched.sys (manual start) Pilote de liaison parallèle directe: System32\DRIVERS\ptilink.sys (manual start) PxHelp20: system32\DRIVERS\PxHelp20.sys (system) Pilote de connexion automatique d'accès distant: System32\DRIVERS\rasacd.sys (system) Gestionnaire de connexion automatique d'accès distant: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Miniport réseau étendu (L2TP): System32\DRIVERS\rasl2tp.sys (manual start) Gestionnaire de connexions d'accès distant: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Pilote PPPOE d'accès à distance: System32\DRIVERS\raspppoe.sys (manual start) Parallèle direct: System32\DRIVERS\raspti.sys (manual start) Rdbss: System32\DRIVERS\rdbss.sys (system) RDPCDD: System32\DRIVERS\RDPCDD.sys (system) Pilote de redirecteur de périphérique Terminal Server: System32\DRIVERS\rdpdr.sys (manual start) Gestionnaire de session d'aide sur le Bureau à distance: C:\WINDOWS\system32\sessmgr.exe (manual start) Pilote de filtre de lecture digitale de CD audio: System32\DRIVERS\redbook.sys (system) Routage et accès distant: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled) Accès à distance au Registre: %SystemRoot%\system32\svchost.exe -k LocalService (autostart) Localisateur d'appels de procédure distante (RPC): %SystemRoot%\System32\locator.exe (manual start) Appel de procédure distante (RPC): %SystemRoot%\system32\svchost -k rpcss (autostart) QoS RSVP: %SystemRoot%\System32\rsvp.exe (manual start) Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C): System32\DRIVERS\RTL8139.SYS (manual start) Gestionnaire de comptes de sécurité: %SystemRoot%\system32\lsass.exe (autostart) Carte à puce: %SystemRoot%\System32\SCardSvr.exe (manual start) Planificateur de tâches: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Secdrv: System32\DRIVERS\secdrv.sys (manual start) Connexion secondaire: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Notification d'événement système: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Pare-feu Windows / Partage de connexion Internet: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Détection matériel noyau: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Splitter audio du noyau Microsoft: system32\drivers\splitter.sys (manual start) Spouleur d'impression: %SystemRoot%\system32\spoolsv.exe (autostart) Pilote de filtre de restauration système: \SystemRoot\System32\DRIVERS\sr.sys (disabled) Service de restauration système: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Srv: System32\DRIVERS\srv.sys (manual start) Service de découvertes SSDP: %SystemRoot%\System32\svchost.exe -k LocalService (manual start) Acquisition d'image Windows (WIA): %SystemRoot%\System32\svchost.exe -k imgsvc (autostart) Pilote de bus logiciel: System32\DRIVERS\swenum.sys (manual start) Synthétiseur de table de sons GC noyau Microsoft: system32\drivers\swmidi.sys (manual start) MS Software Shadow Copy Provider: C:\WINDOWS\System32\dllhost.exe /Processid:{0D002F9B-B92A-40AC-8AB6-33D4E0242327} (manual start) Synaptics TouchPad Driver: system32\DRIVERS\SynTP.sys (manual start) Périphérique audio système du noyau Microsoft: system32\drivers\sysaudio.sys (manual start) Journaux et alertes de performance: %SystemRoot%\system32\smlogsvc.exe (manual start) Téléphonie: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Pilote du protocole TCP/IP: System32\DRIVERS\tcpip.sys (system) Pilote de périphérique terminal: System32\DRIVERS\termdd.sys (system) Services Terminal Server: %SystemRoot%\System32\svchost -k DComLaunch (manual start) Thèmes: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Telnet: C:\WINDOWS\System32\tlntsvr.exe (manual start) Client de suivi de lien distribué: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) TuneUp WinStyler Theme Service: "C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe" (manual start) Windows User Mode Driver Framework: C:\WINDOWS\system32\wdfmgr.exe (autostart) Pilote de mise à jour microcode: System32\DRIVERS\update.sys (manual start) Hôte de périphérique universel Plug-and-Play: %SystemRoot%\System32\svchost.exe -k LocalService (manual start) Onduleur: %SystemRoot%\System32\ups.exe (manual start) Pilote parent générique USB Microsoft: system32\DRIVERS\usbccgp.sys (manual start) Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0: system32\DRIVERS\usbehci.sys (manual start) Concentrateur USB2: System32\DRIVERS\usbhub.sys (manual start) Classe d'imprimantes USB Microsoft: system32\DRIVERS\usbprint.sys (manual start) Pilote de scanneur USB: system32\DRIVERS\usbscan.sys (manual start) Pilote de stockage de masse USB: system32\DRIVERS\USBSTOR.SYS (manual start) Pilote miniport de contrôleur hôte universel USB Microsoft: System32\DRIVERS\usbuhci.sys (manual start) Carte vidéo VGA.: \SystemRoot\System32\drivers\vga.sys (system) vsdatant: System32\vsdatant.sys (system) TrueVector Internet Monitor: C:\WINDOWS\system32\ZoneLabs\vsmon.exe -service (autostart) Cliché instantané de volume: %SystemRoot%\System32\vssvc.exe (manual start) Horloge Windows: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote ARP IP d'accès distant: System32\DRIVERS\wanarp.sys (manual start) Pilote WINMM de compatibilité audio WDM Microsoft: system32\drivers\wdmaud.sys (manual start) WebClient: %SystemRoot%\System32\svchost.exe -k LocalService (autostart) Infrastructure de gestion Windows: %systemroot%\system32\svchost.exe -k netsvcs (autostart) WMDM PMSP Service: C:\WINDOWS\system32\MsPMSPSv.exe (autostart) Service de numéro de série du lecteur multimédia portable: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Extensions du pilote WMI: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Carte de performance WMI: C:\WINDOWS\System32\wbem\wmiapsrv.exe (manual start) Centre de sécurité: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Mises à jour automatiques: %systemRoot%\System32\svchost.exe -k netsvcs (autostart) Configuration automatique sans fil: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Service d'approvisionnement réseau: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Intel® Graphics Platform (SoftBIOS) Driver: system32\drivers\ialmsbw.sys (manual start) Intel® Graphics Chipset (KCH) Driver: system32\drivers\ialmkchw.sys (manual start) -------------------------------------------------- Enumerating Windows NT logon/logoff scripts: *No scripts set to run* Windows NT checkdisk command: BootExecute = autocheck autochk * Windows NT 'Wininit.ini': PendingFileRenameOperations: *Registry value not found* -------------------------------------------------- Enumerating ShellServiceObjectDelayLoad items: PostBootReminder: C:\WINDOWS\system32\SHELL32.dll CDBurn: C:\WINDOWS\system32\SHELL32.dll WebCheck: C:\WINDOWS\System32\webcheck.dll SysTray: C:\WINDOWS\System32\stobject.dll -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run *No values found* -------------------------------------------------- End of report, 33'793 bytes Report generated in 1.322 seconds Command line options: /verbose - to add additional info on each section /complete - to include empty sections and unsuspicious data /full - to include several rarely-important sections /force9x - to include Win9x-only startups even if running on WinNT /forcent - to include WinNT-only startups even if running on Win9x /forceall - to include all Win9x and WinNT startups, regardless of platform /history - to list version history only Merci à tous de votre aide et bien vu à ton oeil avisé cupidon Bonne journée.

Bonjour à tous, re charles Ingals, Ca a fonctionné, IAdHide5.dll à disparu Merci pour JV16Tools Et encore merci à tous ceux qui ont pris de leur temps pour me répondre.Spécialement C.Ingalls et Régis. Des vrais chefs Trés bonne journée.

Ciao tout le monde, Merci mil fois, de votre aide et support Tres bon boulot Mr Ingals. Chapeau bas. Vous etes geniaux. La seule chose qui reste sur mon ordi c'est ce fameux Ladhide5.dll qui persiste à squatter mon fichier temporaire. A bientôt - m'enfin sur un autre forum que Analyse rapports hijackthis -) Bonne soirée.

