Dom A.

C'est parfait. Je planche sur tout ça. Merci et encore et bonne journée.

Non, ça m'a l'air impec. Depuis ce matin comme souvent avec FF, 3-4 onglets ouverts, mes navigations sur google n'ont pas provoqué d'ouvertures de fenêtres intempestives. Je vais relire de la doc sur la sécurité, mais le tout premier problème, je pense, est apparu lorsque j'ai répondu oui à une fenêtre me demandant si je voulais faire un scan, mon ordi étant probablement infecté. Je n'aurais pas dû, en fait c'était une fausse pub. J'ai dû aussi naviguer sur des sites à la c... Merci pour ta disponibilité. Dois-je faire quelque chose de particulier suite à cette éradication?

Bonjour bruce lee, voici mon rapport kaspersky, analyse déroulée cette nuit ---------------------------------------------------------------------------- KASPERSKY ON-LINE SCANNER REPORT Thursday, April 12, 2007 6:19:19 AM Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600) Kaspersky On-line Scanner version : 5.0.83.0 Dernière mise à jour de la base antivirus Kaspersky : 11/04/2007 Enregistrements dans la base antivirus Kaspersky : 278842 ------------------------------------------------------------------------------- Paramètres d'analyse: Analyser avec la base antivirus suivante: standard Analyser les archives: vrai Analyser les bases de messagerie: vrai Cible de l'analyse - Poste de travail: C:\ D:\ E:\ F:\ Statistiques de l'analyse: Total d'objets analysés: 166589 Nombre de virus trouvés: 0 Nombre d'objets infectés: 0 / 0 Nombre d'objets suspects: 0 Durée de l'analyse: 08:36:28 Nom de l'objet infecté / Nom du virus / Dernière action C:\Documents and Settings\All Users\Application Data\McAfee\MNA\NAData L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\McAfee\MPF\data\log.edb L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\McAfee\MSC\Logs\Events.dat L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\McAfee\MSC\Logs\{87741B9C-F8D9-47E2-B977-ACB6106C7D7A}.log L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\McAfee\MSC\McUsers.dat L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\McAfee\VirusScan\Data\TFR1.tmp L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\McAfee\VirusScan\Logs\OAS.Log L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Application Data\SiteAdvisor\SiteAdv.csh L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Cookies\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\dbc2e.ht1 L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\dbdam L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\dbdao L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\dbeam L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\dbeao L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\dbm L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\dbu2d.ht1 L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\dbvm.cf1 L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\dbvmh.ht1 L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\fii.cf1 L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\fiih.ht1 L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\hp L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\hpt2i.ht1 L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\rpm.cf1 L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\rpm1m.cf1 L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\rpm1mh.ht1 L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Google\Google Desktop\ce12080f2ef6\rpmh.ht1 L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Historique\History.IE5\INDEX.DAT L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Historique\History.IE5\MSHist012007041120070412\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Temp\~DF603A.tmp L'objet est verrouillé ignoré C:\Documents and Settings\Moi\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\Moi\ntuser.dat L'objet est verrouillé ignoré C:\Documents and Settings\Moi\ntuser.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré C:\Program Files\BOINC\stderrdae.txt L'objet est verrouillé ignoré C:\Program Files\BOINC\stderrgui.txt L'objet est verrouillé ignoré C:\Program Files\BOINC\stdoutdae.txt L'objet est verrouillé ignoré C:\Program Files\BOINC\stdoutgui.txt L'objet est verrouillé ignoré C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP225\A0120624.exe L'objet est verrouillé ignoré C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP226\A0121718.exe L'objet est verrouillé ignoré C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP227\change.log L'objet est verrouillé ignoré C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré C:\WINDOWS\SoftwareDistribution\EventCache\{91EFADFF-5E32-4483-8390-FAA66714174F}.bin L'objet est verrouillé ignoré C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CatRoot2\edb.log L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CatRoot2\tmp.edb L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\AppEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT.LOG L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\Internet.evt L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SAM L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SAM.LOG L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SecEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SECURITY L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SECURITY.LOG L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SOFTWARE L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SOFTWARE.LOG L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SysEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM.LOG L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\WBEM\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\WBEM\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\WBEM\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\WBEM\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\WBEM\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\WBEM\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré C:\WINDOWS\SYSTEM32\WBEM\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré C:\WINDOWS\Temp\mcafee_ksBJqVbQKdOKv9W L'objet est verrouillé ignoré C:\WINDOWS\Temp\mcmsc_bwI8zfCro7Ap23T L'objet est verrouillé ignoré C:\WINDOWS\Temp\mcmsc_dtTIrEq5JeAGtpz L'objet est verrouillé ignoré C:\WINDOWS\Temp\mcmsc_IkXJbxd9Pkld4Rj L'objet est verrouillé ignoré C:\WINDOWS\Temp\mcmsc_l32ayWWu2snFY5g L'objet est verrouillé ignoré C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré F:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré F:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP227\change.log L'objet est verrouillé ignoré Analyse terminée. Au passage, Antivir que je croyais désactivé, est resté en suspens sur 2 lignes. (?) Bonne journée, à +.

