Contenu de Ainsisoitje

Windows live messenger pour xp pro

Ainsisoitje a posté un sujet dans Internet & Réseaux

bonjour à toute l'équipe J'ai un problème avec windows live messenger pour xp pro, je suis sans arret déconnectée dès l ouverture, j ai désinstallé et remis mais le problème reste le meme suis deconnectée d internet dès que je vais sur msn comment faire ??? merci de bien vouloir m'aider Meyriem

le 18 septembre 2011

RECUPERER DES DONNEES APRES FORMATAGE

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Optimisation, Trucs & Astuces

merci Popup de ton conseil en fait suis perdue avec mes fichiers lollllllllllllllllllllllllllllll bon je vais essayer ce test de toute facon je fais une restauration avant au cas où .... je perdrais encore une partition cordialement a toi

le 26 août 2009
17 réponses

RECUPERER DES DONNEES APRES FORMATAGE

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Optimisation, Trucs & Astuces

Clic-droit sur la partition non allouée : quelles sont les possibilités inscrites dans le menu contextuel? (ne clique sur rien pour le moment) 1 - nouvelle partition 2 - propriétés 3- aide non j avais partitionner le disk C avec D ( j ai mis d ailleurs dans le F les donnees du D) le deuxieme disk etait E courrier et F jeux (F est resté avec ses donnees) mais E a disparu merci a toi de ta patience car suis pas tres douee lollll cordialement

le 26 août 2009
17 réponses

RECUPERER DES DONNEES APRES FORMATAGE

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Optimisation, Trucs & Astuces

pour jean mi merci mais suis pas arrivée sais pas si ce sont des fichiers fat ou autres je sais seulement que ce sont des fichiers sous excel et word suis perdue sniffffffffffffffffffff a bientot cordialement

le 26 août 2009
17 réponses

RECUPERER DES DONNEES APRES FORMATAGE

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Optimisation, Trucs & Astuces

bonsoir voila j ai essayé le site ke tu m as recommendé, j espere que l image sera plus nette http://www.hiboox.fr/go/albums/divers/disk...c84063c06517d49 cordialement

le 26 août 2009
17 réponses

RECUPERER DES DONNEES APRES FORMATAGE

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Optimisation, Trucs & Astuces

bsr Christine33 non j ai pas demandé le formatage de ce disque car il est independant de C je suis super ennuyée bon je vais essayé de donner l image plus nette que Tibonhomme m a indiqué merci de ta réponse cordialement

le 26 août 2009
17 réponses

RECUPERER DES DONNEES APRES FORMATAGE

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Optimisation, Trucs & Astuces

le 20 août 2009
17 réponses

RECUPERER DES DONNEES APRES FORMATAGE

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Optimisation, Trucs & Astuces

le 19 août 2009
17 réponses

erro microsoft visual C++ runtime library

Ainsisoitje a posté un sujet dans Optimisation, Trucs & Astuces

bonjour j ai un message d erreur qui apparait a chaque connection : C:\Program Files\Marwell\61xxx\Apache 2/bin\apache.exe this aplication has requested the runtime to terminate it in an unisal way. Please contact the application's support team for more information je ne comprend pas l anglais merci de votre réponse amicalement

le 18 août 2009
1 réponse

RECUPERER DES DONNEES APRES FORMATAGE

Ainsisoitje a posté un sujet dans Optimisation, Trucs & Astuces

bonjour voila j ai voulu formater mon disque principal le C et reinstaller windows xp mais voila j avais deux disques et le deuxieme etait partitionner en deux partie E et F le E a disparu avec mes donnees F a gardé mes fichiers comment faire pour recuperer les fichiers perdus de E ??? ils sont importants pour moi SOS je ne savais pas ke cette partition s effacerait vu ke je n ai demandé ka formater le premier disque dur où se trouvait windows xp merci a toute l equipe pour tous vos conseils Ainsisoitje

le 17 août 2009
17 réponses

RAPPORT HJACKTHIS

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Sécurisation, prévention

bonjour et merci de votre réponse rapide j ai fait la manoeuvre pour boonty mais il ne s est rien passé !!! est ce normal ?? En ce ki concerne incredimail j avais jamais eu de prob avec eux recevant peu de courriel et si je le supprime totalement cela suffira t il ??? car mes donnees resteront chez eux merci a vous de votre gentillesse et j ai recommandé votre site a une amie et elle est enchantée bonne continuation

le 9 août 2009
4 réponses

RAPPORT HJACKTHIS

Ainsisoitje a posté un sujet dans Sécurisation, prévention

bonjour à toute l équipe je vous envoie les indications de mon systeme : Système d'exploitation Microsoft Windows XP Professionnel Version 5.1.2600 Service Pack 3 Nu 2600 Éditeur Microsoft Corporation Ordinateur PERSO-54B366F64 Fabricant System manufacturer Modèle P5K SE Type PC à base X86 Processeur x86 Family 6 Model 15 Stepping 13 GenuineIntel ~2407 Mhz Version du BIOS/Date American Megatrends Inc. 0401, 19/07/2007 Version SMBIOS 2.4 Répertoire Windows C:\WINDOWS Répertoire système C:\WINDOWS\system32 Périphérique de démarrage \Device\HarddiskVolume1 Option régionale France Couche d'abstraction matérielle Version = "5.1.2600.5512 (xpsp.080413-2111)" Utilisateur PERSO-54B366F64\Meyriem Fuseaux horaires Paris, Madrid (heure d'été) Mémoire physique totale 2 048,00 Mo Mémoire physique disponible 1,26 Go Mémoire virtuelle totale 2,00 Go Mémoire virtuelle disponible 1,96 Go Espace pour le fichier d'échange 3,85 Go Fichier d'échange C:\pagefile.sys RAPPORT HJACKTHIS fait le 8/08/09 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:28:36, on 08/08/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\USB Disk Win98 Driver\Res.EXE C:\Program Files\Logitech\SetPoint\LBTWiz.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe C:\Program Files\SFR\Pack Sécurité\Common\FSM32.EXE C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe C:\Program Files\Fichiers communs\Nokia\MPlatform\NokiaMServer.exe C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\Program Files\SFR\Pack Sécurité\Anti-Virus\fsgk32st.exe C:\Program Files\SFR\Pack Sécurité\Common\FSMA32.EXE C:\Program Files\SFR\Pack Sécurité\Anti-Virus\FSGK32.EXE C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\Marvell\61xx\svc\mvraidsvc.exe C:\Program Files\SFR\Pack Sécurité\Common\FSMB32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\IncrediMail\bin\IMApp.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\SFR\Pack Sécurité\Common\FCH32.EXE C:\Program Files\Marvell\61xx\Apache2\bin\Apache.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe C:\Program Files\SFR\Pack Sécurité\Common\FAMEH32.EXE C:\Program Files\SFR\Pack Sécurité\Anti-Virus\fsqh.exe C:\Program Files\Marvell\61xx\Apache2\bin\Apache.exe C:\Program Files\SFR\Pack Sécurité\FSGUI\fsguidll.exe C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\Program Files\SFR\Pack Sécurité\FSAUA\program\fsaua.exe C:\Program Files\SFR\Pack Sécurité\Anti-Virus\fssm32.exe C:\Program Files\SFR\Pack Sécurité\FWES\Program\fsdfwd.exe C:\Program Files\SFR\Pack Sécurité\FSAUA\program\fsus.exe C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe C:\Program Files\Nokia\PC Connectivity Solution\Transports\NclUSBSrv.exe C:\Program Files\Nokia\PC Connectivity Solution\Transports\NclRSSrv.exe C:\Program Files\SFR\Pack Sécurité\Anti-Virus\fsav32.exe C:\Program Files\SFR\Pack Sécurité\FSGUI\scanwizard.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com/?fr=fp-yie8 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll O1 - Hosts: ::1 localhost O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\YTSingleInstance.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [uSB Storage Toolbox] C:\Program Files\USB Disk Win98 Driver\Res.EXE O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [bluetooth Connection Assistant] LBTWIZ.EXE -silent O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\SFR\Pack Sécurité\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\SFR\Pack Sécurité\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Fichiers communs\Nokia\MPlatform\NokiaMServer /watchfiles O4 - HKLM\..\Run: [Nokia FastStart] "C:\Program Files\Nokia\Nokia Music\NokiaMusic.exe" /command:faststart O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [EPSON BX300F Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEJE.EXE /FU "C:\WINDOWS\TEMP\E_S167.tmp" /EF "HKCU" O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe O4 - HKCU\..\Run: [search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe O4 - HKCU\..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet O4 - HKCU\..\Run: [instantTray] C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe O4 - HKCU\..\Run: [iW_Drop_Icon] C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe /DropDisc O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O4 - Global Startup: PalTalk.lnk = C:\Program Files\Paltalk Messenger\paltalk.exe O4 - Global Startup: SetPointII.lnk = ? O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\Program Files\IncrediMail\bin\resources\WebMenuImg.htm O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Set As Messenger Live Display Picture - \SetMSNDP.htm O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/dow...llerControl.cab O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.1...toUploader5.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownlo.../sysreqlab3.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownlo...sreqlab_nvd.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {596B26AA-E941-4FB5-8F91-0762447578F0} - O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1207656843078 O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownlo.../sysreqlab2.cab O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDownlo...iaSmartScan.cab O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-f889be5d0db2a93d.spaces.live.co...ad/MsnPUpld.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://fichiers.touslesdrivers.com/maconfi...fig_3_5_1_0.cab O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD5/JSCDL/jre...ows-i586-jc.cab O16 - DPF: {BAE1D8DF-0B35-47E3-A1E7-EEB3FF2ECD19} (CPlayFirstddfotgControl Object) - http://games.bigfishgames.com/fr_dinerdash...tg.1.0.0.33.cab O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://kiw.imgag.com/imgag/cp/install/crusher-kiwen.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxentelechargement.orange.fr/Game...ronGameHost.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553500000} - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {D441AB53-A39C-42AE-AB79-3C05B7298F34} (AstroAvengerLoader Control) - http://games.bigfishgames.com/fr_astro-ave...nger2Loader.cab O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} (Imikimi_activex_plugin Control) - http://imikimi.com/download/imikimi_plugin_0.5.1.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing) O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\SFR\Pack Sécurité\Anti-Virus\fsgk32st.exe O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\SFR\Pack Sécurité\FSAUA\program\fsaua.exe O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\SFR\Pack Sécurité\FWES\Program\fsdfwd.exe O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\SFR\Pack Sécurité\Common\FSMA32.EXE O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files\SFR\Pack Sécurité\ORSP Client\fsorsp.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: Marvell RAID Event Agent (Marvell RAID) - Unknown owner - C:\Program Files\Marvell\61xx\svc\mvraidsvc.exe O23 - Service: MRU Web Service (MRUWebService) - Apache Software Foundation - C:\Program Files\Marvell\61xx\Apache2\bin\Apache.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- End of file - 16927 bytes je ne sais pas si mon pc est infecté mais il y a sans doute bc de logiciels qui démarrent et sont inutiles au demarrage je vous remercie de votre gentillesse Ainsisoitje

le 8 août 2009
4 réponses

Programme a démarrage automatique non recommandé

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Analyses et éradication malwares

Merci Appolo de tous tes conseils, oui je vais aller poster un message à Marie je te joins le rapport demandé [ Rapport ToolsCleaner version 2.3.0 (par A.Rothstein & dj QUIOU) ] -->- Recherche: C:\Toolbar SD: trouvé ! C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé ! C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé ! C:\Documents and Settings\Meyriem\Application Data\Microsoft\Internet Explorer\Quick Launch\HijackThis.lnk: trouvé ! C:\Program Files\Trend Micro\HijackThis: trouvé ! C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé ! C:\Program Files\Trend Micro\HijackThis\hijackthis.log: trouvé ! --------------------------------- -->- Suppression: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé ! C:\Documents and Settings\Meyriem\Application Data\Microsoft\Internet Explorer\Quick Launch\HijackThis.lnk: supprimé ! C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé ! C:\Program Files\Trend Micro\HijackThis\hijackthis.log: supprimé ! C:\Toolbar SD: supprimé ! C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé ! C:\Program Files\Trend Micro\HijackThis: supprimé ! Point de restauration crée ! Corbeille vidée! Fichiers temporaires nettoyés ! Sauvegarde du registre crée ! Amicalement

le 5 janvier 2009
13 réponses

Programme a démarrage automatique non recommandé

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Analyses et éradication malwares