Salut à tous, Merci regis de ta réponse. Non, je n'ai plus de disfonctionnement Je pensais avoir mis le rapport à la suite de celui d'Ewido Alors voila mon scan Hijackthis : StartupList report, 07.03.2006, 11:58:22 StartupList version: 1.52.2 Started from : C:\Documents and Settings\Olivier\Bureau\HijackThis.EXE Detected: Windows XP SP2 (WinNT 5.01.2600) Detected: Internet Explorer v6.00 SP2 (6.00.2900.2180) * Using default options * Including empty and uninteresting sections * Showing rarely important sections ================================================== Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe C:\Program Files\ltmoh\Ltmoh.exe C:\WINDOWS\AGRSMMSG.exe C:\program files\mailskinner\mailskinner.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\Logitech\MouseWare\system\em_exec.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\WINDOWS\system32\cisvc.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\MsPMSPSv.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Documents and Settings\Olivier\Bureau\HijackThis.exe -------------------------------------------------- Listing of startup folders: Shell folders Startup: [C:\Documents and Settings\Olivier\Menu Démarrer\Programmes\Démarrage] *No files* Shell folders AltStartup: *Folder not found* User shell folders Startup: *Folder not found* User shell folders AltStartup: *Folder not found* Shell folders Common Startup: [C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage] Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe Shell folders Common AltStartup: *Folder not found* User shell folders Common Startup: *Folder not found* User shell folders Alternate Common Startup: *Folder not found* -------------------------------------------------- Checking Windows NT UserInit: [HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] UserInit = C:\WINDOWS\system32\userinit.exe, [HKLM\Software\Microsoft\Windows\CurrentVersion\Winlogon] *Registry key not found* [HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] *Registry value not found* [HKCU\Software\Microsoft\Windows\CurrentVersion\Winlogon] *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run IgfxTray = C:\WINDOWS\system32\igfxtray.exe HotKeysCmds = C:\WINDOWS\system32\hkcmd.exe avast! = C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe Zone Labs Client = C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe Logitech Utility = Logi_MwX.Exe QuickTime Task = "C:\Program Files\QuickTime\qttask.exe" -atboottime TkBellExe = "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot SynTPLpr = C:\Program Files\Synaptics\SynTP\SynTPLpr.exe SynTPEnh = C:\Program Files\Synaptics\SynTP\SynTPEnh.exe SunJavaUpdateSched = C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe RoxioEngineUtility = "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe" RoxioDragToDisc = "C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe" RoxioAudioCentral = "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe" NeroFilterCheck = C:\WINDOWS\system32\NeroCheck.exe LtMoh = C:\Program Files\ltmoh\Ltmoh.exe AGRSMMSG = AGRSMMSG.exe -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\Run MailSkinner = c:\program files\mailskinner\mailskinner.exe LDM = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe SP2 Connection Patcher = "C:\Program Files\SP2 Connection Patcher\SP2ConnPatcher.exe" -n=200 -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce *No values found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\Run [OptionalComponents] *No values found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\Run *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- File association entry for .EXE: HKEY_CLASSES_ROOT\exefile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .COM: HKEY_CLASSES_ROOT\comfile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .BAT: HKEY_CLASSES_ROOT\batfile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .PIF: HKEY_CLASSES_ROOT\piffile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .SCR: HKEY_CLASSES_ROOT\scrfile\shell\open\command (Default) = "%1" /S -------------------------------------------------- File association entry for .HTA: HKEY_CLASSES_ROOT\htafile\shell\open\command (Default) = C:\WINDOWS\System32\mshta.exe "%1" %* -------------------------------------------------- File association entry for .TXT: HKEY_CLASSES_ROOT\txtfile\shell\open\command (Default) = %SystemRoot%\system32\NOTEPAD.EXE %1 -------------------------------------------------- Enumerating Active Setup stub paths: HKLM\Software\Microsoft\Active Setup\Installed Components (* = disabled by HKCU twin) [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] StubPath = C:\WINDOWS\inf\unregmp2.exe /ShowWMP [>{26923b43-4d38-484f-9b9e-de460746276c}] * StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE [>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] * StubPath = RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP [>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] * StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE [{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] * StubPath = %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] * StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install [{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT [{5945c046-1e7d-11d1-bc44-00c04fd912be}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub [{7790769C-0471-11d2-AF11-00C04FA35D02}] * StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install [{89820200-ECBD-11cf-8B85-00AA005B4340}] * StubPath = regsvr32.exe /s /n /i:U shell32.dll [{89820200-ECBD-11cf-8B85-00AA005B4383}] * StubPath = %SystemRoot%\system32\ie4uinit.exe -------------------------------------------------- Enumerating ICQ Agent Autostart apps: HKCU\Software\Mirabilis\ICQ\Agent\Apps *Registry key not found* -------------------------------------------------- Load/Run keys from C:\WINDOWS\WIN.INI: load=*INI section not found* run=*INI section not found* Load/Run keys from Registry: HKLM\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found* HKLM\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found* HKLM\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found* HKCU\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found* HKCU\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found* HKCU\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found* HKCU\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found* HKCU\..\Windows NT\CurrentVersion\Windows: load= HKCU\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: load=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: AppInit_DLLs= -------------------------------------------------- Shell & screensaver key from C:\WINDOWS\SYSTEM.INI: Shell=*INI section not found* SCRNSAVE.EXE=*INI section not found* drivers=*INI section not found* Shell & screensaver key from Registry: Shell=Explorer.exe SCRNSAVE.EXE=C:\WINDOWS\System32\logon.scr drivers=*Registry value not found* Policies Shell key: HKCU\..\Policies: Shell=*Registry value not found* HKLM\..\Policies: Shell=*Registry value not found* -------------------------------------------------- Checking for EXPLORER.EXE instances: C:\WINDOWS\Explorer.exe: PRESENT! C:\Explorer.exe: not present C:\WINDOWS\Explorer\Explorer.exe: not present C:\WINDOWS\System\Explorer.exe: not present C:\WINDOWS\System32\Explorer.exe: not present C:\WINDOWS\Command\Explorer.exe: not present C:\WINDOWS\Fonts\Explorer.exe: not present -------------------------------------------------- Checking for superhidden extensions: .lnk: HIDDEN! (arrow overlay: yes) .pif: HIDDEN! (arrow overlay: yes) .exe: not hidden .com: not hidden .bat: not hidden .hta: not hidden .scr: not hidden .shs: HIDDEN! .shb: HIDDEN! .vbs: not hidden .vbe: not hidden .wsh: not hidden .scf: HIDDEN! (arrow overlay: NO!) .url: HIDDEN! (arrow overlay: yes) .js: not hidden .jse: not hidden -------------------------------------------------- Verifying REGEDIT.EXE integrity: - Regedit.exe found in C:\WINDOWS - .reg open command is normal (regedit.exe %1) - Regedit.exe has no CompanyName property! It is either missing or named something else. - Regedit.exe has no OriginalFilename property! It is either missing or named something else. - Regedit.exe has no FileDescription property! It is either missing or named something else. Registry check failed! -------------------------------------------------- Enumerating Browser Helper Objects: (no name) - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (no name) - C:\WINDOWS\DOWNLO~1\bluewin.dll - {4E7BD74F-2B8D-469E-DCF7-E869A199B87D} -------------------------------------------------- Enumerating Task Scheduler jobs: 1-Click Maintenance.job FRU Task #Hewlett-Packard#hp psc 1100 series#1117101806.job -------------------------------------------------- Enumerating Download Program Files: [Java Plug-in 1.5.0_04] InProcServer32 = C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll CODEBASE = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab [shockwave Flash Object] InProcServer32 = C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx CODEBASE = http://download.macromedia.com/pub/shockwa...ash/swflash.cab -------------------------------------------------- Enumerating Winsock LSP files: NameSpace #1: C:\WINDOWS\System32\mswsock.dll NameSpace #2: C:\WINDOWS\System32\winrnr.dll NameSpace #3: C:\WINDOWS\System32\mswsock.dll Protocol #1: C:\WINDOWS\system32\mswsock.dll Protocol #2: C:\WINDOWS\system32\mswsock.dll Protocol #3: C:\WINDOWS\system32\mswsock.dll Protocol #4: C:\WINDOWS\system32\rsvpsp.dll Protocol #5: C:\WINDOWS\system32\rsvpsp.dll Protocol #6: C:\WINDOWS\system32\mswsock.dll Protocol #7: C:\WINDOWS\system32\mswsock.dll Protocol #8: C:\WINDOWS\system32\mswsock.dll Protocol #9: C:\WINDOWS\system32\mswsock.dll Protocol #10: C:\WINDOWS\system32\mswsock.dll Protocol #11: C:\WINDOWS\system32\mswsock.dll -------------------------------------------------- Enumerating Windows NT/2000/XP services Pilote ACPI Microsoft: System32\DRIVERS\ACPI.sys (system) Pilote de contrôleur intégré Microsoft: System32\DRIVERS\ACPIEC.sys (system) Suppresseur d'écho acoustique (Noyau Microsoft): system32\drivers\aec.sys (manual start) Environnement de prise en charge de réseau AFD: \SystemRoot\System32\drivers\afd.sys (system) Agere Systems Soft Modem: system32\DRIVERS\AGRSM.sys (manual start) Avertissement: %SystemRoot%\System32\svchost.exe -k LocalService (disabled) Service de la passerelle de la couche Application: %SystemRoot%\System32\alg.exe (manual start) Gestion d'applications: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start) avast! iAVS4 Control Service: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe" (autostart) Pilote de média asynchrone RAS: System32\DRIVERS\asyncmac.sys (manual start) Contrôleur de disque dur IDE/ESDI standard: System32\DRIVERS\atapi.sys (system) Protocole client ATM ARP: System32\DRIVERS\atmarpc.sys (manual start) Audio Windows: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote audio Stub: System32\DRIVERS\audstub.sys (manual start) avast! Antivirus: "C:\Program Files\Alwil Software\Avast4\ashServ.exe" (autostart) avast! Mail Scanner: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (manual start) avast! Web Scanner: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (manual start) Service de transfert intelligent en arrière-plan: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Explorateur d'ordinateur: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) C-DillaCdaC11BA: C:\WINDOWS\system32\drivers\CDAC11BA.EXE (autostart) CdaC15BA: \??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS (autostart) Pilote de CD-ROM: System32\DRIVERS\cdrom.sys (system) Service d'indexation: C:\WINDOWS\system32\cisvc.exe (autostart) Gestionnaire de l'Album: %SystemRoot%\system32\clipsrv.exe (disabled) Pilote d'adaptateur secteur Microsoft: System32\DRIVERS\CmBatt.sys (manual start) Pilote de batterie composite Microsoft: System32\DRIVERS\compbatt.sys (system) Application système COM+: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} (manual start) Services de cryptographie: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Cirrus Logic WDM Audio Codec Driver: system32\drivers\cwawdm.sys (manual start) Lanceur de processus serveur DCOM: %SystemRoot%\system32\svchost -k DcomLaunch (autostart) Client DHCP: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote de disque: System32\DRIVERS\disk.sys (system) Service d'administration du Gestionnaire de disque logique: %SystemRoot%\System32\dmadmin.exe /com (manual start) dmboot: System32\drivers\dmboot.sys (disabled) Pilote de Gestionnaire de disque logique: System32\drivers\dmio.sys (system) dmload: System32\drivers\dmload.sys (system) Gestionnaire de disque logique: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Synthétiseur DLS du noyau Microsoft: system32\drivers\DMusic.sys (manual start) Client DNS: %SystemRoot%\System32\svchost.exe -k NetworkService (autostart) Filtre de décodeur DRM (Noyau Microsoft): system32\drivers\drmkaud.sys (manual start) Service de rapport d'erreurs: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Journal des événements: %SystemRoot%\system32\services.exe (autostart) Système d'événements de COM+: C:\WINDOWS\System32\svchost.exe -k netsvcs (manual start) ewido security suite control: C:\Program Files\ewido anti-malware\ewidoctrl.exe (autostart) Compatibilité avec le Changement rapide d'utilisateur: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Pilote de contrôleur de lecteur de disquettes: System32\DRIVERS\fdc.sys (manual start) FltMgr: system32\drivers\fltmgr.sys (system) Pilote du Gestionnaire de volume: System32\DRIVERS\ftdisk.sys (system) Classificateur de paquets générique: System32\DRIVERS\msgpc.sys (manual start) Aide et support: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Accès du périphérique d'interface utilisateur: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled) Pilote de classe HID Microsoft: System32\DRIVERS\hidusb.sys (manual start) IEEE-1284.4 Driver HPZid412: system32\DRIVERS\HPZid412.sys (manual start) Print Class Driver for IEEE-1284.4 HPZipr12: system32\DRIVERS\HPZipr12.sys (manual start) USB to IEEE-1284.4 Translation Driver HPZius12: system32\DRIVERS\HPZius12.sys (manual start) HTTP: System32\Drivers\HTTP.sys (manual start) HTTP SSL: %SystemRoot%\System32\svchost.exe -k HTTPFilter (manual start) Pilote pour clavier i8042 et souris sur port PS/2: System32\DRIVERS\i8042prt.sys (system) ialm: system32\DRIVERS\ialmnt5.sys (manual start) InstallDriver Table Manager: "C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe" (manual start) Pilote de filtre de gravure CD: system32\DRIVERS\imapi.sys (system) Service COM de gravage de CD IMAPI: C:\WINDOWS\System32\imapi.exe (manual start) Pilote de processeur Intel: System32\DRIVERS\intelppm.sys (system) Pilote du pare-feu Windows IPv6: system32\drivers\ip6fw.sys (manual start) Pilote de filtre de trafic IP: System32\DRIVERS\ipfltdrv.sys (manual start) Pilote de tunnelage IP dans IP: System32\DRIVERS\ipinip.sys (manual start) Traducteur d'adresses réseau IP: System32\DRIVERS\ipnat.sys (manual start) Pilote IPSEC: System32\DRIVERS\ipsec.sys (system) Service énumérateur IR: System32\DRIVERS\irenum.sys (manual start) Pilote de bus Plug-and-Play ISA/EISA: System32\DRIVERS\isapnp.sys (system) Pilote de la classe Clavier: System32\DRIVERS\kbdclass.sys (system) Mélangeur audio Wave de noyau Microsoft: system32\drivers\kmixer.sys (manual start) Serveur: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Station de travail: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Logitech HID/USB Mouse Filter Driver: system32\DRIVERS\LHidFlt2.Sys (manual start) Logitech USB Receiver device driver: System32\Drivers\LHidUsb.Sys (manual start) Assistance TCP/IP NetBIOS: %SystemRoot%\System32\svchost.exe -k LocalService (autostart) Logitech Mouse Class Filter Driver: system32\DRIVERS\LMouFlt2.Sys (manual start) Affichage des messages: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled) Partage de Bureau à distance NetMeeting: C:\WINDOWS\System32\mnmsrvc.exe (manual start) Pilote de la classe Souris: System32\DRIVERS\mouclass.sys (system) Pilote HID de souris: System32\DRIVERS\mouhid.sys (manual start) Redirecteur client WebDav: System32\DRIVERS\mrxdav.sys (manual start) MRXSMB: System32\DRIVERS\mrxsmb.sys (system) Distributed Transaction Coordinator: C:\WINDOWS\System32\msdtc.exe (manual start) Windows Installer: C:\WINDOWS\system32\msiexec.exe /V (manual start) Proxy de service de répartition Microsoft: system32\drivers\MSKSSRV.sys (manual start) Proxy d'horloge de répartition Microsoft: system32\drivers\MSPCLOCK.sys (manual start) Proxy de gestion de qualité de répartition Microsoft: system32\drivers\MSPQM.sys (manual start) Pilote BIOS de gestion de systèmes Microsoft: System32\DRIVERS\mssmbios.sys (manual start) Pilote TAPI NDIS d'accès distant: System32\DRIVERS\ndistapi.sys (manual start) NDIS mode utilisateur E/S Protocole: System32\DRIVERS\ndisuio.sys (manual start) Pilote réseau étendu NDIS d'accès distant: System32\DRIVERS\ndiswan.sys (manual start) Interface NetBIOS: System32\DRIVERS\netbios.sys (system) NetBIOS sur TCP/IP: System32\DRIVERS\netbt.sys (system) DDE réseau: %SystemRoot%\system32\netdde.exe (disabled) DSDM DDE réseau: %SystemRoot%\system32\netdde.exe (disabled) Ouverture de session réseau: %SystemRoot%\System32\lsass.exe (manual start) Connexions réseau: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) NLA (Network Location Awareness): %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Fournisseur de la prise en charge de sécurité LM NT: %SystemRoot%\System32\lsass.exe (manual start) Stockage amovible: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start) Pilote de filtre de trafic IPX: System32\DRIVERS\nwlnkflt.sys (manual start) Pilote de transfert de trafic IPX: System32\DRIVERS\nwlnkfwd.sys (manual start) Pilote de port parallèle: System32\DRIVERS\parport.sys (manual start) Pilote de bus PCI: System32\DRIVERS\pci.sys (system) PCIIde: System32\DRIVERS\pciide.sys (system) Pcmcia: System32\DRIVERS\pcmcia.sys (system) Plug-and-Play: %SystemRoot%\system32\services.exe (autostart) Pml Driver HPZ12: C:\WINDOWS\system32\HPZipm12.exe (manual start) Services IPSEC: %SystemRoot%\System32\lsass.exe (autostart) Miniport réseau étendu (PPTP): System32\DRIVERS\raspptp.sys (manual start) Pilote processeur: System32\DRIVERS\processr.sys (system) Emplacement protégé: %SystemRoot%\system32\lsass.exe (autostart) Planificateur de paquets QoS: System32\DRIVERS\psched.sys (manual start) Pilote de liaison parallèle directe: System32\DRIVERS\ptilink.sys (manual start) PxHelp20: system32\DRIVERS\PxHelp20.sys (system) Pilote de connexion automatique d'accès distant: System32\DRIVERS\rasacd.sys (system) Gestionnaire de connexion automatique d'accès distant: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Miniport réseau étendu (L2TP): System32\DRIVERS\rasl2tp.sys (manual start) Gestionnaire de connexions d'accès distant: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Pilote PPPOE d'accès à distance: System32\DRIVERS\raspppoe.sys (manual start) Parallèle direct: System32\DRIVERS\raspti.sys (manual start) Rdbss: System32\DRIVERS\rdbss.sys (system) RDPCDD: System32\DRIVERS\RDPCDD.sys (system) Pilote de redirecteur de périphérique Terminal Server: System32\DRIVERS\rdpdr.sys (manual start) Gestionnaire de session d'aide sur le Bureau à distance: C:\WINDOWS\system32\sessmgr.exe (manual start) Pilote de filtre de lecture digitale de CD audio: System32\DRIVERS\redbook.sys (system) Routage et accès distant: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled) Accès à distance au Registre: %SystemRoot%\system32\svchost.exe -k LocalService (autostart) Localisateur d'appels de procédure distante (RPC): %SystemRoot%\System32\locator.exe (manual start) Appel de procédure distante (RPC): %SystemRoot%\system32\svchost -k rpcss (autostart) QoS RSVP: %SystemRoot%\System32\rsvp.exe (manual start) Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C): System32\DRIVERS\RTL8139.SYS (manual start) Gestionnaire de comptes de sécurité: %SystemRoot%\system32\lsass.exe (autostart) Carte à puce: %SystemRoot%\System32\SCardSvr.exe (manual start) Planificateur de tâches: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Secdrv: System32\DRIVERS\secdrv.sys (manual start) Connexion secondaire: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Notification d'événement système: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Pare-feu Windows / Partage de connexion Internet: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Détection matériel noyau: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Splitter audio du noyau Microsoft: system32\drivers\splitter.sys (manual start) Spouleur d'impression: %SystemRoot%\system32\spoolsv.exe (autostart) Pilote de filtre de restauration système: System32\DRIVERS\sr.sys (system) Service de restauration système: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Srv: System32\DRIVERS\srv.sys (manual start) Service de découvertes SSDP: %SystemRoot%\System32\svchost.exe -k LocalService (manual start) Acquisition d'image Windows (WIA): %SystemRoot%\System32\svchost.exe -k imgsvc (autostart) Pilote de bus logiciel: System32\DRIVERS\swenum.sys (manual start) Synthétiseur de table de sons GC noyau Microsoft: system32\drivers\swmidi.sys (manual start) MS Software Shadow Copy Provider: C:\WINDOWS\System32\dllhost.exe /Processid:{0D002F9B-B92A-40AC-8AB6-33D4E0242327} (manual start) Synaptics TouchPad Driver: system32\DRIVERS\SynTP.sys (manual start) Périphérique audio système du noyau Microsoft: system32\drivers\sysaudio.sys (manual start) Journaux et alertes de performance: %SystemRoot%\system32\smlogsvc.exe (manual start) Téléphonie: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Pilote du protocole TCP/IP: System32\DRIVERS\tcpip.sys (system) Pilote de périphérique terminal: System32\DRIVERS\termdd.sys (system) Services Terminal Server: %SystemRoot%\System32\svchost -k DComLaunch (manual start) Thèmes: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Telnet: C:\WINDOWS\System32\tlntsvr.exe (manual start) Client de suivi de lien distribué: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) TuneUp WinStyler Theme Service: "C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe" (manual start) Windows User Mode Driver Framework: C:\WINDOWS\system32\wdfmgr.exe (autostart) Pilote de mise à jour microcode: System32\DRIVERS\update.sys (manual start) Hôte de périphérique universel Plug-and-Play: %SystemRoot%\System32\svchost.exe -k LocalService (manual start) Onduleur: %SystemRoot%\System32\ups.exe (manual start) Pilote parent générique USB Microsoft: system32\DRIVERS\usbccgp.sys (manual start) Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0: system32\DRIVERS\usbehci.sys (manual start) Concentrateur USB2: System32\DRIVERS\usbhub.sys (manual start) Classe d'imprimantes USB Microsoft: system32\DRIVERS\usbprint.sys (manual start) Pilote de scanneur USB: system32\DRIVERS\usbscan.sys (manual start) Pilote de stockage de masse USB: system32\DRIVERS\USBSTOR.SYS (manual start) Pilote miniport de contrôleur hôte universel USB Microsoft: System32\DRIVERS\usbuhci.sys (manual start) Carte vidéo VGA.: \SystemRoot\System32\drivers\vga.sys (system) vsdatant: System32\vsdatant.sys (system) TrueVector Internet Monitor: C:\WINDOWS\system32\ZoneLabs\vsmon.exe -service (autostart) Cliché instantané de volume: %SystemRoot%\System32\vssvc.exe (manual start) Horloge Windows: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote ARP IP d'accès distant: System32\DRIVERS\wanarp.sys (manual start) Pilote WINMM de compatibilité audio WDM Microsoft: system32\drivers\wdmaud.sys (manual start) WebClient: %SystemRoot%\System32\svchost.exe -k LocalService (autostart) Infrastructure de gestion Windows: %systemroot%\system32\svchost.exe -k netsvcs (autostart) WMDM PMSP Service: C:\WINDOWS\system32\MsPMSPSv.exe (autostart) Service de numéro de série du lecteur multimédia portable: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Extensions du pilote WMI: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Carte de performance WMI: C:\WINDOWS\System32\wbem\wmiapsrv.exe (manual start) Centre de sécurité: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Mises à jour automatiques: %systemRoot%\System32\svchost.exe -k netsvcs (autostart) Configuration automatique sans fil: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Service d'approvisionnement réseau: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Intel® Graphics Platform (SoftBIOS) Driver: system32\drivers\ialmsbw.sys (manual start) Intel® Graphics Chipset (KCH) Driver: system32\drivers\ialmkchw.sys (manual start) -------------------------------------------------- Enumerating Windows NT logon/logoff scripts: *No scripts set to run* Windows NT checkdisk command: BootExecute = autocheck autochk * Windows NT 'Wininit.ini': PendingFileRenameOperations: *Registry value not found* -------------------------------------------------- Enumerating ShellServiceObjectDelayLoad items: PostBootReminder: C:\WINDOWS\system32\SHELL32.dll CDBurn: C:\WINDOWS\system32\SHELL32.dll WebCheck: C:\WINDOWS\System32\webcheck.dll SysTray: C:\WINDOWS\System32\stobject.dll -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run *No values found* -------------------------------------------------- End of report, 34'134 bytes Report generated in 0.951 seconds Command line options: /verbose - to add additional info on each section /complete - to include empty sections and unsuspicious data /full - to include several rarely-important sections /force9x - to include Win9x-only startups even if running on WinNT /forcent - to include WinNT-only startups even if running on Win9x /forceall - to include all Win9x and WinNT startups, regardless of platform /history - to list version history only Merci beaucoup et à plus.