Re- Voici donc les 3 éléments demandés. Le rapport AVG: --------------------------------------------------------- AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + Créé à: 14:56:17 11/04/2007 + Résultat de l'analyse: C:\Program Files\Hotbar -> Adware.HotBar : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\SpamBlockerUtility\SBTV\SBTVHelper.dll -> Adware.Hotbar : Nettoyé et sauvegardé (mise en quarantaine). HKU\S-1-5-21-3845361479-2097110548-3550222069-1006\Software\HbTools -> Adware.HotBar : Nettoyé et sauvegardé (mise en quarantaine). HKU\S-1-5-21-3845361479-2097110548-3550222069-1006\Software\HbTools\HbTools -> Adware.HotBar : Nettoyé et sauvegardé (mise en quarantaine). HKU\S-1-5-21-3845361479-2097110548-3550222069-1006\Software\HbTools\HbTools\mail -> Adware.HotBar : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\MyWebSearch\bar\3.bin\M3IDLE.DLL -> Adware.IWon : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\MyWebSearch\bar\2.bin\MWSOEMON.EXE -> Adware.MyWebSearch : Nettoyé et sauvegardé (mise en quarantaine). C:\Program Files\MyWebSearch\bar\3.bin\F3HTTPCT.DLL -> Downloader.IstBar : Nettoyé et sauvegardé (mise en quarantaine). C:\Documents and Settings\Moi\Application Data\winantiviruspro2006freeinstall_fr[1].exe -> Not-A-Virus.Downloader.Win32.WinFixer.o : Nettoyé et sauvegardé (mise en quarantaine). C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP192\A0103226.exe -> Not-A-Virus.Downloader.Win32.WinFixer.o : Nettoyé et sauvegardé (mise en quarantaine). C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWA6PV_0001_N91M2107NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.o : Nettoyé et sauvegardé (mise en quarantaine). C:\WINDOWS\Downloaded Program Files\CONFLICT.2\UWA6PV_0001_N91M2107NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.o : Nettoyé et sauvegardé (mise en quarantaine). C:\WINDOWS\Downloaded Program Files\CONFLICT.3\UWA6PV_0001_N91M2107NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.o : Nettoyé et sauvegardé (mise en quarantaine). C:\WINDOWS\Downloaded Program Files\ERSV_0001_N91S1908NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.o : Nettoyé et sauvegardé (mise en quarantaine). C:\WINDOWS\Downloaded Program Files\UERSV_0001_N91S2108NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.o : Nettoyé et sauvegardé (mise en quarantaine). C:\WINDOWS\Downloaded Program Files\UWA6PV_0001_N91M2107NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.o : Nettoyé et sauvegardé (mise en quarantaine). :mozilla.118:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.188:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.197:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.386:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.127:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Adtech : Nettoyé. :mozilla.128:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Adtech : Nettoyé. :mozilla.202:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Adtech : Nettoyé. :mozilla.203:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Adtech : Nettoyé. :mozilla.101:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.102:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.103:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.109:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.110:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.205:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Atdmt : Nettoyé. :mozilla.39:C:\Documents and Settings\dom\Application Data\Mozilla\Firefox\Profiles\qfj6w91d.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé. :mozilla.79:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Atdmt : Nettoyé. :mozilla.104:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Bluestreak : Nettoyé. :mozilla.35:C:\Documents and Settings\dom\Application Data\Mozilla\Firefox\Profiles\qfj6w91d.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé. :mozilla.66:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Bluestreak : Nettoyé. :mozilla.90:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé. :mozilla.173:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Clickzs : Nettoyé. :mozilla.174:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Clickzs : Nettoyé. :mozilla.16:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Doubleclick : Nettoyé. :mozilla.34:C:\Documents and Settings\dom\Application Data\Mozilla\Firefox\Profiles\qfj6w91d.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé. :mozilla.38:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Doubleclick : Nettoyé. :mozilla.45:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé. :mozilla.15:C:\Documents and Settings\dom\Application Data\Mozilla\Firefox\Profiles\qfj6w91d.default\cookies.txt -> TrackingCookie.Estat : Nettoyé. :mozilla.71:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Estat : Nettoyé. :mozilla.77:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Estat : Nettoyé. :mozilla.389:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Euroclick : Nettoyé. :mozilla.390:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Euroclick : Nettoyé. :mozilla.129:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Falkag : Nettoyé. :mozilla.130:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Falkag : Nettoyé. :mozilla.131:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Falkag : Nettoyé. :mozilla.132:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Falkag : Nettoyé. :mozilla.133:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Falkag : Nettoyé. :mozilla.134:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Falkag : Nettoyé. :mozilla.114:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Fastclick : Nettoyé. :mozilla.115:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Fastclick : Nettoyé. :mozilla.140:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Fastclick : Nettoyé. :mozilla.145:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Fastclick : Nettoyé. :mozilla.186:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Googleadservices : Nettoyé. :mozilla.348:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Ivwbox : Nettoyé. :mozilla.175:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Mediaplex : Nettoyé. :mozilla.19:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé. :mozilla.88:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Mediaplex : Nettoyé. :mozilla.331:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Onestat : Nettoyé. :mozilla.332:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Onestat : Nettoyé. :mozilla.224:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Pointroll : Nettoyé. :mozilla.225:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Pointroll : Nettoyé. :mozilla.226:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Pointroll : Nettoyé. :mozilla.227:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Pointroll : Nettoyé. :mozilla.52:C:\Documents and Settings\dom\Application Data\Mozilla\Firefox\Profiles\qfj6w91d.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé. :mozilla.53:C:\Documents and Settings\dom\Application Data\Mozilla\Firefox\Profiles\qfj6w91d.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé. :mozilla.54:C:\Documents and Settings\dom\Application Data\Mozilla\Firefox\Profiles\qfj6w91d.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé. :mozilla.55:C:\Documents and Settings\dom\Application Data\Mozilla\Firefox\Profiles\qfj6w91d.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé. :mozilla.239:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Questionmarket : Nettoyé. :mozilla.240:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Questionmarket : Nettoyé. :mozilla.85:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Questionmarket : Nettoyé. :mozilla.86:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Questionmarket : Nettoyé. :mozilla.87:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Questionmarket : Nettoyé. :mozilla.10:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.12:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.13:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.15:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.163:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.164:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.165:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.166:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.170:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.171:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.172:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.173:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.174:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.175:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.177:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.178:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.179:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.180:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.6:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé. :mozilla.117:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.118:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.119:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.120:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.121:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.122:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.58:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.59:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.60:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.61:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.62:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.76:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.77:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.78:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.79:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.80:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.81:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.91:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.187:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé. :mozilla.188:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé. :mozilla.172:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Sextracker : Nettoyé. :mozilla.62:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé. :mozilla.63:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé. :mozilla.11:C:\Documents and Settings\dom\Application Data\Mozilla\Firefox\Profiles\qfj6w91d.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.14:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.14:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.14:C:\Documents and Settings\dom\Application Data\Mozilla\Firefox\Profiles\qfj6w91d.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.15:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.15:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.16:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.23:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.27:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.28:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.6:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.7:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.9:C:\Documents and Settings\dom\Application Data\Mozilla\Firefox\Profiles\qfj6w91d.