bonjour Appolo J'ai bien effectué les consignes ke tu m as données hier ben mon ordi ne s arrete plus depuis deux mois environ (j etais en deplacement) c'est ma soeur ki m en a fait part a mon retour mais kelkes fois il s arrete bien d autre plus souvent on l arrete par le bouton d alimentation derriere la tour je vais encore solliciter ton aide j ai ce message dans windows systeme : 01/01/2009 15:12 Application Hang Application bloquée WINWORD.EXE, version 10.0.6850.0, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 01/01/2009 15:12 Application Hang Application bloquée WINWORD.EXE, version 10.0.6850.0, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 03/01/2009 22:52 Application Hang Application bloquée IncMail.exe, version 5.8.5.3718, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 05/01/2009 09:26 Application Hang Application bloquée msnmsgr.exe, version 8.5.1302.1018, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 05/01/2009 09:29 Application Hang Détecteur d'erreurs 1015682910. 05/01/2009 09:29 Application Hang Application bloquée iexplore.exe, version 7.0.6000.16762, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 14/12/2008 00:22 Application Hang Application bloquée SDUpdate.exe, version 1.6.0.9, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 14/12/2008 00:22 Application Hang Application bloquée SDUpdate.exe, version 1.6.0.9, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 15/12/2008 11:49 Application Hang Application bloquée iexplore.exe, version 7.0.6000.16762, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 15/12/2008 11:49 Application Hang Application bloquée iexplore.exe, version 7.0.6000.16762, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 15/12/2008 11:49 Application Hang Application bloquée iexplore.exe, version 7.0.6000.16762, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 16/12/2008 21:55 Application Error Application défaillante teatimer.exe, version 1.6.3.25, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x00cd41d0. 19/12/2008 19:50 Application Error Application défaillante iexplore.exe, version 7.0.6000.16762, module défaillant oberontb.dll, version 2.0.1.12, adresse de défaillance 0x00025b40. 19/12/2008 19:50 Application Error Application défaillante iexplore.exe, version 7.0.6000.16762, module défaillant oberontb.dll, version 2.0.1.12, adresse de défaillance 0x00025b40. 19/12/2008 20:06 Application Error Application défaillante iexplore.exe, version 7.0.6000.16762, module défaillant oberontb.dll, version 2.0.1.12, adresse de défaillance 0x00025b40. 19/12/2008 20:06 Application Error Application défaillante iexplore.exe, version 7.0.6000.16762, module défaillant oberontb.dll, version 2.0.1.12, adresse de défaillance 0x00025b40. 22/12/2008 19:19 Windows Live Messenger Non disponible 22/12/2008 19:21 Windows Live Messenger Non disponible 22/12/2008 19:50 Windows Live Messenger Non disponible 22/12/2008 20:14 Windows Live Messenger Non disponible 23/12/2008 16:03 Application Hang Application bloquée ZGI31.tmp, version 1.0.0.1, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 23/12/2008 16:04 Application Hang Application bloquée ZGI2F.tmp, version 1.0.0.1, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 23/12/2008 16:28 Application Hang Application bloquée littleshoproadtrip.exe, version 1.0.0.1, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 23/12/2008 16:29 Application Hang Application bloquée littleshoproadtrip.exe, version 1.0.0.1, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 23/12/2008 20:04 Application Hang Application bloquée iexplore.exe, version 7.0.6000.16762, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 23/12/2008 21:38 Application Hang Application bloquée YahooMessenger.exe, version 9.0.0.2034, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 23/12/2008 21:38 Application Hang Application bloquée YahooMessenger.exe, version 9.0.0.2034, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 25/12/2008 15:32 MsiInstaller Échec de détection du produit '{7784A172-61F1-445E-8368-601607E0DD22}', fonctionnalité 'DefaultFeature' lors de la demande du composant '{265BDA66-7BA3-C58B-2795-77BC3D9461C2}' 29/12/2008 02:48 Application Hang Application bloquée SpybotSD.exe, version 1.6.0.31, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 30/12/2008 22:13 Application Hang Application bloquée iexplore.exe, version 7.0.6000.16762, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 30/12/2008 22:13 Application Hang Application bloquée iexplore.exe, version 7.0.6000.16762, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 30/12/2008 22:13 Application Hang Application bloquée iexplore.exe, version 7.0.6000.16762, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 30/12/2008 22:13 Application Hang Application bloquée iexplore.exe, version 7.0.6000.16762, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 30/12/2008 22:13 Application Hang Application bloquée iexplore.exe, version 7.0.6000.16762, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. 31/12/2008 01:15 Application Hang Application bloquée POWERPNT.EXE, version 10.0.6842.0, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. et ce probleme supplementaire : le 1er correspond a mon ensemble clavier souris logitech Description Logitech Cordless USB Keyboard Nom Étendu (101 ou 102 touches) Disposition 0000040C ID de périphérique Plug-and-Play USB\VID_046D&PID_C512&MI_00\6&16E76A0F&0&0000 Nombre de touches de fonction 12 Pilote c:\windows\system32\drivers\hidusb.sys (5.1.2600.5512 (xpsp.080413-2108), 10,13 Ko (10 368 Octets), 05/08/2004 14:00) CELUI LA JE NE CONNAIS PAS / Description PS/2 Keyboard Nom Étendu (101 ou 102 touches) Disposition 0000040C ID de périphérique Plug-and-Play ACPI\PNP0303\4&1400782C&0 Nombre de touches de fonction 12 Port E/S 0x00000060-0x00000060 Port E/S 0x00000064-0x00000064 Canal IRQ IRQ 1 Pilote c:\windows\system32\drivers\i8042prt.sys (5.1.2600.5512 (xpsp.080413-2108), 52,88 Ko (54 144 Octets), 05/08/2004 14:00) PS/2 Keyboard ACPI\PNP0303\4&1400782C&0 Ce périphérique n'est pas présent, ne fonctionne pas correctement, ou tous ses pilotes ne sont pas installés. MERCI ENCORE DE TA SOLLICITUDE ainsisoitje Meyriem

le 5 janvier 2009
13 réponses

Programme a démarrage automatique non recommandé

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Analyses et éradication malwares

Bonsoir Je te remercie encore de ta patience je t adresse seulement 4 rapports car lors du Ad-Remover j ai tapé A comme indiqué mais il ne s est rien passé et j ai du passer a l etape suivante S (supprimer les éléments cochés) bon voila le résultat de tout : toolbar : -----------\\ ToolBar S&D 1.2.8 XP/Vista Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3 X86-based PC ( Multiprocessor Free : Intel® Core2 Duo CPU E4600 @ 2.40GHz ) BIOS : BIOS Date: 07/19/07 11:46:27 Ver: 08.00.12 USER : Meyriem ( Administrator ) BOOT : Normal boot Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total:48 Go (Free:27 Go) D:\ (Local Disk) - NTFS - Total:58 Go (Free:46 Go) E:\ (Local Disk) - NTFS - Total:25 Go (Free:24 Go) F:\ (Local Disk) - NTFS - Total:56 Go (Free:48 Go) G:\ (CD or DVD) "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 ) Option : [2] ( 04/01/2009|19:32 ) -----------\\ SUPPRESSION Supprime! - C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127 Supprime! - C:\Program Files\Dealio\DealioAU.exe Supprime! - C:\Program Files\Dealio\kb127 Supprime! - C:\Program Files\Dealio\SearchSettingsKit.exe Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Dealio Supprime! - C:\Program Files\GamesBar\Localization-French.ini Supprime! - C:\Program Files\Search Settings\kb127 Supprime! - C:\Program Files\Search Settings\SearchSettings.exe Supprime! - C:\DOCUME~1\Meyriem\APPLIC~1\Dealio Supprime! - C:\Program Files\Dealio Supprime! - C:\Program Files\GamesBar Supprime! - C:\Program Files\Search Settings -----------\\ Recherche de Fichiers / Dossiers ... -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://home.sweetim.com" "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://www.msn.com/" --------------------\\ Recherche d'autres infections Aucune autre infection trouvée ! 1 - "C:\ToolBar SD\TB_1.txt" - 03/01/2009|19:14 - Option : [1] 2 - "C:\ToolBar SD\TB_2.txt" - 04/01/2009|19:34 - Option : [2] -----------\\ Fin du rapport a 19:34:35,78 ===================================================== rapport Ad-Remover ------- Logfile of AD-Remover 1.0.8.4 by C_XX | ONLY XP/VISTA ------- *** Limited to *** Boonty/BoontyGames Eorezo Everest Poker Funwebproduct/MyWay/MyWebsearch It's TV Sweetim ****************** # START at: 19:40:32 | Dim 04/01/2009 | Microsoft® Windows XP™ SP3 (v5.1.2600) # BOOT MODE: Normal # OPTION: Clean | EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat # PC: PERSO-54B366F64 | USER: Meyriem ( Current user is an administrator) # DRIVE(S): - C:\ (File System: NTFS) - D:\ (File System: NTFS) - E:\ (File System: NTFS) - F:\ (File System: NTFS) # Internet Explorer v7.0.5730.13 # RUNNING PROCESSES: 48 (!) ---- IE start pages reset +-----------------------| Boonty/Boonty Games Elements Deleted : . Service: "Boonty Games" . HKCU\SOFTWARE\Boonty HKLM\Software\Boonty HKLM\SYSTEM\ControlSet003\Services\Boonty Games . C:\Program Files\Fichiers communs\BOONTY Shared C:\Documents and Settings\All Users\Application Data\BOONTY +-----------------------| Eorezo Elements Deleted : . . +-----------------------| Everest Poker Elements Deleted : . . +-----------------------| FunWebProducts/MyWay/MyWebSearch/MyGlobalSearch Elements Deleted : . . +-----------------------| It's TV Elements Deleted : . +-----------------------| Sweetim Elements Deleted : . HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{EEE6C35D-6118-11DC-9C72-001320C79847} HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{EEE6C35B-6118-11DC-9C72-001320C79847} HKLM\~\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D HKLM\~\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E HKLM\~\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA HKLM\~\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635 HKLM\~\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81 HKLM\~\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED HKLM\~\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058 HKLM\~\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267 HKLM\~\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7 HKLM\~\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6 HKLM\~\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D HKLM\~\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420 HKLM\~\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501 HKLM\~\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636 HKLM\~\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F HKLM\~\UserData\S-1-5-18\Components\1AC67655DD68F8240B2860F2D511EBD8 HKLM\~\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1 HKLM\~\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43 HKLM\~\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C HKLM\~\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0 HKLM\~\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7 HKLM\~\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB HKLM\~\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA HKLM\~\UserData\S-1-5-18\Components\5D19F074C042AD34BAB463D4175A062E HKLM\~\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC HKLM\~\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0 HKLM\~\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF HKLM\~\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC HKLM\~\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5 HKLM\~\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74 HKLM\~\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3 HKLM\~\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E HKLM\~\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E HKLM\~\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15 HKLM\~\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB HKLM\~\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0 HKLM\~\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F HKLM\~\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9 HKLM\~\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A HKLM\~\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC HKLM\~\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5 HKLM\~\UserData\S-1-5-18\Components\E337925F629CF4C4FB08F3D9674DD839 HKLM\~\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0 HKLM\~\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432 HKLM\~\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804 HKLM\~\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0 HKLM\~\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9 HKLM\~\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094 HKLM\~\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536 HKLM\SOFTWARE\Classes\Installer\Product\0337C6624F0C5E94F8025AF6F9288257 HKLM\SOFTWARE\Classes\Installer\Product\E3124E1ADA6085C43851291F51139D06 HKCR\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847} HKCR\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847} HKCR\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847} HKCR\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A} HKCR\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064} HKCR\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0 HKCR\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632 HKCR\SWEETIE.IEToolbar HKCR\SWEETIE.IEToolbar.1 HKCR\SWEETIE.SWEETIE HKCR\SWEETIE.SWEETIE.3 HKCR\SweetIM_URLSearchHook.ToolbarURLSearchHook HKCR\SweetIM_URLSearchHook.ToolbarURLSearchHook.1 HKCR\Toolbar3.SWEETIE HKCR\Toolbar3.SWEETIE.1 HKCR\Typelib\{EEE6C35E-6118-11DC-9C72-001320C79847} HKCR\Typelib\{EEE6C35F-6118-11DC-9C72-001320C79847} HKCR\MgMediaPlayer.GifAnimator HKCR\MgMediaPlayer.GifAnimator.1 HKCU\SOFTWARE\SweetIM HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847} HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847} HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19} HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A1E4213E-06AD-4C58-8315-92F11531D960} HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{266C7330-C0F4-49E5-8F20-A56F9F822875} HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847} HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632 HKLM\SOFTWARE\SweetIM . C:\Program Files\SweetIM C:\Documents and Settings\All Users\Application Data\SweetIM C:\Documents and Settings\Meyriem\Cookies\meyriem@content.sweetim[2].txt C:\Documents and Settings\Meyriem\Cookies\meyriem@search.sweetim[1].txt C:\Documents and Settings\Meyriem\Cookies\meyriem@search.sweetim[3].txt (!) ---- Temp files deleted. (!) ---- Recycle bin emptied in all drives. +-----------------------| ADDED SCAN : +---------- Scanning prefs.js ... ( # Mozilla User Preferences ) ..\65x189yx.default\prefs.js : ~~~~ Mozilla FireFox version [unable to get version] ~~~~ * Browser Search Default Engine: "Google" * Browser Search Selected Engine: "Google" * Browser Search Default Url: "http://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=" . +---------------------------------------------------------------------------+ +--[HKEY_CURRENT_USER\..\Internet Explorer\MAIN] Start Page : hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome +--[HKEY_LOCAL_MACHINE\..\Internet Explorer\MAIN] Start Page : hxxp://fr.msn.com/ +---------------------------------------------------------------------------+ [~8176 bytes] - "C:\AD-report-Clean-04.01.2009.log" # END at: 19:42:00 | 04/01/2009 - Time elapsed: 88.2 seconds +---------------------------------------------------------------------------+ +------------------------------- [ E.O.F - 151 lines ] +---------------------------------------------------------------------------+ ===================================================== rapport mbam Malwarebytes' Anti-Malware 1.31 Version de la base de données: 1612 Windows 5.1.2600 Service Pack 3 04/01/2009 20:46:25 mbam-log-2009-01-04 (20-46-25).txt Type de recherche: Examen complet (C:\|D:\|E:\|F:\|) Eléments examinés: 147699 Temps écoulé: 47 minute(s), 51 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 1 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{df780f87-ff2b-4df8-92d0-73db16a1543a} (Adware.PopCap) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) ======================================= rapport apres redemarrage hijackthis Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:57:02, on 04/01/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16762) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\Marvell\61xx\svc\mvraidsvc.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Marvell\61xx\Apache2\bin\Apache.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\TUProgSt.exe C:\Program Files\Marvell\61xx\Apache2\bin\Apache.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\USB Disk Win98 Driver\Res.EXE C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE C:\Program Files\Logitech\SetPoint\LBTWiz.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Sony Corporation\Image Transfer\SonyTray.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll R3 - URLSearchHook: (no name) - {0A94B116-4504-4e26-AB05-E61E474AA38B} - (no file) O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: (no name) - {EEE6C35C-6118-11DC-9C72-001320C79847} - (no file) O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [uSB Storage Toolbox] C:\Program Files\USB Disk Win98 Driver\Res.EXE O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [EPSON Stylus CX3200] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX3200" /O6 "USB001" /M "Stylus CX3200" O4 - HKLM\..\Run: [bluetooth Connection Assistant] LBTWIZ.EXE -silent O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [ManyCam] "C:\Program Files\ManyCam 2.3\ManyCam.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\RunOnce: [DependencyCheck] Performed O4 - Global Startup: Image Transfer.lnk = ? O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\Program Files\IncrediMail\bin\resources\WebMenuImg.htm O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Set As Messenger Live Display Picture - \SetMSNDP.htm O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/dow...llerControl.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownlo.../sysreqlab3.cab O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/...nst20040510.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {596B26AA-E941-4FB5-8F91-0762447578F0} (CPlayFirstdreamControl Object) - http://games.bigfishgames.com/fr_dream-chr...1.0.0.17_fr.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1207656843078 O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownlo.../sysreqlab2.cab O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-f889be5d0db2a93d.spaces.live.co...ad/MsnPUpld.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichier...ion_3_1_0_4.cab O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://kiw.imgag.com/imgag/cp/install/crusher-kiwen.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxentelechargement.orange.fr/Game...ronGameHost.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: Marvell RAID Event Agent (Marvell RAID) - Unknown owner - C:\Program Files\Marvell\61xx\svc\mvraidsvc.exe O23 - Service: MRU Web Service (MRUWebService) - Apache Software Foundation - C:\Program Files\Marvell\61xx\Apache2\bin\Apache.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe -- End of file - 11190 bytes ==================================== par ailleurs mon ordinateur ne s arrete plus a la fermeture de windows, je dois l arreter manuellement en coupant le contact electrique cordialement a toi