Salut C.Ingals, J'ai fini les scans. Voici celui Ewido : --------------------------------------------------------- ewido anti-malware - Rapport de scan --------------------------------------------------------- + Créé le: 11:51:00, 07.03.2006 + Somme de contrôle: 2D7E5C51 + Résultats du scan: :mozilla.18:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.19:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.20:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder :mozilla.21:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder :mozilla.22:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder :mozilla.43:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder :mozilla.63:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.64:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.65:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.66:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.67:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder :mozilla.77:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Overture : Nettoyer et sauvegarder :mozilla.78:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Overture : Nettoyer et sauvegarder :mozilla.80:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.81:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.82:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.83:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.84:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.85:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.86:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder :mozilla.93:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder :mozilla.98:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.99:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.100:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.101:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder :mozilla.116:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Clickbank : Nettoyer et sauvegarder :mozilla.117:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.125:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.126:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.127:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.128:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.129:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.130:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.131:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.132:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.133:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.134:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.135:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.136:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.137:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.138:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.139:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.140:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.141:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.142:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.143:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.144:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.145:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.146:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.147:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.148:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.149:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.150:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.151:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.152:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.153:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.154:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.155:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.156:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.157:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.158:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.159:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.160:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.161:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.162:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.163:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.164:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.165:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.166:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.167:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.168:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.169:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.170:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.171:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.172:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.173:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.174:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.175:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.176:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.177:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.178:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.179:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.180:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.181:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.182:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.183:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.184:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.185:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.186:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.187:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.188:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.189:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.190:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.191:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.192:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.193:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.194:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.195:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.196:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.197:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.198:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.199:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.200:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.201:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.202:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.203:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.204:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.205:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.206:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.207:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.208:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.209:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.210:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.211:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.212:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.213:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.214:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.215:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.216:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.217:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.218:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.219:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.220:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.221:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.222:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.223:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.226:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Masterstats : Nettoyer et sauvegarder :mozilla.227:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Cqcounter : Nettoyer et sauvegarder :mozilla.228:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Adbrite : Nettoyer et sauvegarder :mozilla.242:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.244:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder :mozilla.250:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder :mozilla.251:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder :mozilla.253:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.254:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.255:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.256:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.257:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder :mozilla.265:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.266:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.268:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.269:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder :mozilla.275:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.276:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.277:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.278:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.279:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.280:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.281:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.282:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder :mozilla.321:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.322:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.323:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.324:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder :mozilla.325:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder :mozilla.331:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.332:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.333:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.334:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder :mozilla.368:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Paycounter : Nettoyer et sauvegarder :mozilla.389:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Adjuggler : Nettoyer et sauvegarder :mozilla.391:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.392:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.393:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder :mozilla.401:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder :mozilla.438:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder :mozilla.439:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder :mozilla.440:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder :mozilla.441:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder :mozilla.442:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder :mozilla.493:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Adengage : Nettoyer et sauvegarder :mozilla.494:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Adengage : Nettoyer et sauvegarder :mozilla.495:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Adengage : Nettoyer et sauvegarder :mozilla.516:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder :mozilla.517:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder :mozilla.520:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.521:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.522:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder :mozilla.557:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder :mozilla.568:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder :mozilla.569:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder :mozilla.576:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder :mozilla.577:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder :mozilla.584:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder :mozilla.585:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder :mozilla.588:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder :mozilla.589:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder :mozilla.601:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder :mozilla.602:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder :mozilla.613:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder :mozilla.614:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder :mozilla.615:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder :mozilla.616:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder :mozilla.629:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Yadro : Nettoyer et sauvegarder :mozilla.630:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Yadro : Nettoyer et sauvegarder :mozilla.634:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Realtracker : Nettoyer et sauvegarder :mozilla.635:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Realtracker : Nettoyer et sauvegarder :mozilla.638:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.642:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\jsogx0bh.Utilisateur par défaut\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder :mozilla.32:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.33:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.34:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.35:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.36:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.37:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.38:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.39:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.40:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.41:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.42:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.43:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.44:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.45:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.46:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.47:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.48:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.49:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.50:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.51:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.52:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexlist : Nettoyer et sauvegarder :mozilla.53:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.54:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.55:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.56:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.57:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.58:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.59:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.60:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.61:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.62:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.63:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.64:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.65:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.66:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.67:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.68:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.69:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.70:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.71:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.72:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.73:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.74:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.75:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.76:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.77:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.78:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.79:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.80:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.81:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.82:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.83:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.84:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.85:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.86:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.87:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.88:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.89:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.90:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.91:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.92:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.93:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.94:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.95:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder :mozilla.156:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Xxxcounter : Nettoyer et sauvegarder :mozilla.158:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Xxxcounter : Nettoyer et sauvegarder :mozilla.159:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Xxxcounter : Nettoyer et sauvegarder :mozilla.160:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Xxxcounter : Nettoyer et sauvegarder :mozilla.161:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Xxxcounter : Nettoyer et sauvegarder :mozilla.162:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Xxxcounter : Nettoyer et sauvegarder :mozilla.163:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Xxxcounter : Nettoyer et sauvegarder :mozilla.164:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder :mozilla.165:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder :mozilla.166:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder :mozilla.167:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder :mozilla.168:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder :mozilla.169:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder :mozilla.170:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder :mozilla.171:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder :mozilla.172:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder :mozilla.173:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder :mozilla.174:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder :mozilla.175:C:\Documents and Settings\Olivier\Application Data\Mozilla\Firefox\Profiles\n972oxpi.default\cookies.txt