le 4 janvier 2009
13 réponses

Programme a démarrage automatique non recommandé

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Analyses et éradication malwares

merci et bonne lecture tu es super mega sympa

le 3 janvier 2009
13 réponses

Programme a démarrage automatique non recommandé

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Analyses et éradication malwares

merci de ta réponse rapide voici le rapport demandé -----------\\ ToolBar S&D 1.2.8 XP/Vista Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3 X86-based PC ( Multiprocessor Free : Intel® Core2 Duo CPU E4600 @ 2.40GHz ) BIOS : BIOS Date: 07/19/07 11:46:27 Ver: 08.00.12 USER : Meyriem ( Administrator ) BOOT : Normal boot Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total:48 Go (Free:26 Go) D:\ (Local Disk) - NTFS - Total:58 Go (Free:46 Go) E:\ (Local Disk) - NTFS - Total:25 Go (Free:24 Go) F:\ (Local Disk) - NTFS - Total:56 Go (Free:48 Go) G:\ (CD or DVD) "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 ) Option : [1] ( 03/01/2009|19:14 ) -----------\\ Recherche de Fichiers / Dossiers ... C:\DOCUME~1\Meyriem\APPLIC~1\Dealio C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\temp C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\alerts.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\alerts_over.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\alerts_rec.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\alerts_rec_over.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\chevron-small.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\DealioSearch.html C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\deals-leftcap.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\deal_report.jpg C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\ebay_login.jpg C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\err_mainwindow.html C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\err_toolbar.html C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\global_scripts.js C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\headerbgthin.jpg C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\highlight-bg.png C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\logo.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\logo_over.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\man_toolbar.css C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\man_toolbar.html C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\man_toolbar.js C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\man_toolbarl.js C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\post-this-deal.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\post-this-deal_over.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\scripts.js C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\scroller.js C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\search-chevron.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\search-chevron_over.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\search_bg_blink.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\separator.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\settings.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\settings_over.gif C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\res\yahoo-search.png C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\index.76.35 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.10.76 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.109.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.110.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.12.52 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.13.58 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.130.58 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.135.50 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.153.44 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.155.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.156.49 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.16.60 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.161.52 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.178.66 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.184.55 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.188.52 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.189.45 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.196.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.198.56 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.199.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.200.53 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.201.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.202.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.203.71 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.205.62 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.213.71 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.214.49 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.215.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.216.67 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.217.67 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.218.52 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.219.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.220.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.221.57 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.222.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.223.68 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.226.68 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.227.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.228.62 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.229.76 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.23.63 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.239.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.24.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.240.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.241.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.242.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.243.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.244.63 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.245.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.247.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.248.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.249.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.250.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.251.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.252.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.253.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.254.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.255.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.256.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.257.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.279.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.28.58 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.282.75 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.283.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.284.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.289.67 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.290.62 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.291.61 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.296.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.297.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.304.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.307.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.308.75 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.31.47 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.310.46 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.311.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.315.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.316.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.317.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.318.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.319.49 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.32.48 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.334.44 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.335.60 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.336.44 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.337.44 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.338.75 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.339.47 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.34.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.340.47 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.341.47 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.349.50 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.35.48 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.350.50 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.351.51 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.352.54 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.353.51 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.354.51 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.357.62 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.358.52 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.359.52 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.360.53 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.361.54 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.362.68 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.363.58 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.364.54 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.365.53 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.367.56 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.368.58 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.369.55 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.370.56 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.371.56 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.372.57 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.373.55 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.375.56 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.376.57 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.377.55 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.378.65 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.384.58 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.386.71 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.387.59 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.388.59 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.389.59 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.390.60 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.391.60 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.392.60 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.393.60 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.394.60 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.396.61 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.397.61 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.398.60 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.399.60 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.403.61 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.404.63 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.405.61 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.406.61 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.407.76 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.408.63 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.409.61 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.412.62 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.413.62 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.414.62 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.415.62 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.416.62 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.417.62 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.418.62 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.419.62 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.420.62 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.421.62 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.423.63 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.424.63 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.425.63 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.426.63 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.427.63 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.428.65 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.429.63 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.430.63 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.432.65 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.433.64 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.434.65 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.435.64 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.436.76 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.437.64 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.438.71 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.439.71 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.440.75 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.442.73 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.443.73 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.444.73 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.445.68 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.446.69 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.450.67 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.451.67 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.452.68 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.453.68 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.454.69 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.456.69 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.457.75 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.458.70 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.459.70 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.460.69 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.462.74 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.463.69 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.464.70 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.465.68 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.468.70 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.469.70 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.470.70 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.471.73 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.472.70 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.478.74 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.479.73 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.480.68 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.481.71 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.482.74 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.49.67 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.50.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.500.71 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.501.74 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.502.71 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.51.69 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.52.72 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.520.76 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.521.76 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.522.76 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.53.51 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.531.76 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.532.75 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.534.75 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.54.47 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.55.45 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.56.69 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.57.