Bonjour à tous et à toi C.Ingalls Concernant Kasperky, c'est vraiment bizarre, la demo fonctionne avec Mozilla mais pas avec IE Par contre je ne peux pas faire d'analyse ni avec l'un ni avec l'autre. Avec Mozilla, je ne peux meme pas accepter la charte, tandis qu'avec IE lors du télechargement de active X, il me mets sur la page d'aide et je ne peux plus rien faire à part fermer. Bizarre, bizarre!! Voila mon dernier rapport Hijackthis : StartupList report, 06.03.2006, 18:39:54 StartupList version: 1.52.2 Started from : C:\Documents and Settings\Olivier\Bureau\HijackThis.EXE Detected: Windows XP SP2 (WinNT 5.01.2600) Detected: Internet Explorer v6.00 SP2 (6.00.2900.2180) * Using default options * Including empty and uninteresting sections * Showing rarely important sections ================================================== Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe C:\Program Files\ltmoh\Ltmoh.exe C:\WINDOWS\AGRSMMSG.exe C:\program files\mailskinner\mailskinner.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Logitech\MouseWare\system\em_exec.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\WINDOWS\system32\cisvc.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\MsPMSPSv.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Documents and Settings\Olivier\Bureau\HijackThis.exe C:\Program Files\Alwil Software\Avast4\setup\avast.setup -------------------------------------------------- Listing of startup folders: Shell folders Startup: [C:\Documents and Settings\Olivier\Menu Démarrer\Programmes\Démarrage] *No files* Shell folders AltStartup: *Folder not found* User shell folders Startup: *Folder not found* User shell folders AltStartup: *Folder not found* Shell folders Common Startup: [C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage] Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe Shell folders Common AltStartup: *Folder not found* User shell folders Common Startup: *Folder not found* User shell folders Alternate Common Startup: *Folder not found* -------------------------------------------------- Checking Windows NT UserInit: [HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] UserInit = C:\WINDOWS\system32\userinit.exe, [HKLM\Software\Microsoft\Windows\CurrentVersion\Winlogon] *Registry key not found* [HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] *Registry value not found* [HKCU\Software\Microsoft\Windows\CurrentVersion\Winlogon] *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run IgfxTray = C:\WINDOWS\system32\igfxtray.exe HotKeysCmds = C:\WINDOWS\system32\hkcmd.exe avast! = C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe Zone Labs Client = C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe Logitech Utility = Logi_MwX.Exe QuickTime Task = "C:\Program Files\QuickTime\qttask.exe" -atboottime TkBellExe = "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot SynTPLpr = C:\Program Files\Synaptics\SynTP\SynTPLpr.exe SynTPEnh = C:\Program Files\Synaptics\SynTP\SynTPEnh.exe SunJavaUpdateSched = C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe RoxioEngineUtility = "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe" RoxioDragToDisc = "C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe" RoxioAudioCentral = "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe" NeroFilterCheck = C:\WINDOWS\system32\NeroCheck.exe LtMoh = C:\Program Files\ltmoh\Ltmoh.exe AGRSMMSG = AGRSMMSG.exe -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\Run MailSkinner = c:\program files\mailskinner\mailskinner.exe LDM = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe SP2 Connection Patcher = "C:\Program Files\SP2 Connection Patcher\SP2ConnPatcher.exe" -n=200 DATA INTRA = C:\DOCUME~1\Olivier\APPLIC~1\FASTSH~1\Soap eggs.exe -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce *No values found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\Run [OptionalComponents] *No values found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\Run *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- File association entry for .EXE: HKEY_CLASSES_ROOT\exefile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .COM: HKEY_CLASSES_ROOT\comfile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .BAT: HKEY_CLASSES_ROOT\batfile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .PIF: HKEY_CLASSES_ROOT\piffile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .SCR: HKEY_CLASSES_ROOT\scrfile\shell\open\command (Default) = "%1" /S -------------------------------------------------- File association entry for .HTA: HKEY_CLASSES_ROOT\htafile\shell\open\command (Default) = C:\WINDOWS\System32\mshta.exe "%1" %* -------------------------------------------------- File association entry for .TXT: HKEY_CLASSES_ROOT\txtfile\shell\open\command (Default) = %SystemRoot%\system32\NOTEPAD.EXE %1 -------------------------------------------------- Enumerating Active Setup stub paths: HKLM\Software\Microsoft\Active Setup\Installed Components (* = disabled by HKCU twin) [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] StubPath = C:\WINDOWS\inf\unregmp2.exe /ShowWMP [>{26923b43-4d38-484f-9b9e-de460746276c}] * StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE [>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] * StubPath = RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP [>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] * StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE [{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] * StubPath = %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] * StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install [{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT [{5945c046-1e7d-11d1-bc44-00c04fd912be}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub [{7790769C-0471-11d2-AF11-00C04FA35D02}] * StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install [{89820200-ECBD-11cf-8B85-00AA005B4340}] * StubPath = regsvr32.exe /s /n /i:U shell32.dll [{89820200-ECBD-11cf-8B85-00AA005B4383}] * StubPath = %SystemRoot%\system32\ie4uinit.exe -------------------------------------------------- Enumerating ICQ Agent Autostart apps: HKCU\Software\Mirabilis\ICQ\Agent\Apps *Registry key not found* -------------------------------------------------- Load/Run keys from C:\WINDOWS\WIN.INI: load=*INI section not found* run=*INI section not found* Load/Run keys from Registry: HKLM\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found* HKLM\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found* HKLM\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found* HKCU\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found* HKCU\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found* HKCU\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found* HKCU\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found* HKCU\..\Windows NT\CurrentVersion\Windows: load= HKCU\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: load=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: AppInit_DLLs= -------------------------------------------------- Shell & screensaver key from C:\WINDOWS\SYSTEM.INI: Shell=*INI section not found* SCRNSAVE.EXE=*INI section not found* drivers=*INI section not found* Shell & screensaver key from Registry: Shell=Explorer.exe SCRNSAVE.EXE=C:\WINDOWS\System32\logon.scr drivers=*Registry value not found* Policies Shell key: HKCU\..\Policies: Shell=*Registry value not found* HKLM\..\Policies: Shell=*Registry value not found* -------------------------------------------------- Checking for EXPLORER.EXE instances: C:\WINDOWS\Explorer.exe: PRESENT! C:\Explorer.exe: not present C:\WINDOWS\Explorer\Explorer.exe: not present C:\WINDOWS\System\Explorer.exe: not present C:\WINDOWS\System32\Explorer.exe: not present C:\WINDOWS\Command\Explorer.exe: not present C:\WINDOWS\Fonts\Explorer.exe: not present -------------------------------------------------- Checking for superhidden extensions: .lnk: HIDDEN! (arrow overlay: yes) .pif: HIDDEN! (arrow overlay: yes) .exe: not hidden .com: not hidden .bat: not hidden .hta: not hidden .scr: not hidden .shs: HIDDEN! .shb: HIDDEN! .vbs: not hidden .vbe: not hidden .wsh: not hidden .scf: HIDDEN! (arrow overlay: NO!) .url: HIDDEN! (arrow overlay: yes) .js: not hidden .jse: not hidden -------------------------------------------------- Verifying REGEDIT.EXE integrity: - Regedit.exe found in C:\WINDOWS - .reg open command is normal (regedit.exe %1) - Regedit.exe has no CompanyName property! It is either missing or named something else. - Regedit.exe has no OriginalFilename property! It is either missing or named something else. - Regedit.exe has no FileDescription property! It is either missing or named something else. Registry check failed! -------------------------------------------------- Enumerating Browser Helper Objects: (no name) - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (no name) - C:\WINDOWS\DOWNLO~1\bluewin.dll - {4E7BD74F-2B8D-469E-DCF7-E869A199B87D} -------------------------------------------------- Enumerating Task Scheduler jobs: 1-Click Maintenance.job AA53D7459184523D.job FRU Task #Hewlett-Packard#hp psc 1100 series#1117101806.job -------------------------------------------------- Enumerating Download Program Files: [Java Plug-in 1.5.0_04] InProcServer32 = C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll CODEBASE = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab [shockwave Flash Object] InProcServer32 = C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx CODEBASE = http://download.macromedia.com/pub/shockwa...ash/swflash.cab -------------------------------------------------- Enumerating Winsock LSP files: NameSpace #1: C:\WINDOWS\System32\mswsock.dll NameSpace #2: C:\WINDOWS\System32\winrnr.dll NameSpace #3: C:\WINDOWS\System32\mswsock.dll Protocol #1: C:\WINDOWS\system32\mswsock.dll Protocol #2: C:\WINDOWS\system32\mswsock.dll Protocol #3: C:\WINDOWS\system32\mswsock.dll Protocol #4: C:\WINDOWS\system32\rsvpsp.dll Protocol #5: C:\WINDOWS\system32\rsvpsp.dll Protocol #6: C:\WINDOWS\system32\mswsock.dll Protocol #7: C:\WINDOWS\system32\mswsock.dll Protocol #8: C:\WINDOWS\system32\mswsock.dll Protocol #9: C:\WINDOWS\system32\mswsock.dll Protocol #10: C:\WINDOWS\system32\mswsock.dll Protocol #11: C:\WINDOWS\system32\mswsock.dll -------------------------------------------------- Enumerating Windows NT/2000/XP services Pilote ACPI Microsoft: System32\DRIVERS\ACPI.sys (system) Pilote de contrôleur intégré Microsoft: System32\DRIVERS\ACPIEC.sys (system) Suppresseur d'écho acoustique (Noyau Microsoft): system32\drivers\aec.sys (manual start) Environnement de prise en charge de réseau AFD: \SystemRoot\System32\drivers\afd.sys (system) Agere Systems Soft Modem: system32\DRIVERS\AGRSM.sys (manual start) Avertissement: %SystemRoot%\System32\svchost.exe -k LocalService (disabled) Service de la passerelle de la couche Application: %SystemRoot%\System32\alg.exe (manual start) Gestion d'applications: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start) avast! iAVS4 Control Service: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe" (autostart) Pilote de média asynchrone RAS: System32\DRIVERS\asyncmac.sys (manual start) Contrôleur de disque dur IDE/ESDI standard: System32\DRIVERS\atapi.sys (system) Protocole client ATM ARP: System32\DRIVERS\atmarpc.sys (manual start) Audio Windows: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote audio Stub: System32\DRIVERS\audstub.sys (manual start) avast! Antivirus: "C:\Program Files\Alwil Software\Avast4\ashServ.exe" (autostart) avast! Mail Scanner: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (manual start) avast! Web Scanner: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (manual start) Service de transfert intelligent en arrière-plan: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Explorateur d'ordinateur: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) C-DillaCdaC11BA: C:\WINDOWS\system32\drivers\CDAC11BA.EXE (autostart) CdaC15BA: \??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS (autostart) Pilote de CD-ROM: System32\DRIVERS\cdrom.sys (system) Service d'indexation: C:\WINDOWS\system32\cisvc.exe (autostart) Gestionnaire de l'Album: %SystemRoot%\system32\clipsrv.exe (disabled) Pilote d'adaptateur secteur Microsoft: System32\DRIVERS\CmBatt.sys (manual start) Pilote de batterie composite Microsoft: System32\DRIVERS\compbatt.sys (system) Application système COM+: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} (manual start) Services de cryptographie: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Cirrus Logic WDM Audio Codec Driver: system32\drivers\cwawdm.sys (manual start) Lanceur de processus serveur DCOM: %SystemRoot%\system32\svchost -k DcomLaunch (autostart) Client DHCP: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote de disque: System32\DRIVERS\disk.sys (system) Service d'administration du Gestionnaire de disque logique: %SystemRoot%\System32\dmadmin.exe /com (manual start) dmboot: System32\drivers\dmboot.sys (disabled) Pilote de Gestionnaire de disque logique: System32\drivers\dmio.sys (system) dmload: System32\drivers\dmload.sys (system) Gestionnaire de disque logique: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Synthétiseur DLS du noyau Microsoft: system32\drivers\DMusic.sys (manual start) Client DNS: %SystemRoot%\System32\svchost.exe -k NetworkService (autostart) Filtre de décodeur DRM (Noyau Microsoft): system32\drivers\drmkaud.sys (manual start) Service de rapport d'erreurs: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Journal des événements: %SystemRoot%\system32\services.exe (autostart) Système d'événements de COM+: C:\WINDOWS\System32\svchost.exe -k netsvcs (manual start) Compatibilité avec le Changement rapide d'utilisateur: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Pilote de contrôleur de lecteur de disquettes: System32\DRIVERS\fdc.sys (manual start) FltMgr: system32\drivers\fltmgr.sys (system) Pilote du Gestionnaire de volume: System32\DRIVERS\ftdisk.sys (system) Classificateur de paquets générique: System32\DRIVERS\msgpc.sys (manual start) Aide et support: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Accès du périphérique d'interface utilisateur: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled) Pilote de classe HID Microsoft: System32\DRIVERS\hidusb.sys (manual start) IEEE-1284.4 Driver HPZid412: system32\DRIVERS\HPZid412.sys (manual start) Print Class Driver for IEEE-1284.4 HPZipr12: system32\DRIVERS\HPZipr12.sys (manual start) USB to IEEE-1284.4 Translation Driver HPZius12: system32\DRIVERS\HPZius12.sys (manual start) HTTP: System32\Drivers\HTTP.sys (manual start) HTTP SSL: %SystemRoot%\System32\svchost.exe -k HTTPFilter (manual start) Pilote pour clavier i8042 et souris sur port PS/2: System32\DRIVERS\i8042prt.sys (system) ialm: system32\DRIVERS\ialmnt5.sys (manual start) InstallDriver Table Manager: "C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe" (manual start) Pilote de filtre de gravure CD: system32\DRIVERS\imapi.sys (system) Service COM de gravage de CD IMAPI: C:\WINDOWS\System32\imapi.exe (manual start) Pilote de processeur Intel: System32\DRIVERS\intelppm.sys (system) Pilote du pare-feu Windows IPv6: system32\drivers\ip6fw.sys (manual start) Pilote de filtre de trafic IP: System32\DRIVERS\ipfltdrv.sys (manual start) Pilote de tunnelage IP dans IP: System32\DRIVERS\ipinip.sys (manual start) Traducteur d'adresses réseau IP: System32\DRIVERS\ipnat.sys (manual start) Pilote IPSEC: System32\DRIVERS\ipsec.sys (system) Service énumérateur IR: System32\DRIVERS\irenum.sys (manual start) Pilote de bus Plug-and-Play ISA/EISA: System32\DRIVERS\isapnp.sys (system) Pilote de la classe Clavier: System32\DRIVERS\kbdclass.sys (system) Mélangeur audio Wave de noyau Microsoft: system32\drivers\kmixer.sys (manual start) Serveur: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Station de travail: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Logitech HID/USB Mouse Filter Driver: system32\DRIVERS\LHidFlt2.Sys (manual start) Logitech USB Receiver device driver: System32\Drivers\LHidUsb.Sys (manual start) Assistance TCP/IP NetBIOS: %SystemRoot%\System32\svchost.exe -k LocalService (autostart) Logitech Mouse Class Filter Driver: system32\DRIVERS\LMouFlt2.Sys (manual start) Affichage des messages: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled) Partage de Bureau à distance NetMeeting: C:\WINDOWS\System32\mnmsrvc.exe (manual start) Pilote de la classe Souris: System32\DRIVERS\mouclass.sys (system) Pilote HID de souris: System32\DRIVERS\mouhid.sys (manual start) Redirecteur client WebDav: System32\DRIVERS\mrxdav.sys (manual start) MRXSMB: System32\DRIVERS\mrxsmb.sys (system) Distributed Transaction Coordinator: C:\WINDOWS\System32\msdtc.exe (manual start) Windows Installer: C:\WINDOWS\system32\msiexec.exe /V (manual start) Proxy de service de répartition Microsoft: system32\drivers\MSKSSRV.sys (manual start) Proxy d'horloge de répartition Microsoft: system32\drivers\MSPCLOCK.sys (manual start) Proxy de gestion de qualité de répartition Microsoft: system32\drivers\MSPQM.sys (manual start) Pilote BIOS de gestion de systèmes Microsoft: System32\DRIVERS\mssmbios.sys (manual start) Pilote TAPI NDIS d'accès distant: System32\DRIVERS\ndistapi.sys (manual start) NDIS mode utilisateur E/S Protocole: System32\DRIVERS\ndisuio.sys (manual start) Pilote réseau étendu NDIS d'accès distant: System32\DRIVERS\ndiswan.sys (manual start) Interface NetBIOS: System32\DRIVERS\netbios.sys (system) NetBIOS sur TCP/IP: System32\DRIVERS\netbt.sys (system) DDE réseau: %SystemRoot%\system32\netdde.exe (disabled) DSDM DDE réseau: %SystemRoot%\system32\netdde.exe (disabled) Ouverture de session réseau: %SystemRoot%\System32\lsass.exe (manual start) Connexions réseau: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) NLA (Network Location Awareness): %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Fournisseur de la prise en charge de sécurité LM NT: %SystemRoot%\System32\lsass.exe (manual start) Stockage amovible: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start) Pilote de filtre de trafic IPX: System32\DRIVERS\nwlnkflt.sys (manual start) Pilote de transfert de trafic IPX: System32\DRIVERS\nwlnkfwd.sys (manual start) Pilote de port parallèle: System32\DRIVERS\parport.sys (manual start) Pilote de bus PCI: System32\DRIVERS\pci.sys (system) PCIIde: System32\DRIVERS\pciide.sys (system) Pcmcia: System32\DRIVERS\pcmcia.sys (system) Plug-and-Play: %SystemRoot%\system32\services.exe (autostart) Pml Driver HPZ12: C:\WINDOWS\system32\HPZipm12.exe (manual start) Services IPSEC: %SystemRoot%\System32\lsass.exe (autostart) Miniport réseau étendu (PPTP): System32\DRIVERS\raspptp.sys (manual start) Pilote processeur: System32\DRIVERS\processr.sys (system) Emplacement protégé: %SystemRoot%\system32\lsass.exe (autostart) Planificateur de paquets QoS: System32\DRIVERS\psched.sys (manual start) Pilote de liaison parallèle directe: System32\DRIVERS\ptilink.sys (manual start) PxHelp20: system32\DRIVERS\PxHelp20.sys (system) Pilote de connexion automatique d'accès distant: System32\DRIVERS\rasacd.sys (system) Gestionnaire de connexion automatique d'accès distant: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Miniport réseau étendu (L2TP): System32\DRIVERS\rasl2tp.sys (manual start) Gestionnaire de connexions d'accès distant: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Pilote PPPOE d'accès à distance: System32\DRIVERS\raspppoe.sys (manual start) Parallèle direct: System32\DRIVERS\raspti.sys (manual start) Rdbss: System32\DRIVERS\rdbss.sys (system) RDPCDD: System32\DRIVERS\RDPCDD.sys (system) Pilote de redirecteur de périphérique Terminal Server: System32\DRIVERS\rdpdr.sys (manual start) Gestionnaire de session d'aide sur le Bureau à distance: C:\WINDOWS\system32\sessmgr.exe (manual start) Pilote de filtre de lecture digitale de CD audio: System32\DRIVERS\redbook.sys (system) Routage et accès distant: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled) Accès à distance au Registre: %SystemRoot%\system32\svchost.exe -k LocalService (autostart) Localisateur d'appels de procédure distante (RPC): %SystemRoot%\System32\locator.exe (manual start) Appel de procédure distante (RPC): %SystemRoot%\system32\svchost -k rpcss (autostart) QoS RSVP: %SystemRoot%\System32\rsvp.exe (manual start) Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C): System32\DRIVERS\RTL8139.SYS (manual start) Gestionnaire de comptes de sécurité: %SystemRoot%\system32\lsass.exe (autostart) Carte à puce: %SystemRoot%\System32\SCardSvr.exe (manual start) Planificateur de tâches: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Secdrv: System32\DRIVERS\secdrv.sys (manual start) Connexion secondaire: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Notification d'événement système: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) Pare-feu Windows / Partage de connexion Internet: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Détection matériel noyau: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Splitter audio du noyau Microsoft: system32\drivers\splitter.sys (manual start) Spouleur d'impression: %SystemRoot%\system32\spoolsv.exe (autostart) Pilote de filtre de restauration système: System32\DRIVERS\sr.sys (system) Service de restauration système: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Srv: System32\DRIVERS\srv.sys (manual start) Service de découvertes SSDP: %SystemRoot%\System32\svchost.exe -k LocalService (manual start) Acquisition d'image Windows (WIA): %SystemRoot%\System32\svchost.exe -k imgsvc (autostart) Pilote de bus logiciel: System32\DRIVERS\swenum.sys (manual start) Synthétiseur de table de sons GC noyau Microsoft: system32\drivers\swmidi.sys (manual start) MS Software Shadow Copy Provider: C:\WINDOWS\System32\dllhost.exe /Processid:{0D002F9B-B92A-40AC-8AB6-33D4E0242327} (manual start) Synaptics TouchPad Driver: system32\DRIVERS\SynTP.sys (manual start) Périphérique audio système du noyau Microsoft: system32\drivers\sysaudio.sys (manual start) Journaux et alertes de performance: %SystemRoot%\system32\smlogsvc.exe (manual start) Téléphonie: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Pilote du protocole TCP/IP: System32\DRIVERS\tcpip.sys (system) Pilote de périphérique terminal: System32\DRIVERS\termdd.sys (system) Services Terminal Server: %SystemRoot%\System32\svchost -k DComLaunch (manual start) Thèmes: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Telnet: C:\WINDOWS\System32\tlntsvr.exe (manual start) Client de suivi de lien distribué: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart) TuneUp WinStyler Theme Service: "C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe" (manual start) Windows User Mode Driver Framework: C:\WINDOWS\system32\wdfmgr.exe (autostart) Pilote de mise à jour microcode: System32\DRIVERS\update.sys (manual start) Hôte de périphérique universel Plug-and-Play: %SystemRoot%\System32\svchost.exe -k LocalService (manual start) Onduleur: %SystemRoot%\System32\ups.exe (manual start) Pilote parent générique USB Microsoft: system32\DRIVERS\usbccgp.sys (manual start) Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0: system32\DRIVERS\usbehci.sys (manual start) Concentrateur USB2: System32\DRIVERS\usbhub.sys (manual start) Classe d'imprimantes USB Microsoft: system32\DRIVERS\usbprint.sys (manual start) Pilote de scanneur USB: system32\DRIVERS\usbscan.sys (manual start) Pilote de stockage de masse USB: system32\DRIVERS\USBSTOR.SYS (manual start) Pilote miniport de contrôleur hôte universel USB Microsoft: System32\DRIVERS\usbuhci.sys (manual start) Carte vidéo VGA.: \SystemRoot\System32\drivers\vga.sys (system) vsdatant: System32\vsdatant.sys (system) TrueVector Internet Monitor: C:\WINDOWS\system32\ZoneLabs\vsmon.exe -service (autostart) Cliché instantané de volume: %SystemRoot%\System32\vssvc.exe (manual start) Horloge Windows: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Pilote ARP IP d'accès distant: System32\DRIVERS\wanarp.sys (manual start) Pilote WINMM de compatibilité audio WDM Microsoft: system32\drivers\wdmaud.sys (manual start) WebClient: %SystemRoot%\System32\svchost.exe -k LocalService (autostart) Infrastructure de gestion Windows: %systemroot%\system32\svchost.exe -k netsvcs (autostart) WMDM PMSP Service: C:\WINDOWS\system32\MsPMSPSv.exe (autostart) Service de numéro de série du lecteur multimédia portable: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Extensions du pilote WMI: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Carte de performance WMI: C:\WINDOWS\System32\wbem\wmiapsrv.exe (manual start) Centre de sécurité: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Mises à jour automatiques: %systemRoot%\System32\svchost.exe -k netsvcs (autostart) Configuration automatique sans fil: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart) Service d'approvisionnement réseau: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start) Intel® Graphics Platform (SoftBIOS) Driver: system32\drivers\ialmsbw.sys (manual start) Intel® Graphics Chipset (KCH) Driver: system32\drivers\ialmkchw.sys (manual start) -------------------------------------------------- Enumerating Windows NT logon/logoff scripts: *No scripts set to run* Windows NT checkdisk command: BootExecute = autocheck autochk * Windows NT 'Wininit.ini': PendingFileRenameOperations: *Registry value not found* -------------------------------------------------- Enumerating ShellServiceObjectDelayLoad items: PostBootReminder: C:\WINDOWS\system32\SHELL32.dll CDBurn: C:\WINDOWS\system32\SHELL32.dll WebCheck: C:\WINDOWS\System32\webcheck.dll SysTray: C:\WINDOWS\System32\stobject.dll -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run *No values found* -------------------------------------------------- End of report, 34'090 bytes Report generated in 2.985 seconds Command line options: /verbose - to add additional info on each section /complete - to include empty sections and unsuspicious data /full - to include several rarely-important sections /force9x - to include Win9x-only startups even if running on WinNT /forcent - to include WinNT-only startups even if running on Win9x /forceall - to include all Win9x and WinNT startups, regardless of platform /history - to list version history only StartupList report, 06.03.2006, 18:39:54 StartupList version: 1.52.2 Started from : C:\Documents and Settings\Olivier\Bureau\HijackThis.EXE Detected: Windows XP SP2 (WinNT 5.01.2600) Detected: Internet Explorer v6.00 SP2 (6.00.2900.2180) * Using default options * Including empty and uninteresting sections * Showing rarely important sections ================================================== Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe C:\Program Files\ltmoh\Ltmoh.exe C:\WINDOWS\AGRSMMSG.exe C:\program files\mailskinner\mailskinner.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Logitech\MouseWare\system\em_exec.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\WINDOWS\system32\cisvc.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\MsPMSPSv.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Documents and Settings\Olivier\Bureau\HijackThis.exe C:\Program Files\Alwil Software\Avast4\setup\avast.setup -------------------------------------------------- Listing of startup folders: Shell folders Startup: [C:\Documents and Settings\Olivier\Menu Démarrer\Programmes\Démarrage] *No files* Shell folders AltStartup: *Folder not found* User shell folders Startup: *Folder not found* User shell folders AltStartup: *Folder not found* Shell folders Common Startup: [C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage] Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe Shell folders Common AltStartup: *Folder not found* User shell folders Common Startup: *Folder not found* User shell folders Alternate Common Startup: *Folder not found* -------------------------------------------------- Checking Windows NT UserInit: [HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] UserInit = C:\WINDOWS\system32\userinit.exe, [HKLM\Software\Microsoft\Windows\CurrentVersion\Winlogon] *Registry key not found* [HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] *Registry value not found* [HKCU\Software\Microsoft\Windows\CurrentVersion\Winlogon] *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run IgfxTray = C:\WINDOWS\system32\igfxtray.exe HotKeysCmds = C:\WINDOWS\system32\hkcmd.exe avast! = C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe Zone Labs Client = C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe Logitech Utility = Logi_MwX.Exe QuickTime Task = "C:\Program Files\QuickTime\qttask.exe" -atboottime TkBellExe = "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot SynTPLpr = C:\Program Files\Synaptics\SynTP\SynTPLpr.exe SynTPEnh = C:\Program Files\Synaptics\SynTP\SynTPEnh.exe SunJavaUpdateSched = C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe RoxioEngineUtility = "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe" RoxioDragToDisc = "C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe" RoxioAudioCentral = "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe" NeroFilterCheck = C:\WINDOWS\system32\NeroCheck.exe LtMoh = C:\Program Files\ltmoh\Ltmoh.exe AGRSMMSG = AGRSMMSG.exe -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices *No values found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\Run MailSkinner = c:\program files\mailskinner\mailskinner.exe LDM = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe SP2 Connection Patcher = "C:\Program Files\SP2 Connection Patcher\SP2ConnPatcher.exe" -n=200 DATA INTRA = C:\DOCUME~1\Olivier\APPLIC~1\FASTSH~1\Soap eggs.exe -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce *No values found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\Run [OptionalComponents] *No values found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\Run *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce *No subkeys found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run *Registry key not found* -------------------------------------------------- File association entry for .EXE: HKEY_CLASSES_ROOT\exefile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .COM: HKEY_CLASSES_ROOT\comfile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .BAT: HKEY_CLASSES_ROOT\batfile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .PIF: HKEY_CLASSES_ROOT\piffile\shell\open\command (Default) = "%1" %* -------------------------------------------------- File association entry for .SCR: HKEY_CLASSES_ROOT\scrfile\shell\open\command (Default) = "%1" /S -------------------------------------------------- File association entry for .HTA: HKEY_CLASSES_ROOT\htafile\shell\open\command (Default) = C:\WINDOWS\System32\mshta.exe "%1" %* -------------------------------------------------- File association entry for .TXT: HKEY_CLASSES_ROOT\txtfile\shell\open\command (Default) = %SystemRoot%\system32\NOTEPAD.EXE %1 -------------------------------------------------- Enumerating Active Setup stub paths: HKLM\Software\Microsoft\Active Setup\Installed Components (* = disabled by HKCU twin) [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] StubPath = C:\WINDOWS\inf\unregmp2.exe /ShowWMP [>{26923b43-4d38-484f-9b9e-de460746276c}] * StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE [>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] * StubPath = RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP [>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] * StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE [{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] * StubPath = %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] * StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install [{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT [{5945c046-1e7d-11d1-bc44-00c04fd912be}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] * StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub [{7790769C-0471-11d2-AF11-00C04FA35D02}] * StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install [{89820200-ECBD-11cf-8B85-00AA005B4340}] * StubPath = regsvr32.exe /s /n /i:U shell32.dll [{89820200-ECBD-11cf-8B85-00AA005B4383}] * StubPath = %SystemRoot%\system32\ie4uinit.exe -------------------------------------------------- Enumerating ICQ Agent Autostart apps: HKCU\Software\Mirabilis\ICQ\Agent\Apps *Registry key not found* -------------------------------------------------- Load/Run keys from C:\WINDOWS\WIN.INI: load=*INI section not found* run=*INI section not found* Load/Run keys from Registry: HKLM\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found* HKLM\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found* HKLM\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found* HKCU\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found* HKCU\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found* HKCU\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found* HKCU\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found* HKCU\..\Windows NT\CurrentVersion\Windows: load= HKCU\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: load=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found* HKLM\..\Windows NT\CurrentVersion\Windows: AppInit_DLLs= -------------------------------------------------- Shell & screensaver key from C:\WINDOWS\SYSTEM.INI: Shell=*INI section not found* SCRNSAVE.EXE=*INI section not found* drivers=*INI section not found* Shell & screensaver key from Registry: Shell=Explorer.exe SCRNSAVE.EXE=C:\WINDOWS\System32\logon.scr drivers=*Registry value not found* Policies Shell key: HKCU\..\Policies: Shell=*Registry value not found* HKLM\..\Policies: Shell=*Registry value not found* -------------------------------------------------- Checking for EXPLORER.EXE instances: C:\WINDOWS\Explorer.exe: PRESENT! C:\Explorer.exe: not present C:\WINDOWS\Explorer\Explorer.exe: not present C:\WINDOWS\System\Explorer.exe: not present C:\WINDOWS\System32\Explorer.exe: not present C:\WINDOWS\Command\Explorer.exe: not present C:\WINDOWS\Fonts\Explorer.exe: not present -------------------------------------------------- Checking for superhidden extensions: .lnk: HIDDEN! (arrow overlay: yes) .pif: HIDDEN! (arrow overlay: yes) .exe: not hidden .com: not hidden .bat: not hidden .hta: not hidden .scr: not hidden .shs: HIDDEN! .shb: HIDDEN! .vbs: not hidden .vbe: not hidden .wsh: not hidden .scf: HIDDEN! (arrow overlay: NO!) .url: HIDDEN! (arrow overlay: yes) .js: not hidden .jse: not hidden -------------------------------------------------- Verifying REGEDIT.EXE integrity: - Regedit.exe found in C:\WINDOWS - .reg open command is normal (regedit.exe %1) - Regedit.exe has no CompanyName property! It is either missing or named something else. - Regedit.exe has no OriginalFilename property! It is either missing or named something else. - Regedit.exe has no FileDescription property! It is either missing or named something else. Registry check failed! -------------------------------------------------- Enumerating Browser Helper Objects: (no name) - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (no name) - C:\WINDOWS\DOWNLO~1\bluewin.dll - {4E7BD74F-2B8D-469E-DCF7-E869A199B87D} -------------------------------------------------- Enumerating Task Scheduler jobs: 1-Click Maintenance.job AA53D7459184523D.job FRU Task #Hewlett-Packard#hp psc 1100 series#1117101806.job -------------------------------------------------- Enumerating Download Program Files: [Java Plug-in 1.5.0_04] InProcServer32 = C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll CODEBASE = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab [shockwave Flash Object] InProcServer32 = C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx CODEBASE = http://download.macromedia.com/pub/shockwa...ash/swflash.cab -------------------------------------------------- Enumerating Winsock LSP files: NameSpace #1: C:\WINDOWS\System32\mswsock.dll NameSpace #2: C:\WINDOWS\System32\winrnr.dll NameSpace #3: C:\WINDOWS\System32\mswsock.dll Protocol #1: C:\WINDOWS\system32\mswsock.dll Protocol #2: C:\WINDOWS\system32\mswsock.dll Protocol #3: C:\WINDOWS\system32\mswsock.dll Protocol #4: C:\WINDOWS\system32\rsvpsp.dll Protocol #5: C:\WINDOWS\system32\rsvpsp.dll Protocol #6: C:\WINDOWS\system32\mswsock.dll Protocol #7: C:\WINDOWS\system32\mswsock.dll Protocol #8: C:\WINDOWS\system32\mswsock.dll Protocol #9: C:\WINDOWS\system32\mswsock.dll Protocol #10: C:\WINDOWS\system32\mswsock.dll Protocol #11: C:\WINDOWS\system32\mswsock.dll -------------------------------------------------- Enumerating Windows NT/2000/XP services Pilote ACPI Microsoft: System32\DRIVERS\ACPI.sys (system) Pilote de contrôleur intégré Microsoft: System32\DRIVERS\ACPIEC.sys (system) Suppresseur d'écho acoustique (Noyau Microsoft): system32\drivers\aec.sys (manual start) Environnement de prise en charge de réseau AFD: \SystemRoot\System32\drivers\afd.sys (system) Agere Systems Soft Modem: system32\DRIVERS\AGRSM.sys (manual

Tcho, Voila le rapport, J'ai un fichier backups qui s'est installé sur le bureau. Tu veuxle voir?? Rapport Hijackthis : CLogfile of HijackThis v1.99.1 Scan saved at 16:00:18, on 05.03.2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe C:\Program Files\ltmoh\Ltmoh.exe C:\WINDOWS\AGRSMMSG.exe C:\program files\mailskinner\mailskinner.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Logitech\MouseWare\system\em_exec.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\WINDOWS\system32\cisvc.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\MsPMSPSv.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\cidaemon.exe C:\Documents and Settings\Olivier\Bureau\HijackThis.exe C:\Program Files\Internet Explorer\iexplore.exe c:\progra~1\intern~1\iexplore.exe O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Bluewin Toolbar - {4E7BD74F-2B8D-469E-DCF7-E869A199B87D} - C:\WINDOWS\DOWNLO~1\bluewin.dll O3 - Toolbar: Bluewin Toolbar - {4E7BD74F-2B8D-469E-DCF7-E869A199B87D} - C:\WINDOWS\DOWNLO~1\bluewin.dll O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe" O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe" O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKCU\..\Run: [MailSkinner] c:\program files\mailskinner\mailskinner.exe O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [sP2 Connection Patcher] "C:\Program Files\SP2 Connection Patcher\SP2ConnPatcher.exe" -n=200 O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: bwl0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe Merci a plus.