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.58.47 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.593.76 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.595.76 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.63.57 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.66.47 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.70.75 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\rules\rules.1.71.43 C:\DOCUME~1\Meyriem\APPLIC~1\Dealio\kb127\temp\installtype.ini C:\Program Files\Dealio C:\Program Files\Dealio\DealioAU.exe C:\Program Files\Dealio\kb127 C:\Program Files\Dealio\SearchSettingsKit.exe C:\Program Files\Dealio\kb127\Dealio Deskbar.exe C:\Program Files\Dealio\kb127\Dealio.dll C:\Program Files\Dealio\kb127\DealioRes409.dll C:\Program Files\Dealio\kb127\res C:\Program Files\Dealio\kb127\resDN C:\Program Files\Dealio\kb127\rules C:\Program Files\Dealio\kb127\temp C:\Program Files\Dealio\kb127\res\alerts.gif C:\Program Files\Dealio\kb127\res\alerts_over.gif C:\Program Files\Dealio\kb127\res\alerts_rec.gif C:\Program Files\Dealio\kb127\res\alerts_rec_over.gif C:\Program Files\Dealio\kb127\res\chevron-small.gif C:\Program Files\Dealio\kb127\res\DealioSearch.html C:\Program Files\Dealio\kb127\res\deals-leftcap.gif C:\Program Files\Dealio\kb127\res\deal_report.jpg C:\Program Files\Dealio\kb127\res\ebay_login.jpg C:\Program Files\Dealio\kb127\res\err_mainwindow.html C:\Program Files\Dealio\kb127\res\err_toolbar.html C:\Program Files\Dealio\kb127\res\global_scripts.js C:\Program Files\Dealio\kb127\res\headerbgthin.jpg C:\Program Files\Dealio\kb127\res\highlight-bg.png C:\Program Files\Dealio\kb127\res\logo.gif C:\Program Files\Dealio\kb127\res\logo_over.gif C:\Program Files\Dealio\kb127\res\man_toolbar.css C:\Program Files\Dealio\kb127\res\man_toolbar.html C:\Program Files\Dealio\kb127\res\man_toolbar.js C:\Program Files\Dealio\kb127\res\man_toolbarl.js C:\Program Files\Dealio\kb127\res\post-this-deal.gif C:\Program Files\Dealio\kb127\res\post-this-deal_over.gif C:\Program Files\Dealio\kb127\res\scripts.js C:\Program Files\Dealio\kb127\res\scroller.js C:\Program Files\Dealio\kb127\res\search-chevron.gif C:\Program Files\Dealio\kb127\res\search-chevron_over.gif C:\Program Files\Dealio\kb127\res\search_bg_blink.gif C:\Program Files\Dealio\kb127\res\separator.gif C:\Program Files\Dealio\kb127\res\settings.gif C:\Program Files\Dealio\kb127\res\settings_over.gif C:\Program Files\Dealio\kb127\res\yahoo-search.png C:\Program Files\Dealio\kb127\resDN\bottom.gif C:\Program Files\Dealio\kb127\resDN\chevron_down.gif C:\Program Files\Dealio\kb127\resDN\chevron_up.gif C:\Program Files\Dealio\kb127\resDN\close.gif C:\Program Files\Dealio\kb127\resDN\deskbar.css C:\Program Files\Dealio\kb127\resDN\deskbar.js C:\Program Files\Dealio\kb127\resDN\dispatch_helper.js C:\Program Files\Dealio\kb127\resDN\ebay_compatible.jpg C:\Program Files\Dealio\kb127\resDN\logo.gif C:\Program Files\Dealio\kb127\resDN\logo_chevron_bkg.gif C:\Program Files\Dealio\kb127\resDN\losing.gif C:\Program Files\Dealio\kb127\resDN\lost.gif C:\Program Files\Dealio\kb127\resDN\man_deskbar.html C:\Program Files\Dealio\kb127\resDN\menu_arrow.gif C:\Program Files\Dealio\kb127\resDN\menu_check.gif C:\Program Files\Dealio\kb127\resDN\no_image.gif C:\Program Files\Dealio\kb127\resDN\prod_img.gif C:\Program Files\Dealio\kb127\resDN\search_chevron.gif C:\Program Files\Dealio\kb127\resDN\spacer.gif C:\Program Files\Dealio\kb127\resDN\textfield_bkg.gif C:\Program Files\Dealio\kb127\resDN\top.gif C:\Program Files\Dealio\kb127\resDN\unknown.gif C:\Program Files\Dealio\kb127\resDN\winning.gif C:\Program Files\Dealio\kb127\resDN\won.gif C:\Program Files\Dealio\kb127\rules\index.76.35 C:\Program Files\Dealio\kb127\rules\rules.1.10.76 C:\Program Files\Dealio\kb127\rules\rules.1.109.43 C:\Program Files\Dealio\kb127\rules\rules.1.110.43 C:\Program Files\Dealio\kb127\rules\rules.1.12.52 C:\Program Files\Dealio\kb127\rules\rules.1.13.58 C:\Program Files\Dealio\kb127\rules\rules.1.130.58 C:\Program Files\Dealio\kb127\rules\rules.1.135.50 C:\Program Files\Dealio\kb127\rules\rules.1.153.44 C:\Program Files\Dealio\kb127\rules\rules.1.155.43 C:\Program Files\Dealio\kb127\rules\rules.1.156.49 C:\Program Files\Dealio\kb127\rules\rules.1.16.60 C:\Program Files\Dealio\kb127\rules\rules.1.161.52 C:\Program Files\Dealio\kb127\rules\rules.1.178.66 C:\Program Files\Dealio\kb127\rules\rules.1.184.55 C:\Program Files\Dealio\kb127\rules\rules.1.188.52 C:\Program Files\Dealio\kb127\rules\rules.1.189.45 C:\Program Files\Dealio\kb127\rules\rules.1.196.43 C:\Program Files\Dealio\kb127\rules\rules.1.198.56 C:\Program Files\Dealio\kb127\rules\rules.1.199.43 C:\Program Files\Dealio\kb127\rules\rules.1.200.53 C:\Program Files\Dealio\kb127\rules\rules.1.201.43 C:\Program Files\Dealio\kb127\rules\rules.1.202.43 C:\Program Files\Dealio\kb127\rules\rules.1.203.71 C:\Program Files\Dealio\kb127\rules\rules.1.205.62 C:\Program Files\Dealio\kb127\rules\rules.1.213.71 C:\Program Files\Dealio\kb127\rules\rules.1.214.49 C:\Program Files\Dealio\kb127\rules\rules.1.215.43 C:\Program Files\Dealio\kb127\rules\rules.1.216.67 C:\Program Files\Dealio\kb127\rules\rules.1.217.67 C:\Program Files\Dealio\kb127\rules\rules.1.218.52 C:\Program Files\Dealio\kb127\rules\rules.1.219.43 C:\Program Files\Dealio\kb127\rules\rules.1.220.43 C:\Program Files\Dealio\kb127\rules\rules.1.221.57 C:\Program Files\Dealio\kb127\rules\rules.1.222.43 C:\Program Files\Dealio\kb127\rules\rules.1.223.68 C:\Program Files\Dealio\kb127\rules\rules.1.226.68 C:\Program Files\Dealio\kb127\rules\rules.1.227.43 C:\Program Files\Dealio\kb127\rules\rules.1.228.62 C:\Program Files\Dealio\kb127\rules\rules.1.229.76 C:\Program Files\Dealio\kb127\rules\rules.1.23.63 C:\Program Files\Dealio\kb127\rules\rules.1.239.43 C:\Program Files\Dealio\kb127\rules\rules.1.24.43 C:\Program Files\Dealio\kb127\rules\rules.1.240.43 C:\Program Files\Dealio\kb127\rules\rules.1.241.43 C:\Program Files\Dealio\kb127\rules\rules.1.242.43 C:\Program Files\Dealio\kb127\rules\rules.1.243.43 C:\Program Files\Dealio\kb127\rules\rules.1.244.63 C:\Program Files\Dealio\kb127\rules\rules.1.245.43 C:\Program Files\Dealio\kb127\rules\rules.1.247.43 C:\Program Files\Dealio\kb127\rules\rules.1.248.43 C:\Program Files\Dealio\kb127\rules\rules.1.249.43 C:\Program Files\Dealio\kb127\rules\rules.1.250.43 C:\Program Files\Dealio\kb127\rules\rules.1.251.43 C:\Program Files\Dealio\kb127\rules\rules.1.252.43 C:\Program Files\Dealio\kb127\rules\rules.1.253.43 C:\Program Files\Dealio\kb127\rules\rules.1.254.43 C:\Program Files\Dealio\kb127\rules\rules.1.255.43 C:\Program Files\Dealio\kb127\rules\rules.1.256.43 C:\Program Files\Dealio\kb127\rules\rules.1.257.43 C:\Program Files\Dealio\kb127\rules\rules.1.279.43 C:\Program Files\Dealio\kb127\rules\rules.1.28.58 C:\Program Files\Dealio\kb127\rules\rules.1.282.75 C:\Program Files\Dealio\kb127\rules\rules.1.283.43 C:\Program Files\Dealio\kb127\rules\rules.1.284.43 C:\Program Files\Dealio\kb127\rules\rules.1.289.67 C:\Program Files\Dealio\kb127\rules\rules.1.290.62 C:\Program Files\Dealio\kb127\rules\rules.1.291.61 C:\Program Files\Dealio\kb127\rules\rules.1.296.43 C:\Program Files\Dealio\kb127\rules\rules.1.297.43 C:\Program Files\Dealio\kb127\rules\rules.1.304.43 C:\Program Files\Dealio\kb127\rules\rules.1.307.43 C:\Program Files\Dealio\kb127\rules\rules.1.308.75 C:\Program Files\Dealio\kb127\rules\rules.1.31.47 C:\Program Files\Dealio\kb127\rules\rules.1.310.46 C:\Program Files\Dealio\kb127\rules\rules.1.311.43 C:\Program Files\Dealio\kb127\rules\rules.1.315.43 C:\Program Files\Dealio\kb127\rules\rules.1.316.43 C:\Program Files\Dealio\kb127\rules\rules.1.317.43 C:\Program Files\Dealio\kb127\rules\rules.1.318.43 C:\Program Files\Dealio\kb127\rules\rules.1.319.49 C:\Program Files\Dealio\kb127\rules\rules.1.32.48 C:\Program Files\Dealio\kb127\rules\rules.1.334.44 C:\Program Files\Dealio\kb127\rules\rules.1.335.60 C:\Program Files\Dealio\kb127\rules\rules.1.336.44 C:\Program Files\Dealio\kb127\rules\rules.1.337.44 C:\Program Files\Dealio\kb127\rules\rules.1.338.75 C:\Program Files\Dealio\kb127\rules\rules.1.339.47 C:\Program Files\Dealio\kb127\rules\rules.1.34.43 C:\Program Files\Dealio\kb127\rules\rules.1.340.47 C:\Program Files\Dealio\kb127\rules\rules.1.341.47 C:\Program Files\Dealio\kb127\rules\rules.1.349.50 C:\Program Files\Dealio\kb127\rules\rules.1.35.48 C:\Program Files\Dealio\kb127\rules\rules.1.350.50 C:\Program Files\Dealio\kb127\rules\rules.1.351.51 C:\Program Files\Dealio\kb127\rules\rules.1.352.54 C:\Program Files\Dealio\kb127\rules\rules.1.353.51 C:\Program Files\Dealio\kb127\rules\rules.1.354.51 C:\Program Files\Dealio\kb127\rules\rules.1.357.62 C:\Program Files\Dealio\kb127\rules\rules.1.358.52 C:\Program Files\Dealio\kb127\rules\rules.1.359.52 C:\Program Files\Dealio\kb127\rules\rules.1.360.53 C:\Program Files\Dealio\kb127\rules\rules.1.361.54 C:\Program Files\Dealio\kb127\rules\rules.1.362.68 C:\Program Files\Dealio\kb127\rules\rules.1.363.58 C:\Program Files\Dealio\kb127\rules\rules.1.364.54 C:\Program Files\Dealio\kb127\rules\rules.1.365.53 C:\Program Files\Dealio\kb127\rules\rules.1.367.56 C:\Program Files\Dealio\kb127\rules\rules.1.368.58 C:\Program Files\Dealio\kb127\rules\rules.1.369.55 C:\Program Files\Dealio\kb127\rules\rules.1.370.56 C:\Program Files\Dealio\kb127\rules\rules.1.371.56 C:\Program Files\Dealio\kb127\rules\rules.1.372.57 C:\Program Files\Dealio\kb127\rules\rules.1.373.55 C:\Program Files\Dealio\kb127\rules\rules.1.375.56 C:\Program Files\Dealio\kb127\rules\rules.1.376.57 C:\Program Files\Dealio\kb127\rules\rules.1.377.55 C:\Program Files\Dealio\kb127\rules\rules.1.378.65 C:\Program Files\Dealio\kb127\rules\rules.1.384.58 C:\Program Files\Dealio\kb127\rules\rules.1.386.71 C:\Program Files\Dealio\kb127\rules\rules.1.387.59 C:\Program Files\Dealio\kb127\rules\rules.1.388.59 C:\Program Files\Dealio\kb127\rules\rules.1.389.59 C:\Program Files\Dealio\kb127\rules\rules.1.390.60 C:\Program Files\Dealio\kb127\rules\rules.1.391.60 C:\Program Files\Dealio\kb127\rules\rules.1.392.60 C:\Program Files\Dealio\kb127\rules\rules.1.393.60 C:\Program Files\Dealio\kb127\rules\rules.1.394.60 C:\Program Files\Dealio\kb127\rules\rules.1.396.61 C:\Program Files\Dealio\kb127\rules\rules.1.397.61 C:\Program Files\Dealio\kb127\rules\rules.1.398.60 C:\Program Files\Dealio\kb127\rules\rules.1.399.60 C:\Program Files\Dealio\kb127\rules\rules.1.403.61 C:\Program Files\Dealio\kb127\rules\rules.1.404.63 C:\Program Files\Dealio\kb127\rules\rules.1.405.61 C:\Program Files\Dealio\kb127\rules\rules.1.406.61 C:\Program Files\Dealio\kb127\rules\rules.1.407.76 C:\Program Files\Dealio\kb127\rules\rules.1.408.63 C:\Program Files\Dealio\kb127\rules\rules.1.409.61 C:\Program Files\Dealio\kb127\rules\rules.1.412.62 C:\Program Files\Dealio\kb127\rules\rules.1.413.62 C:\Program Files\Dealio\kb127\rules\rules.1.414.62 C:\Program Files\Dealio\kb127\rules\rules.1.415.62 C:\Program Files\Dealio\kb127\rules\rules.1.416.62 C:\Program Files\Dealio\kb127\rules\rules.1.417.62 C:\Program Files\Dealio\kb127\rules\rules.1.418.62 C:\Program Files\Dealio\kb127\rules\rules.1.419.62 C:\Program Files\Dealio\kb127\rules\rules.1.420.62 C:\Program Files\Dealio\kb127\rules\rules.1.421.62 C:\Program Files\Dealio\kb127\rules\rules.1.423.63 C:\Program Files\Dealio\kb127\rules\rules.1.424.63 C:\Program Files\Dealio\kb127\rules\rules.1.425.63 C:\Program Files\Dealio\kb127\rules\rules.1.426.63 C:\Program Files\Dealio\kb127\rules\rules.1.427.63 C:\Program Files\Dealio\kb127\rules\rules.1.428.65 C:\Program Files\Dealio\kb127\rules\rules.1.429.63 C:\Program Files\Dealio\kb127\rules\rules.1.430.63 C:\Program Files\Dealio\kb127\rules\rules.1.432.65 C:\Program Files\Dealio\kb127\rules\rules.1.433.64 C:\Program Files\Dealio\kb127\rules\rules.1.434.65 C:\Program Files\Dealio\kb127\rules\rules.1.435.64 C:\Program Files\Dealio\kb127\rules\rules.1.436.76 C:\Program Files\Dealio\kb127\rules\rules.1.437.64 C:\Program Files\Dealio\kb127\rules\rules.1.438.71 C:\Program Files\Dealio\kb127\rules\rules.1.439.71 C:\Program Files\Dealio\kb127\rules\rules.1.440.75 C:\Program Files\Dealio\kb127\rules\rules.1.442.73 C:\Program Files\Dealio\kb127\rules\rules.1.443.73 C:\Program Files\Dealio\kb127\rules\rules.1.444.73 C:\Program Files\Dealio\kb127\rules\rules.1.445.68 C:\Program Files\Dealio\kb127\rules\rules.1.446.69 C:\Program Files\Dealio\kb127\rules\rules.1.450.67 C:\Program Files\Dealio\kb127\rules\rules.1.451.67 C:\Program Files\Dealio\kb127\rules\rules.1.452.68 C:\Program Files\Dealio\kb127\rules\rules.1.453.68 C:\Program Files\Dealio\kb127\rules\rules.1.454.69 C:\Program Files\Dealio\kb127\rules\rules.1.456.69 C:\Program Files\Dealio\kb127\rules\rules.1.457.75 C:\Program Files\Dealio\kb127\rules\rules.1.458.70 C:\Program Files\Dealio\kb127\rules\rules.1.459.70 C:\Program Files\Dealio\kb127\rules\rules.1.460.69 C:\Program Files\Dealio\kb127\rules\rules.1.462.74 C:\Program Files\Dealio\kb127\rules\rules.1.463.69 C:\Program Files\Dealio\kb127\rules\rules.1.464.70 C:\Program Files\Dealio\kb127\rules\rules.1.465.68 C:\Program Files\Dealio\kb127\rules\rules.1.468.70 C:\Program Files\Dealio\kb127\rules\rules.1.469.70 C:\Program Files\Dealio\kb127\rules\rules.1.470.70 C:\Program Files\Dealio\kb127\rules\rules.1.471.73 C:\Program Files\Dealio\kb127\rules\rules.1.472.70 C:\Program Files\Dealio\kb127\rules\rules.1.478.74 C:\Program Files\Dealio\kb127\rules\rules.1.479.73 C:\Program Files\Dealio\kb127\rules\rules.1.480.68 C:\Program Files\Dealio\kb127\rules\rules.1.481.71 C:\Program Files\Dealio\kb127\rules\rules.1.482.74 C:\Program Files\Dealio\kb127\rules\rules.1.49.67 C:\Program Files\Dealio\kb127\rules\rules.1.50.43 C:\Program Files\Dealio\kb127\rules\rules.1.500.71 C:\Program Files\Dealio\kb127\rules\rules.1.501.74 C:\Program Files\Dealio\kb127\rules\rules.1.502.71 C:\Program Files\Dealio\kb127\rules\rules.1.51.69 C:\Program Files\Dealio\kb127\rules\rules.1.52.72 C:\Program Files\Dealio\kb127\rules\rules.1.520.76 C:\Program Files\Dealio\kb127\rules\rules.1.521.76 C:\Program Files\Dealio\kb127\rules\rules.1.522.76 C:\Program Files\Dealio\kb127\rules\rules.1.53.51 C:\Program Files\Dealio\kb127\rules\rules.1.531.76 C:\Program Files\Dealio\kb127\rules\rules.1.532.75 C:\Program Files\Dealio\kb127\rules\rules.1.534.75 C:\Program Files\Dealio\kb127\rules\rules.1.54.47 C:\Program Files\Dealio\kb127\rules\rules.1.55.45 C:\Program Files\Dealio\kb127\rules\rules.1.56.69 C:\Program Files\Dealio\kb127\rules\rules.1.57.43 C:\Program Files\Dealio\kb127\rules\rules.1.58.47 C:\Program Files\Dealio\kb127\rules\rules.1.593.76 C:\Program Files\Dealio\kb127\rules\rules.1.595.76 C:\Program Files\Dealio\kb127\rules\rules.1.63.57 C:\Program Files\Dealio\kb127\rules\rules.1.66.47 C:\Program Files\Dealio\kb127\rules\rules.1.70.75 C:\Program Files\Dealio\kb127\rules\rules.1.71.43 C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Dealio C:\Program Files\GamesBar C:\Program Files\GamesBar\Localization-French.ini C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Kiwee Toolbar2 C:\Program Files\Search Settings C:\Program Files\Search Settings\kb127 C:\Program Files\Search Settings\SearchSettings.exe C:\Program Files\Search Settings\kb127\res C:\Program Files\Search Settings\kb127\SearchSettings.dll C:\Program Files\Search Settings\kb127\SearchSettingsRes409.dll C:\Program Files\Search Settings\kb127\temp -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://home.sweetim.com"'>http://home.sweetim.com" "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://home.sweetim.com" --------------------\\ Recherche d'autres infections Aucune autre infection trouvée ! 1 - "C:\ToolBar SD\TB_1.txt" - 03/01/2009|19:14 - Option : [1] -----------\\ Fin du rapport a 19:14:49,71 avec tous mes remerciements cordialement