Salut, Merci Regis, c'est le message que j'ai en allumant mon ordi, qu'il n'arrive pas à télécharger EGDACCESS.dll Alors j'attend l'avis d'un pro. A bientôt.

Salut Bruce lee, Désolé d'avoir ouvert un deuxieme dossier, mais comme je ne pouvais pas modifier le sujet, j'ai préféré etre sur en en créant un second. Promis je le ferai plus icon_wink.gif Merci de ton aide si tu y connais quelque chose avec Both log. De plus je viens de m'apercevoir d'un autre probléme, c'est : ladHide.dll qui reste dans mes fichiers temp. Je l'ai enlevé en mode sans echec, mais il revient toujours icon_confused.gif A plus.

Salut Bruce lee, Désolé d'avoir ouvert un deuxieme dossier, mais comme je ne pouvais pas modifier le sujet, j'ai préféré etre sur en en créant un second. Promis je le ferai plus Merci de ton aide si tu y connais quelque chose avec Both log. De plus je viens de m'apercevoir d'un autre probléme, c'est : ladHide.dll qui reste dans mes fichiers temp. Je l'ai enlevé en mode sans echec, mais il revient toujours A plus.

Bonjour tout le monde, Salut C.Ingalls Voici le rapport de Both log. : Logfile of HijackThis v1.99.1 Scan saved at 15:49:30, on 04.03.2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe C:\Program Files\ltmoh\Ltmoh.exe C:\WINDOWS\AGRSMMSG.exe C:\windows\system32\iaczrfj.exe C:\program files\mailskinner\mailskinner.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Logitech\MouseWare\system\em_exec.exe c:\progra~1\intern~1\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\WINDOWS\system32\cisvc.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\MsPMSPSv.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\cidaemon.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\cmd.exe C:\Documents and Settings\Olivier\Bureau\HijackThis.exe C:\WINDOWS\system32\ping.exe R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Bluewin Toolbar - {4E7BD74F-2B8D-469E-DCF7-E869A199B87D} - C:\WINDOWS\DOWNLO~1\bluewin.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: (no name) - {78C97D40-E20E-8A2B-F10C-E9B2E3CA3621} - C:\DOCUME~1\Olivier\APPLIC~1\SOFTAC~1\Plus4.exe O3 - Toolbar: Bluewin Toolbar - {4E7BD74F-2B8D-469E-DCF7-E869A199B87D} - C:\WINDOWS\DOWNLO~1\bluewin.dll O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe" O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe" O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [bIN VIEW RULE DENT] C:\Documents and Settings\All Users\Application Data\Name Admin Bin View\cool idol.exe O4 - HKLM\..\Run: [iaczrfj] c:\windows\system32\iaczrfj.exe iaczrfj O4 - HKCU\..\Run: [instant Access] rundll32.exe EGDACCESS_1061.dll,InstantAccess O4 - HKCU\..\Run: [MailSkinner] c:\program files\mailskinner\mailskinner.exe O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [sP2 Connection Patcher] "C:\Program Files\SP2 Connection Patcher\SP2ConnPatcher.exe" -n=200 O4 - HKCU\..\Run: [DATA INTRA] C:\DOCUME~1\Olivier\APPLIC~1\FASTSH~1\Soap eggs.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: bw+0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe doesn't exist HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Iexplore.exe doesn't exist HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx doesn't exist HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run doesn't exist HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\explorer.exe ----------------------- ----------------------- REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx] [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers] [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\Offline Files] @="{750fdf0e-2a26-11d1-a3ea-080036587f03}" [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\Open With] @="{09799AFB-AD67-11d1-ABCD-00C04FC30936}" [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\Open With EncryptionMenu] @="{A470F8CF-A1E8-4f65-8335-227475AA5C46}" [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\PowerArchiver] @="{d03d3e68-0c44-3d45-b15f-bcfd8a8b4c7e}" [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\TuneUp Shredder] @="{00DF1F20-0849-A4D1-0239-00D0AF3E9CB0}" [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\WinRAR] @="{B41DB860-8EE4-11D2-9906-E49FADC173CA}" [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\{a2a9545d-a0c2-42b4-9708-a0b2badd77c8}] @="Épingle du menu Démarrer" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\\WINDOWS\\system32\\igfxtray.exe" "HotKeysCmds"="C:\\WINDOWS\\system32\\hkcmd.exe" "avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe" "Zone Labs Client"="C:\\Program Files\\Zone Labs\\ZoneAlarm\\zlclient.exe" "Logitech Utility"="Logi_MwX.Exe" "QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime" "TkBellExe"="\"C:\\Program Files\\Fichiers communs\\Real\\Update_OB\\realsched.exe\" -osboot" "SynTPLpr"="C:\\Program Files\\Synaptics\\SynTP\\SynTPLpr.exe" "SynTPEnh"="C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe" "SunJavaUpdateSched"="C:\\Program Files\\Java\\jre1.5.0_04\\bin\\jusched.exe" "RoxioEngineUtility"="\"C:\\Program Files\\Fichiers communs\\Roxio Shared\\System\\EngUtil.exe\"" "RoxioDragToDisc"="\"C:\\Program Files\\Roxio\\Easy Media Creator 7\\Drag to Disc\\DrgToDsc.exe\"" "RoxioAudioCentral"="\"C:\\Program Files\\Roxio\\Easy CD Creator 6\\AudioCentral\\RxMon.exe\"" "NeroFilterCheck"="C:\\WINDOWS\\system32\\NeroCheck.exe" "LtMoh"="C:\\Program Files\\ltmoh\\Ltmoh.exe" "AGRSMMSG"="AGRSMMSG.exe" "BIN VIEW RULE DENT"="C:\\Documents and Settings\\All Users\\Application Data\\Name Admin Bin View\\cool idol.exe" "iaczrfj"="c:\\windows\\system32\\iaczrfj.exe iaczrfj" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL] "Installed"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI] "Installed"="1" "NoChange"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS] "Installed"="1" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Instant Access"="rundll32.exe EGDACCESS_1061.dll,InstantAccess" "MailSkinner"="c:\\program files\\mailskinner\\mailskinner.exe" "LDM"="C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe" "SP2 Connection Patcher"="\"C:\\Program Files\\SP2 Connection Patcher\\SP2ConnPatcher.exe\" -n=200" "DATA INTRA"="C:\\DOCUME~1\\Olivier\\APPLIC~1\\FASTSH~1\\Soap eggs.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Runonce] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Runonce] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run] Scheduled Tasks Folder Contents * C:\WINDOWS\Tasks\1-Click Maintenance.job C:\WINDOWS\Tasks\AA53D7459184523D.job C:\WINDOWS\Tasks\desktop.ini C:\WINDOWS\Tasks\FRU Task #Hewlett-Packard#hp psc 1100 series#1117101806.job C:\WINDOWS\Tasks\SA.DAT Merci beaucoup pour votre aide A plus