le 3 janvier 2009
13 réponses

Programme a démarrage automatique non recommandé

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Analyses et éradication malwares

Merci a toi de ta reponse voici le rapport hjackthis Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 00:04:37, on 03/01/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16762) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\Marvell\61xx\svc\mvraidsvc.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Marvell\61xx\Apache2\bin\Apache.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\TUProgSt.exe C:\Program Files\Marvell\61xx\Apache2\bin\Apache.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\Program Files\USB Disk Win98 Driver\Res.EXE C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE C:\Program Files\Logitech\SetPoint\LBTWiz.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Sony Corporation\Image Transfer\SonyTray.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\TuneUp Utilities 2009\MemOptimizer.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.5.131\KiweeIEToolbar.dll R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll R3 - URLSearchHook: (no name) - {0A94B116-4504-4e26-AB05-E61E474AA38B} - (no file) R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.5.131\KiweeIEToolbar.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll O3 - Toolbar: Kiwee Toolbar - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - C:\Program Files\Kiwee Toolbar2\1.5.131\KiweeIEToolbar.dll O3 - Toolbar: (no name) - {F4D76F09-7896-458a-890F-E1F05C46069F} - (no file) O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\Program Files\Dealio\kb127\Dealio.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [uSB Storage Toolbox] C:\Program Files\USB Disk Win98 Driver\Res.EXE O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [EPSON Stylus CX3200] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX3200" /O6 "USB001" /M "Stylus CX3200" O4 - HKLM\..\Run: [bluetooth Connection Assistant] LBTWIZ.EXE -silent O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [ManyCam] "C:\Program Files\ManyCam 2.3\ManyCam.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\RunOnce: [DependencyCheck] Performed O4 - Global Startup: Image Transfer.lnk = ? O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\Program Files\IncrediMail\bin\resources\WebMenuImg.htm O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Set As Messenger Live Display Picture - \SetMSNDP.htm O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/dow...llerControl.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownlo.../sysreqlab3.cab O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/...nst20040510.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1207656843078 O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownlo.../sysreqlab2.cab O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-f889be5d0db2a93d.spaces.live.co...ad/MsnPUpld.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichier...ion_3_1_0_4.cab O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://kiw.imgag.com/imgag/cp/install/crusher-kiwen.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing) O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: Marvell RAID Event Agent (Marvell RAID) - Unknown owner - C:\Program Files\Marvell\61xx\svc\mvraidsvc.exe O23 - Service: MRU Web Service (MRUWebService) - Apache Software Foundation - C:\Program Files\Marvell\61xx\Apache2\bin\Apache.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe -- End of file - 12517 bytes wowwwwww je pense qu il doit y avoir du nettoyage a faire !!!! merci beaucoup de m aider cordialement a toi

le 2 janvier 2009
13 réponses

Programme a démarrage automatique non recommandé

Ainsisoitje a posté un sujet dans Analyses et éradication malwares

bonsoir J ai un souci avec un programme ke je ne connais pas et je ne le trouve nul part sur mon ordinateur kan je fais rechercher catégorie : programme à démarrage automatique non recommandé programme principal : PERFORMED editeur : inconnu je ne sais comment l enlever merci a toute l équipe pour votre reponse

le 2 janvier 2009
13 réponses

probleme detecte par windows

Ainsisoitje a répondu à un(e) sujet de Ainsisoitje dans Software

Bonsoir Tilou j avoue ne pas connaitre bios ni comment faire pour desactivé une fonction bios pour PS/2 Keyboard merci si tu peux m aider bonne fin d année a toi et surtout une bonne année 2009

le 30 décembre 2008
2 réponses

probleme detecte par windows

Ainsisoitje a posté un sujet dans Software

bonjour à toute l équipe j ai un probleme dans le système windows m indique PS/2 Keyboard ACPI\PNP0303\4&1400782C&0 Ce périphérique n'est pas présent, ne fonctionne pas correctement, ou tous ses pilotes ne sont pas installés. pour renseignement j ai : logitech ensemble clavier souris Description Logitech Cordless USB Keyboard Nom Étendu (101 ou 102 touches) Disposition 0000040C ID de périphérique Plug-and-Play USB\VID_046D&PID_C512&MI_00\6&16E76A0F&0&0000 Nombre de touches de fonction 12 Pilote c:\windows\system32\drivers\hidusb.sys (5.1.2600.5512 (xpsp.080413-2108), 10,13 Ko (10 368 Octets), 05/08/2004 14:00) Je ne connais pas celui ci : Description PS/2 Keyboard Nom Étendu (101 ou 102 touches) Disposition 0000040C ID de périphérique Plug-and-Play ACPI\PNP0303\4&1400782C&0 Nombre de touches de fonction 12 Port E/S 0x00000060-0x00000060 Port E/S 0x00000064-0x00000064 Canal IRQ IRQ 1 Pilote c:\windows\system32\drivers\i8042prt.sys (5.1.2600.5512 (xpsp.080413-2108), 52,88 Ko (54 144 Octets), 05/08/2004 14:00) je vous remercie de votre intervention et Joyeuses fetes a toute l equipe

le 26 décembre 2008
2 réponses

infection du pc

Ainsisoitje a posté un sujet dans Analyses et éradication malwares

bonjour Il semblerait malgré ANTIVIR AVIRA mon pc est infecté je ne sais plus koi faire je vous joins le rapport pandascan ;******************************************************************************* ********************************************************************************* ******************* ANALYSIS: 2008-07-24 21:46:00 PROTECTIONS: 1 MALWARE: 11 SUSPECTS: 0 ;******************************************************************************* ********************************************************************************* ******************* PROTECTIONS Description Version Active Updated ;=============================================================================== ================================================================================= =================== Avira AntiVir PersonalEdition 8.0.1.26 No Yes ;=============================================================================== ================================================================================= =================== MALWARE Id Description Type Active Severity Disinfectable Disinfected Location ;=============================================================================== ================================================================================= =================== 00145405 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppqBD.tmp 00145405 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppqA.tmp 00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppq19.tmp 00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppqC8.tmp 00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\Meyriem\Cookies\meyriem@xiti[1].txt 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppq2.tmp 00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppqC0.tmp 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppqC5.tmp 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppq7A.tmp 00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppqC2.tmp 00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppqC7.tmp 00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppqEE.tmp 00168109 Cookie/Adtech TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppqC1.tmp 00168116 Cookie/Comclick TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppqD.tmp 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppq18.tmp 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Program Files\Yahoo!\YPSR\Quarantine\ppqC6.tmp 01271851 Generic Malware Virus/Trojan Yes 0 Yes No C:\Program Files\AskPBar\bar\1.bin\ASKPBAR.DLL ;=============================================================================== ================================================================================= =================== SUSPECTS Sent Location 8 ;=============================================================================== ================================================================================= =================== ;=============================================================================== ================================================================================= =================== VULNERABILITIES Id Severity Description 8 ;=============================================================================== ================================================================================= =================== ;=============================================================================== ================================================================================= =================== je vous remercie par avance de votre aide cordialement a vous