Bonjour Charles Ingalls, Merci d'avance. Bien cool Voici le rapport de Both log. : Logfile of HijackThis v1.99.1 Scan saved at 15:49:30, on 04.03.2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe C:\Program Files\ltmoh\Ltmoh.exe C:\WINDOWS\AGRSMMSG.exe C:\windows\system32\iaczrfj.exe C:\program files\mailskinner\mailskinner.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Logitech\MouseWare\system\em_exec.exe c:\progra~1\intern~1\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\WINDOWS\system32\cisvc.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\MsPMSPSv.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\cidaemon.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\cmd.exe C:\Documents and Settings\Olivier\Bureau\HijackThis.exe C:\WINDOWS\system32\ping.exe R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Bluewin Toolbar - {4E7BD74F-2B8D-469E-DCF7-E869A199B87D} - C:\WINDOWS\DOWNLO~1\bluewin.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: (no name) - {78C97D40-E20E-8A2B-F10C-E9B2E3CA3621} - C:\DOCUME~1\Olivier\APPLIC~1\SOFTAC~1\Plus4.exe O3 - Toolbar: Bluewin Toolbar - {4E7BD74F-2B8D-469E-DCF7-E869A199B87D} - C:\WINDOWS\DOWNLO~1\bluewin.dll O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe" O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe" O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [bIN VIEW RULE DENT] C:\Documents and Settings\All Users\Application Data\Name Admin Bin View\cool idol.exe O4 - HKLM\..\Run: [iaczrfj] c:\windows\system32\iaczrfj.exe iaczrfj O4 - HKCU\..\Run: [instant Access] rundll32.exe EGDACCESS_1061.dll,InstantAccess O4 - HKCU\..\Run: [MailSkinner] c:\program files\mailskinner\mailskinner.exe O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [sP2 Connection Patcher] "C:\Program Files\SP2 Connection Patcher\SP2ConnPatcher.exe" -n=200 O4 - HKCU\..\Run: [DATA INTRA] C:\DOCUME~1\Olivier\APPLIC~1\FASTSH~1\Soap eggs.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: bw+0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe doesn't exist HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Iexplore.exe doesn't exist HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx doesn't exist HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run doesn't exist HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\explorer.exe ----------------------- ----------------------- REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx] [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers] [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\Offline Files] @="{750fdf0e-2a26-11d1-a3ea-080036587f03}" [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\Open With] @="{09799AFB-AD67-11d1-ABCD-00C04FC30936}" [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\Open With EncryptionMenu] @="{A470F8CF-A1E8-4f65-8335-227475AA5C46}" [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\PowerArchiver] @="{d03d3e68-0c44-3d45-b15f-bcfd8a8b4c7e}" [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\TuneUp Shredder] @="{00DF1F20-0849-A4D1-0239-00D0AF3E9CB0}" [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\WinRAR] @="{B41DB860-8EE4-11D2-9906-E49FADC173CA}" [HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\{a2a9545d-a0c2-42b4-9708-a0b2badd77c8}] @="Épingle du menu Démarrer" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\\WINDOWS\\system32\\igfxtray.exe" "HotKeysCmds"="C:\\WINDOWS\\system32\\hkcmd.exe" "avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe" "Zone Labs Client"="C:\\Program Files\\Zone Labs\\ZoneAlarm\\zlclient.exe" "Logitech Utility"="Logi_MwX.Exe" "QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime" "TkBellExe"="\"C:\\Program Files\\Fichiers communs\\Real\\Update_OB\\realsched.exe\" -osboot" "SynTPLpr"="C:\\Program Files\\Synaptics\\SynTP\\SynTPLpr.exe" "SynTPEnh"="C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe" "SunJavaUpdateSched"="C:\\Program Files\\Java\\jre1.5.0_04\\bin\\jusched.exe" "RoxioEngineUtility"="\"C:\\Program Files\\Fichiers communs\\Roxio Shared\\System\\EngUtil.exe\"" "RoxioDragToDisc"="\"C:\\Program Files\\Roxio\\Easy Media Creator 7\\Drag to Disc\\DrgToDsc.exe\"" "RoxioAudioCentral"="\"C:\\Program Files\\Roxio\\Easy CD Creator 6\\AudioCentral\\RxMon.exe\"" "NeroFilterCheck"="C:\\WINDOWS\\system32\\NeroCheck.exe" "LtMoh"="C:\\Program Files\\ltmoh\\Ltmoh.exe" "AGRSMMSG"="AGRSMMSG.exe" "BIN VIEW RULE DENT"="C:\\Documents and Settings\\All Users\\Application Data\\Name Admin Bin View\\cool idol.exe" "iaczrfj"="c:\\windows\\system32\\iaczrfj.exe iaczrfj" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL] "Installed"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI] "Installed"="1" "NoChange"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS] "Installed"="1" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Instant Access"="rundll32.exe EGDACCESS_1061.dll,InstantAccess" "MailSkinner"="c:\\program files\\mailskinner\\mailskinner.exe" "LDM"="C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe" "SP2 Connection Patcher"="\"C:\\Program Files\\SP2 Connection Patcher\\SP2ConnPatcher.exe\" -n=200" "DATA INTRA"="C:\\DOCUME~1\\Olivier\\APPLIC~1\\FASTSH~1\\Soap eggs.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Runonce] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Runonce] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run] Scheduled Tasks Folder Contents * C:\WINDOWS\Tasks\1-Click Maintenance.job C:\WINDOWS\Tasks\AA53D7459184523D.job C:\WINDOWS\Tasks\desktop.ini C:\WINDOWS\Tasks\FRU Task #Hewlett-Packard#hp psc 1100 series#1117101806.job C:\WINDOWS\Tasks\SA.DAT A plus.

Bonjour tout le monde, Est ce quelqu'un ou quelqu'une aurai la gentillesse d'analyser ce rapport Hijacktis pour moi? J'ai suivi toutes la procédure, mais les explications pour parametrer Antivir, doivent etre pour une ancienne version Alors je l'ai lancé sans rien parametrer de particulier. Voilà l'analyse : Logfile of HijackThis v1.99.1 Scan saved at 12:11:20, on 04.03.2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe C:\Program Files\ltmoh\Ltmoh.exe C:\WINDOWS\AGRSMMSG.exe C:\program files\mailskinner\mailskinner.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe c:\progra~1\intern~1\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Logitech\MouseWare\system\em_exec.exe C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\MsPMSPSv.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\cisvc.exe C:\WINDOWS\system32\cidaemon.exe C:\Documents and Settings\Olivier\Bureau\HijackThis.exe R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Bluewin Toolbar - {4E7BD74F-2B8D-469E-DCF7-E869A199B87D} - C:\WINDOWS\DOWNLO~1\bluewin.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: (no name) - {78C97D40-E20E-8A2B-F10C-E9B2E3CA3621} - C:\DOCUME~1\Olivier\APPLIC~1\SOFTAC~1\Plus4.exe O3 - Toolbar: Bluewin Toolbar - {4E7BD74F-2B8D-469E-DCF7-E869A199B87D} - C:\WINDOWS\DOWNLO~1\bluewin.dll O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe" O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe" O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [bIN VIEW RULE DENT] C:\Documents and Settings\All Users\Application Data\Name Admin Bin View\cool idol.exe O4 - HKCU\..\Run: [instant Access] rundll32.exe EGDACCESS_1061.dll,InstantAccess O4 - HKCU\..\Run: [MailSkinner] c:\program files\mailskinner\mailskinner.exe O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [sP2 Connection Patcher] "C:\Program Files\SP2 Connection Patcher\SP2ConnPatcher.exe" -n=200 O4 - HKCU\..\Run: [DATA INTRA] C:\DOCUME~1\Olivier\APPLIC~1\FASTSH~1\Soap eggs.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: bw+0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {0F91470D-ED98-4552-BC5C-30CB1341AC08} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe Merci beaucoup de votre aide. A bientôt. (j'espére )

Voila le rapport aprés Smiltfraudfix : SmitFraudFix v2.21 Rapport fait à 17:30:44.70 le 02.03.2006 Executé à partir de C:\Documents and Settings\Olivier\Mes documents\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] »»»»»»»»»»»»»»»»»»»»»»»» Recherche C:\ »»»»»»»»»»»»»»»»»»»»»»»» Recherche C:\WINDOWS »»»»»»»»»»»»»»»»»»»»»»»» Recherche C:\WINDOWS\system »»»»»»»»»»»»»»»»»»»»»»»» Recherche C:\WINDOWS\Web »»»»»»»»»»»»»»»»»»»»»»»» Recherche C:\WINDOWS\system32 C:\WINDOWS\system32\1024\ PRESENT! »»»»»»»»»»»»»»»»»»»»»»»» Recherche ...\Application Data »»»»»»»»»»»»»»»»»»»»»»»» Recherche Menu Démarrer »»»»»»»»»»»»»»»»»»»»»»»» Recherche Bureau »»»»»»»»»»»»»»»»»»»»»»»» Recherche C:\Program Files »»»»»»»»»»»»»»»»»»»»»»»» Recherche présence de clés corrompues »»»»»»»»»»»»»»»»»»»»»»»» Recherche éléments du bureau »»»»»»»»»»»»»»»»»»»»»»»» Recherche Sharedtaskscheduler SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" [HKEY_CLASSES_ROOT\CLSID\{438755C2-A8BA-11D1-B96B-00A0C90312E1}\InProcServer32] @="%SystemRoot%\System32\browseui.dll" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{438755C2-A8BA-11D1-B96B-00A0C90312E1}\InProcServer32] @="%SystemRoot%\System32\browseui.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" [HKEY_CLASSES_ROOT\CLSID\{8C7461EF-2B13-11d2-BE35-3078302C2030}\InProcServer32] @="%SystemRoot%\System32\browseui.dll" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{8C7461EF-2B13-11d2-BE35-3078302C2030}\InProcServer32] @="%SystemRoot%\System32\browseui.dll" »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll »»»»»»»»»»»»»»»»»»»»»»»» Fin du rapport Désolé Charles Ingalls mais j'y connais pas encore grand chose en informatique et c'est ma premiere fois sur un forum. Mais merci quand même de ton aide

Salut à toi Cupidon 68, Effectivement j'ai ce probléme avec EGDACCESS_1061.DLL. J'attend la réponse d'un pote pour maider, mais si t'as une soluce, elle est la bienvenue Pour mon firewall c'est Zone Alarme.

Merci Yannick, C'est tout bon. A guise de revanche

Bonjour tout le monde, Depuis quelque temps, un "progamme" s'est installè sur mon ordi. Il s'appelle Spy Falcon. Impossible de l'eliminer. Mon ordi est équipé de Spybot, Ad-aware, et mon antivirus est Avast. Si quelqu'un à deja eu ce probléme, un grand MERCI pour votre aide. Amivalement.