le 24 juillet 2008
1 réponse

Mon pc rame sur le net

Ainsisoitje a posté un sujet dans Analyses et éradication malwares

a toute l equipe c encore moi je vous joins un rapport sur la memoire de mon pc --------[ EVEREST Home Edition © 2003-2005 Lavalys, Inc. ]------------------------------------------------------------ Version EVEREST v2.20.405/fr Site web http://www.lavalys.com/ Type de rapport Rapport rapide Ordinateur PERSO-91751151E Générateur Michèle Système d'exploitation Microsoft Windows XP Professional 5.1.2600 (WinXP Retail) Date 2008-03-22 Heure 23:58 --------[ Mémoire ]----------------------------------------------------------------------------------------------------- Mémoire physique: Total 2047 Mo Utilisé 553 Mo Disponible 1493 Mo Utilisation 27 % Zone de swap: Total 2661 Mo Utilisé 546 Mo Disponible 2114 Mo Utilisation 21 % Mémoire virtuelle: Total 4708 Mo Utilisé 1100 Mo Disponible 3608 Mo Utilisation 23 % Physical Address Extension (PAE): Supporté par le système d'exploitation Oui Supporté par le processeur Oui Active Oui --------[ Debug - PCI ]------------------------------------------------------------------------------------------------- B00 D00 F00: Intel® G33/G31/P35 Express Chipset Processor to I/O Controller - 29C0 [NoDB] Offset 00: 86 80 C0 29 06 00 90 20 02 00 00 06 00 00 00 00 Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 76 82 Offset 30: 00 00 00 00 E0 00 00 00 00 00 00 00 00 00 00 00 Offset 40: 01 90 D1 FE 00 00 00 00 01 00 FB 7F 00 00 00 00 Offset 50: 00 00 00 00 03 00 00 00 00 00 00 00 00 00 00 00 Offset 60: 01 00 00 E0 00 00 00 00 01 80 D1 FE 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 10 11 11 01 00 33 33 00 FF 03 00 00 00 1A 38 00 Offset A0: 20 00 00 08 00 00 00 80 00 00 00 80 00 00 00 80 Offset B0: 00 80 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 49 00 00 00 00 00 00 64 Offset E0: 09 00 0B 01 20 40 2D 09 47 4C 16 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 90 0F 03 00 00 00 00 00 B00 D01 F00: Intel® G33/G31/P35 Express Chipset PCI Express Root Port - 29C1 [NoDB] Offset 00: 86 80 C1 29 07 01 10 00 02 00 04 06 08 00 01 00 Offset 10: 00 00 00 00 00 00 00 00 00 01 01 00 D0 D0 00 00 Offset 20: 00 FA 90 FE 01 D0 F1 DF 00 00 00 00 00 00 00 00 Offset 30: 00 00 00 00 88 00 00 00 00 00 00 00 10 01 0A 00 Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 02 Offset 80: 01 90 03 C8 08 00 00 00 0D 80 00 00 86 80 C1 29 Offset 90: 05 A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 10 00 41 01 00 80 00 00 00 00 00 00 01 25 01 02 Offset B0: 40 00 01 11 80 25 00 00 C0 01 48 00 00 00 00 00 Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 01 00 03 E1 3F 80 90 0F 03 00 00 F0 00 F5 B00 D1A F00: Intel® ICH9 Family USB Universal Host Controller - 2937 [NoDB] Offset 00: 86 80 37 29 05 00 90 02 02 00 03 0C 00 00 80 00 Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 20: 01 C8 00 00 00 00 00 00 00 00 00 00 43 10 77 82 Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 10 01 00 00 Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 50: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00 Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00 B00 D1A F01: Intel® ICH9 Family USB Universal Host Controller - 2938 [NoDB] Offset 00: 86 80 38 29 05 00 90 02 02 00 03 0C 00 00 00 00 Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 20: 81 C8 00 00 00 00 00 00 00 00 00 00 43 10 77 82 Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 15 02 00 00 Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 50: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00 Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00 B00 D1A F02: Intel® ICH9 Family USB Universal Host Controller - 2939 [NoDB] Offset 00: 86 80 39 29 05 00 90 02 02 00 03 0C 00 00 00 00 Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 20: 01 CC 00 00 00 00 00 00 00 00 00 00 43 10 77 82 Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 12 03 00 00 Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 50: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00 Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00 B00 D1A F07: Intel® ICH9 Family USB2 Enhanced Host Controller - 293C [NoDB] Offset 00: 86 80 3C 29 06 00 90 02 02 20 03 0C 00 00 00 00 Offset 10: 00 FC FF F9 00 00 00 00 00 00 00 00 00 00 00 00 Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 77 82 Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 12 03 00 00 Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 50: 01 58 C2 C9 00 00 00 00 0A 98 A0 20 00 00 00 00 Offset 60: 20 20 FF 01 00 00 00 00 01 00 00 00 00 20 00 C0 Offset 70: 00 00 DF 0F 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 00 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 09 00 06 20 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 AA FF 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 88 85 40 00 86 0F 02 00 06 17 02 20 B00 D1B F00: Microsoft UAA Bus Driver for High Definition Audio [NoDB] Offset 00: 86 80 3E 29 06 00 10 00 02 00 03 04 08 00 00 00 Offset 10: 04 80 FF F9 00 00 00 00 00 00 00 00 00 00 00 00 Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 9F 82 Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 16 01 00 00 Offset 40: 01 00 00 07 07 00 00 00 00 00 00 00 00 00 00 00 Offset 50: 01 60 42 C8 00 00 00 00 00 00 00 00 00 00 00 00 Offset 60: 05 70 80 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 10 00 91 00 00 00 00 10 00 08 10 00 00 00 00 00 Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 04 00 01 00 00 00 00 31 00 A3 02 00 00 00 00 Offset D0: 61 00 A3 02 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00 B00 D1C F00: Intel® ICH9 Family PCI Express Root Port 1 - 2940 [NoDB] Offset 00: 86 80 40 29 07 01 10 00 02 00 04 06 08 00 81 00 Offset 10: 00 00 00 00 00 00 00 00 00 04 04 00 F0 00 00 20 Offset 20: F0 FF 00 00 F1 F8 F1 F8 00 00 00 00 00 00 00 00 Offset 30: 00 00 00 00 40 00 00 00 00 00 00 00 11 01 06 00 Offset 40: 10 80 41 01 00 80 00 00 00 00 10 00 11 4C 11 01 Offset 50: 00 00 01 10 60 05 00 00 00 00 00 00 00 00 00 00 Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 05 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 0D A0 00 00 43 10 77 82 00 00 00 00 00 00 00 00 Offset A0: 01 00 02 C8 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 11 08 00 00 00 00 Offset E0: 00 00 C7 00 06 07 08 00 30 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00 B00 D1C F04: Intel® ICH9 Family PCI Express Root Port 5 - 2948 [NoDB] Offset 00: 86 80 48 29 07 01 10 00 02 00 04 06 08 00 81 00 Offset 10: 00 00 00 00 00 00 00 00 00 03 03 00 E0 E0 00 00 Offset 20: B0 FE B0 FE F1 FF 01 00 00 00 00 00 00 00 00 00 Offset 30: 00 00 00 00 40 00 00 00 00 00 00 00 11 01 06 00 Offset 40: 10 80 41 01 00 80 00 00 00 00 10 00 11 2C 11 05 Offset 50: 40 00 11 30 60 05 00 00 00 00 48 01 00 00 00 00 Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 05 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 0D A0 00 00 43 10 77 82 00 00 00 00 00 00 00 00 Offset A0: 01 00 02 C8 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 11 08 00 00 00 00 Offset E0: 00 00 C7 00 06 07 08 00 30 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00 B00 D1C F05: Intel® ICH9 Family PCI Express Root Port 6 - 294A [NoDB] Offset 00: 86 80 4A 29 07 01 10 00 02 00 04 06 08 00 81 00 Offset 10: 00 00 00 00 00 00 00 00 00 02 02 00 F0 00 00 00 Offset 20: A0 FE A0 FE F1 FF 01 00 00 00 00 00 00 00 00 00 Offset 30: 00 00 00 00 40 00 00 00 00 00 00 00 10 02 06 00 Offset 40: 10 80 41 01 00 80 00 00 00 00 10 00 11 2C 11 06 Offset 50: 40 00 11 30 60 05 00 00 00 00 48 01 00 00 00 00 Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 05 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 0D A0 00 00 43 10 77 82 00 00 00 00 00 00 00 00 Offset A0: 01 00 02 C8 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 11 08 00 00 00 00 Offset E0: 00 00 C7 00 06 07 08 00 30 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00 B00 D1D F00: Intel® ICH9 Family USB Universal Host Controller - 2934 [NoDB] Offset 00: 86 80 34 29 05 00 90 02 02 00 03 0C 00 00 80 00 Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 20: 81 C0 00 00 00 00 00 00 00 00 00 00 43 10 77 82 Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 17 01 00 00 Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 50: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00 Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00 B00 D1D F01: Intel® ICH9 Family USB Universal Host Controller - 2935 [NoDB] Offset 00: 86 80 35 29 05 00 90 02 02 00 03 0C 00 00 00 00 Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 20: 01 C4 00 00 00 00 00 00 00 00 00 00 43 10 77 82 Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 13 02 00 00 Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 50: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00 Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00 B00 D1D F02: Intel® ICH9 Family USB Universal Host Controller - 2936 [NoDB] Offset 00: 86 80 36 29 05 00 90 02 02 00 03 0C 00 00 00 00 Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 20: 81 C4 00 00 00 00 00 00 00 00 00 00 43 10 77 82 Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 12 03 00 00 Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 50: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00 Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00 B00 D1D F07: Intel® ICH9 Family USB2 Enhanced Host Controller - 293A [NoDB] Offset 00: 86 80 3A 29 06 00 90 02 02 20 03 0C 00 00 00 00 Offset 10: 00 F8 FF F9 00 00 00 00 00 00 00 00 00 00 00 00 Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 77 82 Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 17 01 00 00 Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 50: 01 58 C2 C9 00 00 00 00 0A 98 A0 20 00 00 00 00 Offset 60: 20 20 FF 01 00 00 00 00 01 00 00 00 00 20 00 C0 Offset 70: 00 00 CF 0F 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 00 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 09 00 06 20 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 AA FF 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 88 85 40 00 86 0F 02 00 06 17 02 20 B00 D1E F00: Intel 82801xx I/O Controller Hub Offset 00: 86 80 4E 24 07 01 10 00 92 01 04 06 00 00 01 00 Offset 10: 00 00 00 00 00 00 00 00 00 05 05 20 F0 00 80 22 Offset 20: F0 FF 00 00 F1 FF 01 00 00 00 00 00 00 00 00 00 Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 FF 00 02 00 Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 12 00 00 Offset 50: 0D 00 00 00 43 10 77 82 00 00 00 00 00 00 00 00 Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00 B00 D1F F00: Pont ISA standard PCI [NoDB] Offset 00: 86 80 18 29 07 00 10 02 02 00 01 06 00 00 80 00 Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 77 82 Offset 30: 00 00 00 00 E0 00 00 00 00 00 00 00 00 00 00 00 Offset 40: 01 08 00 00 80 00 00 00 81 04 00 00 10 00 00 00 Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 60: 8B 8A 85 8E D0 00 00 00 80 83 8F 87 F8 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 00 00 0E 14 95 02 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 28 06 00 00 39 02 00 00 13 00 00 00 00 03 00 40 Offset B0: 00 00 F0 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 33 22 11 00 67 45 00 00 C0 C0 00 00 00 00 00 00 Offset E0: 09 00 0C 10 20 00 24 0A 60 00 00 00 00 00 00 00 Offset F0: 01 C0 D1 FE 2A F1 0E 00 86 0F 02 00 00 00 00 00 B00 D1F F02: Intel® ICH9 2 port Serial ATA Storage Controller 1 - 2921 [NoDB] Offset 00: 86 80 21 29 07 00 B0 02 02 8F 01 01 00 00 00 00 Offset 10: 01 B0 00 00 01 AC 00 00 81 A8 00 00 01 A8 00 00 Offset 20: 81 A4 00 00 01 A4 00 00 00 00 00 00 43 10 77 82 Offset 30: 00 00 00 00 70 00 00 00 00 00 00 00 16 02 00 00 Offset 40: 00 80 03 A3 00 00 00 00 04 00 00 02 00 00 00 00 Offset 50: 00 00 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 01 B0 03 00 08 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 05 70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 03 82 93 01 00 00 00 00 00 00 01 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 00 00 00 05 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00 B00 D1F F03: Intel® ICH9 Family SMBus Controller - 2930 [NoDB] Offset 00: 86 80 30 29 03 00 80 02 02 00 05 0C 00 00 00 00 Offset 10: 04 F4 FF F9 00 00 00 00 00 00 00 00 00 00 00 00 Offset 20: 01 04 00 00 00 00 00 00 00 00 00 00 43 10 77 82 Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 0E 03 00 00 Offset 40: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 60: 03 04 04 00 00 00 08 08 00 00 00 00 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00 B00 D1F F05: Intel® ICH9 2 port Serial ATA Storage Controller 2 - 2926 [NoDB] Offset 00: 86 80 26 29 07 00 B0 02 02 85 01 01 00 00 00 00 Offset 10: 01 C0 00 00 01 BC 00 00 81 B8 00 00 01 B8 00 00 Offset 20: 81 B4 00 00 01 B4 00 00 00 00 00 00 43 10 77 82 Offset 30: 00 00 00 00 70 00 00 00 00 00 00 00 16 02 00 00 Offset 40: 00 80 00 80 00 00 00 00 00 00 00 00 00 00 00 00 Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 01 B0 03 00 08 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 05 70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 03 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00 B01 D00 F00: NVIDIA GeForce 8600 GT [NoDB] Offset 00: DE 10 02 04 07 00 10 00 A1 00 00 03 08 00 00 00 Offset 10: 00 00 00 FD 0C 00 00 D0 00 00 00 00 04 00 00 FA Offset 20: 00 00 00 00 01 DC 00 00 00 00 00 00 77 73 00 00 Offset 30: 00 00 00 00 60 00 00 00 00 00 00 00 10 01 00 00 Offset 40: 77 73 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 50: 01 00 00 00 01 00 00 00 CE D6 23 00 00 00 00 00 Offset 60: 01 68 02 00 00 00 00 00 05 78 80 00 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 10 00 01 00 E0 84 2C 01 Offset 80: 10 28 00 00 01 3D 01 00 48 00 01 11 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 B02 D00 F00: Attansic L1 Gigabit Ethernet 10/100/1000Base-T Controller [NoDB] Offset 00: 69 19 48 10 06 00 10 00 B0 00 00 02 08 00 00 00 Offset 10: 04 00 AC FE 00 00 00 00 00 00 00 00 00 00 00 00 Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 26 82 Offset 30: 00 00 AA FE 40 00 00 00 00 00 00 00 11 01 00 00 Offset 40: 01 48 02 C0 00 00 00 00 05 58 80 00 00 00 00 00 Offset 50: 00 00 00 00 00 00 00 00 10 00 01 00 80 7F 28 00 Offset 60: 00 20 1A 00 11 F4 03 00 40 00 11 10 03 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 00 00 00 00 69 19 48 10 00 00 00 00 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 B03 D00 F00: Marvell 61xx Marvell RAID Controller [NoDB] Offset 00: AB 11 21 61 07 00 10 00 B2 8F 01 01 08 00 00 00 Offset 10: 01 EC 00 00 81 E8 00 00 01 E8 00 00 81 E4 00 00 Offset 20: 01 E4 00 00 00 FC BF FE 00 00 00 00 43 10 A2 82 Offset 30: 00 00 00 00 48 00 00 00 00 00 00 00 10 01 00 00 Offset 40: 24 C9 C0 00 1F 80 00 00 01 50 02 5A 00 20 00 13 Offset 50: 05 E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 60: D0 C4 21 40 B0 00 00 00 00 00 00 00 00 00 00 00 Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Offset E0: 10 00 11 00 C0 0F 0C 00 00 24 08 00 11 A4 03 00 Offset F0: 40 00 11 10 00 00 00 00 00 00 00 00 00 00 00 00 --------[ Debug - Video BIOS ]------------------------------------------------------------------------------------------ C000:0000 U.f.K7400.L.w.VIDEO ..........IBM VGA Compatible........08/02/07 C000:0040 ..................8.ws................"..f......PMIDl.o....... C000:0080 .....3F.M...}.......@...........1T...........@......j!......... C000:00C0 ..J!........HWEAPCIR............f.......NVIDIA Geforce 8600GT VG C000:0100 A BIOS...................................................Version C000:0140 60.84.35.00.12 ...Copyright © 1996-2006 NVIDIA Corp.......... C000:0180 G84 Board - p402h00 ...............Chip Rev .................. C000:01C0 ........................................BIT......F2...X.B...\.C. C000:0200 ..t.D.....A.....I.....L.....M.....N.....P.....S.....T.....U..... C000:0240 V.....c.....x.....i.&........5.`.(................\\.........O.3 C000:0280 ...c.~6O..P.P.P.PRQfQ.P.....Q.FO{...........................B... C000:02C0 ...P9..S.(.2..2#..#......*.~8T8......5.`...........03/20/07..... C000:0300 ................7.7..x.................O. .....7.7..x......... C000:0340 ,.....O.1...L...5...........G.7.7.J.q...O.....Q..........E...d. C000:0380 ..............a.......f...............n...".q.....t...y...x.x.z. C000:03C0 ..!.!.!.Q.{.{.{.........................O.2....u.......!P....... --------[ Debug - Unknown ]--------------------------------------------------------------------------------------------- Monitor NUL0001: Écran Plug-and-Play [NoDB] Motherboard 64-0401-000001-00101111-071907-Bearlake$A0807000_BIOS DATE: 07/19/07 11:46:27 VER: 08.00.12 Motherboard DMIMOBO: ASUSTeK Computer INC. P5K SE Motherboard DMISYS: System manufacturer P5K SE Motherboard Unknown PCI/AGP 10DE-0402: NVIDIA GeForce 8600 GT [NoDB] PCI/AGP 11AB-6121: Marvell 61xx Marvell RAID Controller [NoDB] PCI/AGP 1969-1048: Attansic L1 Gigabit Ethernet 10/100/1000Base-T Controller [NoDB] PCI/AGP 8086-2918: Pont ISA standard PCI [NoDB] PCI/AGP 8086-2921: Intel® ICH9 2 port Serial ATA Storage Controller 1 - 2921 [NoDB] PCI/AGP 8086-2926: Intel® ICH9 2 port Serial ATA Storage Controller 2 - 2926 [NoDB] PCI/AGP 8086-2930: Intel® ICH9 Family SMBus Controller - 2930 [NoDB] PCI/AGP 8086-2934: Intel® ICH9 Family USB Universal Host Controller - 2934 [NoDB] PCI/AGP 8086-2935: Intel® ICH9 Family USB Universal Host Controller - 2935 [NoDB] PCI/AGP 8086-2936: Intel® ICH9 Family USB Universal Host Controller - 2936 [NoDB] PCI/AGP 8086-2937: Intel® ICH9 Family USB Universal Host Controller - 2937 [NoDB] PCI/AGP 8086-2938: Intel® ICH9 Family USB Universal Host Controller - 2938 [NoDB] PCI/AGP 8086-2939: Intel® ICH9 Family USB Universal Host Controller - 2939 [NoDB] PCI/AGP 8086-293A: Intel® ICH9 Family USB2 Enhanced Host Controller - 293A [NoDB] PCI/AGP 8086-293C: Intel® ICH9 Family USB2 Enhanced Host Controller - 293C [NoDB] PCI/AGP 8086-293E: Microsoft UAA Bus Driver for High Definition Audio [NoDB] PCI/AGP 8086-2940: Intel® ICH9 Family PCI Express Root Port 1 - 2940 [NoDB] PCI/AGP 8086-2948: Intel® ICH9 Family PCI Express Root Port 5 - 2948 [NoDB] PCI/AGP 8086-294A: Intel® ICH9 Family PCI Express Root Port 6 - 294A [NoDB] PCI/AGP 8086-29C0: Intel® G33/G31/P35 Express Chipset Processor to I/O Controller - 29C0 [NoDB] PCI/AGP 8086-29C1: Intel® G33/G31/P35 Express Chipset PCI Express Root Port - 29C1 [NoDB] ------------------------------------------------------------------------------------------------------------------------ The names of actual companies and products mentioned herein may be the trademarks of their respective owners. voila j ai tout donné ce ke je pouvais j espère trouver une solution a mon prob amicalement

le 22 mars 2008
1 réponse

PROBLEME DE RALENTISSEMENT PC

Ainsisoitje a posté un sujet dans Analyses et éradication malwares

bjr a toute l équipe Et oui me revoila j ai grave prob pc j ai tout changé le systeme mais il rame tjrs sais plus koi faire je joins - nouveau systeme - rapport hijackthis - rapport BitDefendeur - rapport avira antivir ______________________________ Système d'exploitation Microsoft Windows XP Professionnel Version 5.1.2600 Service Pack 2 Nu 2600 Éditeur Microsoft Corporation Ordinateur PERSO-91751151E Fabricant System manufacturer Modèle P5K SE Type PC à base X86 Processeur x86 Family 6 Model 15 Stepping 13 GenuineIntel ~2407 Mhz Processeur x86 Family 6 Model 15 Stepping 13 GenuineIntel ~2407 Mhz Version du BIOS/Date American Megatrends Inc. 0401, 19/07/2007 Version SMBIOS 2.4 Répertoire Windows C:\WINDOWS Répertoire système C:\WINDOWS\system32 Périphérique de démarrage \Device\HarddiskVolume1 Option régionale France Couche d'abstraction matérielle Version = "5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)" Utilisateur PERSO-91751151E\Michèle Fuseaux horaires Paris, Madrid Mémoire physique totale 2 048,00 Mo Mémoire physique disponible 1,50 Go Mémoire virtuelle totale 2,00 Go Mémoire virtuelle disponible 1,96 Go Espace pour le fichier d'échange 2,60 Go Fichier d'échange C:\pagefile.sys _______________________________ Logfile of HijackThis v1.99.1 Scan saved at 14:26:08, on 22/03/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16608) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Fichiers communs\EPSON\eEBAPI\SAgent2.exe C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe C:\Program Files\Ahead\InCD\InCDsrv.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PSIService.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE C:\WINDOWS\RTHDCPL.EXE C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Salaat Time\SalaatTime.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Logitech\SetPoint\KEM.exe C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE C:\PROGRA~1\INCRED~1\bin\IMApp.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe D:\Telechargements\HijackThis Ainsisoitje.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - {0A94B116-4504-4e26-AB05-E61E474AA38B} - C:\Program Files\AskPBar\SrchAstt\1.bin\A9SRCHAS.DLL R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Ask Search Assistant BHO - {0A94B111-4504-4e26-AB05-E61E474AA38B} - C:\Program Files\AskPBar\SrchAstt\1.bin\A9SRCHAS.DLL O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [EPSON Stylus CX3200] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX3200" /O6 "USB001" /M "Stylus CX3200" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Ai Nap] "C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe" O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Snapfire Plus\Corel Photo Downloader.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [salaatTime] C:\Program Files\Salaat Time\SalaatTime.exe O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [Exetender] C:\Program Files\Metaboli Player\GPlayer.exe /runonstartup O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\Program Files\IncrediMail\bin\resources\WebMenuImg.htm O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Set As Messenger Live Display Picture - \SetMSNDP.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecal...ivex/hcImpl.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichier...on_2_0_4_12.cab O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://bmm.imgag.com/imgag/cp/install/crusher-fr.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (MediaBar) - http://sib1.od2.com/common/musicmanager/in...nagerPlugin.CAB O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxmultijoueurs.orange.fr/Gameshel...ronGameHost.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: bw+0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL O18 - Protocol: offline-8876480 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\eEBAPI\SAgent2.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InCD Helper (InCDsrv) - AHEAD Software - C:\Program Files\Ahead\InCD\InCDsrv.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe _______________________________ <HTML> <HEAD> <TITLE>BitDefender Online Scanner - Rapport d'analyse</TITLE> <META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1"> </HEAD> <BODY BGCOLOR=#FFFFFF leftmargin="10" marginwidth="0" topmargin="20" marginheight="0" > <table align="center" border="0" cellpadding="0" cellspacing="0" width="90%"> <tr> <td width="458"> BitDefender Online Scanner </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td colspan="3" width="912"> Rapport d'analyse généré à: Sat, Mar 22, 2008 - 15:04:45 </td> </tr> <tr> <td width="458"> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> Voie d'analyse: A:\;C:\;D:\;E:\;F:\; </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> <table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%"> <tr> <td width="451" colspan="2" bgcolor="#CCCCCC"> Statistiques </td> </tr> <tr> <td width="57%"> Temps </td> <td width="43%" align="right"> 00:23:31 </td> </tr> <tr> <td width="57%"> Fichiers </td> <td width="43%" align="right"> 118104 </td> </tr> <tr> <td width="57%"> Directoires </td> <td width="43%" align="right"> 8014 </td> </tr> <tr> <td width="57%"> Secteurs de boot </td> <td width="43%" align="right"> 5 </td> </tr> <tr> <td width="57%"> Archives </td> <td width="43%" align="right"> 1311 </td> </tr> <tr> <td width="57%"> Paquets programmes </td> <td width="43%" align="right"> 11694 </td> </tr> </table> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> <table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%"> <tr> <td width="451" colspan="2" bgcolor="#CCCCCC"> Résultats </td> </tr> <tr> <td width="57%"> Virus identifiés </td> <td width="43%" align="right"> 0 </td> </tr> <tr> <td width="57%"> Fichiers infectés </td> <td width="43%" align="right"> 0 </td> </tr> <tr> <td width="57%"> Fichiers suspects </td> <td width="43%" align="right"> 0 </td> </tr> <tr> <td width="57%"> Avertissements </td> <td width="43%" align="right"> 0 </td> </tr> <tr> <td width="57%"> Désinfectés </td> <td width="43%" align="right"> 0 </td> </tr> <tr> <td width="57%"> Fichiers effacés </td> <td width="43%" align="right"> 0 </td> </tr> </table> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> <table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%"> <tr> <td width="451" colspan="2" bgcolor="#CCCCCC"> Info sur les moteurs </td> </tr> <tr> <td width="57%"> Définition virus </td> <td width="43%" align="right"> 935996 </td> </tr> <tr> <td width="57%"> Version des moteurs </td> <td width="43%" align="right"> AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36) </td> </tr> <tr> <td width="57%"> Analyse des plugins </td> <td width="43%" align="right"> 14 </td> </tr> <tr> <td width="57%"> Archive des plugins </td> <td width="43%" align="right"> 38 </td> </tr> <tr> <td width="57%"> Unpack des plugins </td> <td width="43%" align="right"> 7 </td> </tr> <tr> <td width="57%"> E-mail plugins </td> <td width="43%" align="right"> 6 </td> </tr> <tr> <td width="57%"> Système plugins </td> <td width="43%" align="right"> 1 </td> </tr> </table> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> <table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%"> <tr> <td width="451" colspan="2" bgcolor="#CCCCCC"> Paramètres d'analyse </td> </tr> <tr> <td width="57%"> Première action </td> <td width="43%" align="right"> Désinfecté </td> </tr> <tr> <td width="57%"> Seconde Action </td> <td width="43%" align="right"> Supprimé </td> </tr> <tr> <td width="57%"> Heuristique </td> <td width="43%" align="right"> Oui </td> </tr> <tr> <td width="57%"> Acceptez les avertissements </td> <td width="43%" align="right"> Oui </td> </tr> <tr> <td width="57%"> Extensions analysées </td> <td width="43%" align="right"> exe;com;dll;ocx;scr;bin;dat;386;vxd;sys;wdm;cla;class;ovl;ole;hlp;doc;dot;xls ;ppt;wbk;wiz;pot;ppa;xla;xlt;vbs;vbe;mdb;rtf;htm;hta;html;xml;xtp;php;asp;js;shs; chm;lnk;pif;prc;url;smm;pfd;msi;ini;csc;cmd;bas; </td> </tr> <tr> <td width="57%"> Excludez les extensions </td> <td width="43%" align="right"> </td> </tr> <tr> <td width="57%"> Analyse d'emails </td> <td width="43%" align="right"> Oui </td> </tr> <tr> <td width="57%"> Analyse des Archives </td> <td width="43%" align="right"> Oui </td> </tr> <tr> <td width="57%"> Analyser paquets programmes </td> <td width="43%" align="right"> Oui </td> </tr> <tr> <td width="57%"> Analyse des fichiers </td> <td width="43%" align="right"> Oui </td> </tr> <tr> <td width="57%"> Analyse de boot </td> <td width="43%" align="right"> Oui </td> </tr> </table> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td colspan=2> <table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%"> <tr> <td width="252" bgcolor="#CCCCCC"> Fichier analysé </td> <td width="195" bgcolor="#CCCCCC" align="right"> Statut </td> </tr> <tr> <td width="57%"> Aucun virus trouvé. </td> <td width="43%" align="left"> </td> </tr> </table> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> </table> </body> </html> ____________________________________ AntiVir PersonalEdition Classic Report file date: samedi 22 mars 2008 20:34 Scanning for 1160819 virus strains and unwanted programs. Licensed to: Avira AntiVir PersonalEdition Classic Serial number: 0000149996-ADJIE-0001 Platform: Windows XP Windows version: (Service Pack 2) [5.1.2600] Username: SYSTEM Computer name: PERSO-91751151E Version information: BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00 AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 13:16:29 AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 12:23:51 LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 15:32:47 LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 12:35:20 ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 14:27:15 ANTIVIR1.VDF : 7.0.3.2 5447168 Bytes 07/03/2008 22:15:49 ANTIVIR2.VDF : 7.0.3.62 337408 Bytes 21/03/2008 22:14:53 ANTIVIR3.VDF : 7.0.3.63 2048 Bytes 21/03/2008 22:14:53 AVEWIN32.DLL : 7.6.0.75 3334656 Bytes 20/03/2008 22:15:52 AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26 AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 07:39:17 AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24 AVPACK32.DLL : 7.6.0.3 360488 Bytes 20/03/2008 22:15:52 AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 07:17:06 AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 12:26:33 AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 07:10:18 NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42 RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 12:38:13 RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 12:50:37 SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 09:37:21 Configuration settings for the scan: Jobname..........................: Complete system scan Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp Logging..........................: low Primary action...................: interactive Secondary action.................: ignore Scan master boot sector..........: on Scan boot sector.................: on Boot sectors.....................: E:, Scan memory......................: on Process scan.....................: on Scan registry....................: on Search for rootkits..............: off Scan all files...................: All files Scan archives....................: on Recursion depth..................: 20 Smart extensions.................: on Macro heuristic..................: on File heuristic...................: medium Start of the scan: samedi 22 mars 2008 20:34 The scan of running processes will be started Scan process 'avscan.exe' - '1' Module(s) have been scanned Scan process 'avcenter.exe' - '1' Module(s) have been scanned Scan process 'msn_sl.exe' - '1' Module(s) have been scanned Scan process 'WLLoginProxy.exe' - '1' Module(s) have been scanned Scan process 'iexplore.exe' - '1' Module(s) have been scanned Scan process 'usnsvc.exe' - '1' Module(s) have been scanned Scan process 'ImApp.exe' - '1' Module(s) have been scanned Scan process 'KHALMNPR.exe' - '1' Module(s) have been scanned Scan process 'KEM.exe' - '1' Module(s) have been scanned Scan process 'GoogleToolbarNotifier.exe' - '1' Module(s) have been scanned Scan process 'LogitechDesktopMessenger.exe' - '1' Module(s) have been scanned Scan process 'SalaatTime.exe' - '1' Module(s) have been scanned Scan process 'ctfmon.exe' - '1' Module(s) have been scanned Scan process 'avgnt.exe' - '1' Module(s) have been scanned Scan process 'rundll32.exe' - '1' Module(s) have been scanned Scan process 'AiNap.exe' - '1' Module(s) have been scanned Scan process 'RTHDCPL.exe' - '1' Module(s) have been scanned Scan process 'E_S10IC2.EXE' - '1' Module(s) have been scanned Scan process 'explorer.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'alg.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'PSIService.exe' - '1' Module(s) have been scanned Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned Scan process 'mdm.exe' - '1' Module(s) have been scanned Scan process 'LVComSer.exe' - '1' Module(s) have been scanned Scan process 'incdsrv.exe' - '1' Module(s) have been scanned Scan process 'GoogleUpdaterService.exe' - '1' Module(s) have been scanned Scan process 'SAgent2.exe' - '1' Module(s) have been scanned Scan process 'sched.exe' - '1' Module(s) have been scanned Scan process 'eEBSvc.exe' - '1' Module(s) have been scanned Scan process 'avguard.exe' - '1' Module(s) have been scanned Scan process 'LVPrcSrv.exe' - '1' Module(s) have been scanned Scan process 'spoolsv.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'lsass.exe' - '1' Module(s) have been scanned Scan process 'services.exe' - '1' Module(s) have been scanned Scan process 'winlogon.exe' - '1' Module(s) have been scanned Scan process 'csrss.exe' - '1' Module(s) have been scanned Scan process 'smss.exe' - '1' Module(s) have been scanned 44 processes with 44 modules were scanned Starting master boot sector scan: Master boot sector HD0 [NOTE] No virus was found! Master boot sector HD1 [NOTE] No virus was found! Start scanning boot sectors: Boot sector 'C:\' [NOTE] No virus was found! Boot sector 'D:\' [NOTE] No virus was found! Boot sector 'E:\' [NOTE] No virus was found! Starting to scan the registry. The registry was scanned ( '46' files ). Starting the file scan: Begin scan in 'C:\' C:\hiberfil.sys [WARNING] The file could not be opened! C:\pagefile.sys [WARNING] The file could not be opened! C:\System Volume Information\_restore{84B0EE35-B088-4301-9D83-C0A87896C0D7}\RP174\A0112265.exe [DETECTION] Contains detection pattern of the dropper DR/NaviPromo.CF.44 [iNFO] The file was deleted! C:\WINDOWS\system32\hoivbt.exe [DETECTION] Is the Trojan horse TR/Dropper.Gen [iNFO] The file was deleted! C:\WINDOWS\system32\ActiveScan\pskavs.dll [DETECTION] Contains detection pattern of the Windows virus W95/Blumblebee.1738 [iNFO] The file was deleted! Begin scan in 'D:\' Begin scan in 'E:\' <Jeux> End of the scan: samedi 22 mars 2008 21:16 Used time: 42:17 min The scan has been done completely. 8040 Scanning directories 248902 Files were scanned 3 viruses and/or unwanted programs were found 0 Files were classified as suspicious: 3 files were deleted 0 files were repaired 0 files were moved to quarantine 0 files were renamed 2 Files cannot be scanned 248899 Files not concerned 1854 Archives were scanned 2 Warnings 0 Notes voila, j ai meme changé de fournisseur internet au lieu de wanadoo j ai pris tele 2 lol mais suis au meme point carte mère processeur alimentation carte graphique carte memoire graveur dvd tout est neuf et bien au dessus de ce ke j avais je vous remercie de votre gentillesse pour me sortir de la car sais plus koi faire ainsisoitje

le 22 mars 2008
1 réponse

PROBLEME DE RALENTISSEMENT PC

Ainsisoitje a posté un sujet dans Analyses et éradication malwares

bjr a toute l équipe Et oui me revoila j ai grave prob pc j ai tout changé le systeme mais il rame tjrs sais plus koi faire je joins - nouveau systeme - rapport hijackthis - rapport BitDefendeur - rapport avira antivir ______________________________ Système d'exploitation Microsoft Windows XP Professionnel Version 5.1.2600 Service Pack 2 Nu 2600 Éditeur Microsoft Corporation Ordinateur PERSO-91751151E Fabricant System manufacturer Modèle P5K SE Type PC à base X86 Processeur x86 Family 6 Model 15 Stepping 13 GenuineIntel ~2407 Mhz Processeur x86 Family 6 Model 15 Stepping 13 GenuineIntel ~2407 Mhz Version du BIOS/Date American Megatrends Inc. 0401, 19/07/2007 Version SMBIOS 2.4 Répertoire Windows C:\WINDOWS Répertoire système C:\WINDOWS\system32 Périphérique de démarrage \Device\HarddiskVolume1 Option régionale France Couche d'abstraction matérielle Version = "5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)" Utilisateur PERSO-91751151E\Michèle Fuseaux horaires Paris, Madrid Mémoire physique totale 2 048,00 Mo Mémoire physique disponible 1,50 Go Mémoire virtuelle totale 2,00 Go Mémoire virtuelle disponible 1,96 Go Espace pour le fichier d'échange 2,60 Go Fichier d'échange C:\pagefile.sys _______________________________ Logfile of HijackThis v1.99.1 Scan saved at 14:26:08, on 22/03/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16608) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Fichiers communs\EPSON\eEBAPI\SAgent2.exe C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe C:\Program Files\Ahead\InCD\InCDsrv.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PSIService.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE C:\WINDOWS\RTHDCPL.EXE C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Salaat Time\SalaatTime.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Logitech\SetPoint\KEM.exe C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE C:\PROGRA~1\INCRED~1\bin\IMApp.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe D:\Telechargements\HijackThis Ainsisoitje.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - {0A94B116-4504-4e26-AB05-E61E474AA38B} - C:\Program Files\AskPBar\SrchAstt\1.bin\A9SRCHAS.DLL R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Ask Search Assistant BHO - {0A94B111-4504-4e26-AB05-E61E474AA38B} - C:\Program Files\AskPBar\SrchAstt\1.bin\A9SRCHAS.DLL O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [EPSON Stylus CX3200] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX3200" /O6 "USB001" /M "Stylus CX3200" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Ai Nap] "C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe" O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Snapfire Plus\Corel Photo Downloader.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [salaatTime] C:\Program Files\Salaat Time\SalaatTime.exe O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [Exetender] C:\Program Files\Metaboli Player\GPlayer.exe /runonstartup O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\Program Files\IncrediMail\bin\resources\WebMenuImg.htm O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Set As Messenger Live Display Picture - \SetMSNDP.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecal...ivex/hcImpl.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichier...on_2_0_4_12.cab O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://bmm.imgag.com/imgag/cp/install/crusher-fr.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (MediaBar) - http://sib1.od2.com/common/musicmanager/in...nagerPlugin.CAB O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxmultijoueurs.orange.fr/Gameshel...ronGameHost.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: bw+0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL O18 - Protocol: offline-8876480 - {40678205-2ACC-435C-AD65-9327BB134B3C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\eEBAPI\SAgent2.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InCD Helper (InCDsrv) - AHEAD Software - C:\Program Files\Ahead\InCD\InCDsrv.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe _______________________________ <HTML> <HEAD> <TITLE>BitDefender Online Scanner - Rapport d'analyse</TITLE> <META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1"> </HEAD> <BODY BGCOLOR=#FFFFFF leftmargin="10" marginwidth="0" topmargin="20" marginheight="0" > <table align="center" border="0" cellpadding="0" cellspacing="0" width="90%"> <tr> <td width="458"> BitDefender Online Scanner </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td colspan="3" width="912"> Rapport d'analyse généré à: Sat, Mar 22, 2008 - 15:04:45 </td> </tr> <tr> <td width="458"> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> Voie d'analyse: A:\;C:\;D:\;E:\;F:\; </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> <table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%"> <tr> <td width="451" colspan="2" bgcolor="#CCCCCC"> Statistiques </td> </tr> <tr> <td width="57%"> Temps </td> <td width="43%" align="right"> 00:23:31 </td> </tr> <tr> <td width="57%"> Fichiers </td> <td width="43%" align="right"> 118104 </td> </tr> <tr> <td width="57%"> Directoires </td> <td width="43%" align="right"> 8014 </td> </tr> <tr> <td width="57%"> Secteurs de boot </td> <td width="43%" align="right"> 5 </td> </tr> <tr> <td width="57%"> Archives </td> <td width="43%" align="right"> 1311 </td> </tr> <tr> <td width="57%"> Paquets programmes </td> <td width="43%" align="right"> 11694 </td> </tr> </table> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> <table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%"> <tr> <td width="451" colspan="2" bgcolor="#CCCCCC"> Résultats </td> </tr> <tr> <td width="57%"> Virus identifiés </td> <td width="43%" align="right"> 0 </td> </tr> <tr> <td width="57%"> Fichiers infectés </td> <td width="43%" align="right"> 0 </td> </tr> <tr> <td width="57%"> Fichiers suspects </td> <td width="43%" align="right"> 0 </td> </tr> <tr> <td width="57%"> Avertissements </td> <td width="43%" align="right"> 0 </td> </tr> <tr> <td width="57%"> Désinfectés </td> <td width="43%" align="right"> 0 </td> </tr> <tr> <td width="57%"> Fichiers effacés </td> <td width="43%" align="right"> 0 </td> </tr> </table> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> <table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%"> <tr> <td width="451" colspan="2" bgcolor="#CCCCCC"> Info sur les moteurs </td> </tr> <tr> <td width="57%"> Définition virus </td> <td width="43%" align="right"> 935996 </td> </tr> <tr> <td width="57%"> Version des moteurs </td> <td width="43%" align="right"> AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36) </td> </tr> <tr> <td width="57%"> Analyse des plugins </td> <td width="43%" align="right"> 14 </td> </tr> <tr> <td width="57%"> Archive des plugins </td> <td width="43%" align="right"> 38 </td> </tr> <tr> <td width="57%"> Unpack des plugins </td> <td width="43%" align="right"> 7 </td> </tr> <tr> <td width="57%"> E-mail plugins </td> <td width="43%" align="right"> 6 </td> </tr> <tr> <td width="57%"> Système plugins </td> <td width="43%" align="right"> 1 </td> </tr> </table> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> <table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%"> <tr> <td width="451" colspan="2" bgcolor="#CCCCCC"> Paramètres d'analyse </td> </tr> <tr> <td width="57%"> Première action </td> <td width="43%" align="right"> Désinfecté </td> </tr> <tr> <td width="57%"> Seconde Action </td> <td width="43%" align="right"> Supprimé </td> </tr> <tr> <td width="57%"> Heuristique </td> <td width="43%" align="right"> Oui </td> </tr> <tr> <td width="57%"> Acceptez les avertissements </td> <td width="43%" align="right"> Oui </td> </tr> <tr> <td width="57%"> Extensions analysées </td> <td width="43%" align="right"> exe;com;dll;ocx;scr;bin;dat;386;vxd;sys;wdm;cla;class;ovl;ole;hlp;doc;dot;xls ;ppt;wbk;wiz;pot;ppa;xla;xlt;vbs;vbe;mdb;rtf;htm;hta;html;xml;xtp;php;asp;js;shs; chm;lnk;pif;prc;url;smm;pfd;msi;ini;csc;cmd;bas; </td> </tr> <tr> <td width="57%"> Excludez les extensions </td> <td width="43%" align="right"> </td> </tr> <tr> <td width="57%"> Analyse d'emails </td> <td width="43%" align="right"> Oui </td> </tr> <tr> <td width="57%"> Analyse des Archives </td> <td width="43%" align="right"> Oui </td> </tr> <tr> <td width="57%"> Analyser paquets programmes </td> <td width="43%" align="right"> Oui </td> </tr> <tr> <td width="57%"> Analyse des fichiers </td> <td width="43%" align="right"> Oui </td> </tr> <tr> <td width="57%"> Analyse de boot </td> <td width="43%" align="right"> Oui </td> </tr> </table> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td colspan=2> <table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%"> <tr> <td width="252" bgcolor="#CCCCCC"> Fichier analysé </td> <td width="195" bgcolor="#CCCCCC" align="right"> Statut </td> </tr> <tr> <td width="57%"> Aucun virus trouvé. </td> <td width="43%" align="left"> </td> </tr> </table> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> <tr> <td width="458"> </td> <td width="40%"> </td> <td width="10%"> </td> </tr> </table> </body> </html> ____________________________________ AntiVir PersonalEdition Classic Report file date: samedi 22 mars 2008 20:34 Scanning for 1160819 virus strains and unwanted programs. Licensed to: Avira AntiVir PersonalEdition Classic Serial number: 0000149996-ADJIE-0001 Platform: Windows XP Windows version: (Service Pack 2) [5.1.2600] Username: SYSTEM Computer name: PERSO-91751151E Version information: BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00 AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 13:16:29 AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 12:23:51 LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 15:32:47 LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 12:35:20 ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 14:27:15 ANTIVIR1.VDF : 7.0.3.2 5447168 Bytes 07/03/2008 22:15:49 ANTIVIR2.VDF : 7.0.3.62 337408 Bytes 21/03/2008 22:14:53 ANTIVIR3.VDF : 7.0.3.63 2048 Bytes 21/03/2008 22:14:53 AVEWIN32.DLL : 7.6.0.75 3334656 Bytes 20/03/2008 22:15:52 AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26 AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 07:39:17 AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24 AVPACK32.DLL : 7.6.0.3 360488 Bytes 20/03/2008 22:15:52 AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 07:17:06 AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 12:26:33 AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 07:10:18 NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42 RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 12:38:13 RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 12:50:37 SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 09:37:21 Configuration settings for the scan: Jobname..........................: Complete system scan Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp Logging..........................: low Primary action...................: interactive Secondary action.................: ignore Scan master boot sector..........: on Scan boot sector.................: on Boot sectors.....................: E:, Scan memory......................: on Process scan.....................: on Scan registry....................: on Search for rootkits..............: off Scan all files...................: All files Scan archives....................: on Recursion depth..................: 20 Smart extensions.................: on Macro heuristic..................: on File heuristic...................: medium Start of the scan: samedi 22 mars 2008 20:34 The scan of running processes will be started Scan process 'avscan.exe' - '1' Module(s) have been scanned Scan process 'avcenter.exe' - '1' Module(s) have been scanned Scan process 'msn_sl.exe' - '1' Module(s) have been scanned Scan process 'WLLoginProxy.exe' - '1' Module(s) have been scanned Scan process 'iexplore.exe' - '1' Module(s) have been scanned Scan process 'usnsvc.exe' - '1' Module(s) have been scanned Scan process 'ImApp.exe' - '1' Module(s) have been scanned Scan process 'KHALMNPR.exe' - '1' Module(s) have been scanned Scan process 'KEM.exe' - '1' Module(s) have been scanned Scan process 'GoogleToolbarNotifier.exe' - '1' Module(s) have been scanned Scan process 'LogitechDesktopMessenger.exe' - '1' Module(s) have been scanned Scan process 'SalaatTime.exe' - '1' Module(s) have been scanned Scan process 'ctfmon.exe' - '1' Module(s) have been scanned Scan process 'avgnt.exe' - '1' Module(s) have been scanned Scan process 'rundll32.exe' - '1' Module(s) have been scanned Scan process 'AiNap.exe' - '1' Module(s) have been scanned Scan process 'RTHDCPL.exe' - '1' Module(s) have been scanned Scan process 'E_S10IC2.EXE' - '1' Module(s) have been scanned Scan process 'explorer.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'alg.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'PSIService.exe' - '1' Module(s) have been scanned Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned Scan process 'mdm.exe' - '1' Module(s) have been scanned Scan process 'LVComSer.exe' - '1' Module(s) have been scanned Scan process 'incdsrv.exe' - '1' Module(s) have been scanned Scan process 'GoogleUpdaterService.exe' - '1' Module(s) have been scanned Scan process 'SAgent2.exe' - '1' Module(s) have been scanned Scan process 'sched.exe' - '1' Module(s) have been scanned Scan process 'eEBSvc.exe' - '1' Module(s) have been scanned Scan process 'avguard.exe' - '1' Module(s) have been scanned Scan process 'LVPrcSrv.exe' - '1' Module(s) have been scanned Scan process 'spoolsv.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'lsass.exe' - '1' Module(s) have been scanned Scan process 'services.exe' - '1' Module(s) have been scanned Scan process 'winlogon.exe' - '1' Module(s) have been scanned Scan process 'csrss.exe' - '1' Module(s) have been scanned Scan process 'smss.exe' - '1' Module(s) have been scanned 44 processes with 44 modules were scanned Starting master boot sector scan: Master boot sector HD0 [NOTE] No virus was found! Master boot sector HD1 [NOTE] No virus was found! Start scanning boot sectors: Boot sector 'C:\' [NOTE] No virus was found! Boot sector 'D:\' [NOTE] No virus was found! Boot sector 'E:\' [NOTE] No virus was found! Starting to scan the registry. The registry was scanned ( '46' files ). Starting the file scan: Begin scan in 'C:\' C:\hiberfil.sys [WARNING] The file could not be opened! C:\pagefile.sys [WARNING] The file could not be opened! C:\System Volume Information\_restore{84B0EE35-B088-4301-9D83-C0A87896C0D7}\RP174\A0112265.exe [DETECTION] Contains detection pattern of the dropper DR/NaviPromo.CF.44 [iNFO] The file was deleted! C:\WINDOWS\system32\hoivbt.exe [DETECTION] Is the Trojan horse TR/Dropper.Gen [iNFO] The file was deleted! C:\WINDOWS\system32\ActiveScan\pskavs.dll [DETECTION] Contains detection pattern of the Windows virus W95/Blumblebee.1738 [iNFO] The file was deleted! Begin scan in 'D:\' Begin scan in 'E:\' <Jeux> End of the scan: samedi 22 mars 2008 21:16 Used time: 42:17 min The scan has been done completely. 8040 Scanning directories 248902 Files were scanned 3 viruses and/or unwanted programs were found 0 Files were classified as suspicious: 3 files were deleted 0 files were repaired 0 files were moved to quarantine 0 files were renamed 2 Files cannot be scanned 248899 Files not concerned 1854 Archives were scanned 2 Warnings 0 Notes voila, j ai meme changé de fournisseur internet au lieu de wanadoo j ai pris tele 2 lol mais suis au meme point carte mère processeur alimentation carte graphique carte memoire graveur dvd tout est neuf et bien au dessus de ce ke j avais je vous remercie de votre gentillesse pour me sortir de la car sais plus koi faire ainsisoitje

le 22 mars 2008

Connexion

Ainsisoitje

Compteur de contenus

Inscription

Dernière visite

Type de contenu

Profils

Forums

Blogs

Tout ce qui a été posté par Ainsisoitje

Windows live messenger pour xp pro

RECUPERER DES DONNEES APRES FORMATAGE

RECUPERER DES DONNEES APRES FORMATAGE

RECUPERER DES DONNEES APRES FORMATAGE

RECUPERER DES DONNEES APRES FORMATAGE

RECUPERER DES DONNEES APRES FORMATAGE

RECUPERER DES DONNEES APRES FORMATAGE

RECUPERER DES DONNEES APRES FORMATAGE

erro microsoft visual C++ runtime library

RECUPERER DES DONNEES APRES FORMATAGE

RAPPORT HJACKTHIS

RAPPORT HJACKTHIS

Programme a démarrage automatique non recommandé

Programme a démarrage automatique non recommandé

Programme a démarrage automatique non recommandé

Programme a démarrage automatique non recommandé

Programme a démarrage automatique non recommandé

Programme a démarrage automatique non recommandé

Programme a démarrage automatique non recommandé

probleme detecte par windows

probleme detecte par windows

infection du pc

Mon pc rame sur le net

PROBLEME DE RALENTISSEMENT PC

PROBLEME DE RALENTISSEMENT PC

Zebulon

Outils en ligne

Naviguer