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.107:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.64:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.149:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.150:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.151:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.152:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.65:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.66:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.95:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.96:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.97:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.98:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.10:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.11:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.12:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.12:C:\Documents and Settings\dom\Application Data\Mozilla\Firefox\Profiles\qfj6w91d.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.13:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.13:C:\Documents and Settings\dom\Application Data\Mozilla\Firefox\Profiles\qfj6w91d.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.24:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.25:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.6:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.6:C:\Documents and Settings\dom\Application Data\Mozilla\Firefox\Profiles\qfj6w91d.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.8:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.8:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.9:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Weborama : Nettoyé. C:\Documents and Settings\Invité\Cookies\invité@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé. C:\Documents and Settings\Moi\Cookies\moi@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.213:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Webtrendslive : Nettoyé. :mozilla.282:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Webtrendslive : Nettoyé. :mozilla.100:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.40:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.41:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.42:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.43:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.44:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.99:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-1.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.248:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Zedo : Nettoyé. :mozilla.250:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Zedo : Nettoyé. :mozilla.251:C:\Documents and Settings\Moi\Application Data\Mozilla\Firefox\Profiles\n2cycm31.default\cookies-2.txt -> TrackingCookie.Zedo : Nettoyé. Fin du rapport Le nouveau log Hijackthis: C:\Program Files\TomTom HOME\TomTomHOME.exe C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe C:\Program Files\SiteAdvisor\6061\SiteAdv.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\CCleaner\ccleaner.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Hercules\WiFi Station\WifiStation.exe C:\Program Files\BOINC\boincmgr.exe C:\Program Files\SpamPal\spampal.exe C:\Program Files\BOINC\boinc.exe C:\WINDOWS\system32\wuauclt.exe C:\PROGRA~1\MOZILL~1\FIREFOX.EXE C:\DOCUME~1\Moi\LOCALS~1\Temp\Répertoire temporaire 2 pour hijackthis.zip\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.google.fr/keyword/%s R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://forum.telecharger.01net.com/microhebdo/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - (no file) R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6061\SiteAdv.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6061\SiteAdv.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe" O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [bTUSRBDG] BtUsrBdg.exe O4 - HKLM\..\Run: [bTSETBOOTKEY] BTSetBootKey.exe O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe" O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [iMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE O4 - HKLM\..\Run: [Dell Photo AIO Printer 942] "C:\Program Files\Dell Photo AIO Printer 942\dlbubmgr.exe" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME\TomTomHOME.exe" -s O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" O4 - HKLM\..\Run: [siteAdvisor] C:\Program Files\SiteAdvisor\6061\SiteAdv.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DSpace.exe] C:\Documents and Settings\Moi\DSpace.exe O4 - Startup: BOINC Manager.lnk = C:\Program Files\BOINC\boincmgr.exe O4 - Startup: SpamPal.lnk = C:\Program Files\SpamPal\spampal.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: WiFi Station.lnk = ? O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: View EXIF - C:\ViewEXIF\EXIF.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/...nst20040510.cab O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} - http://tools.ebayimg.com/eps/wl/activex/eB...l_v1-0-3-48.cab O16 - DPF: {556DDE35-E955-11D0-A707-000000521957} - http://www.xblock.com/download/xclean_micro.exe O16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - http://www.fnacmusic.com/telechargementFna...acComposant.cab O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by124fd.bay124.hotmail.msn.com/activex/HMAtchmt.ocx O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Protocol: offline-8876480 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6061\SiteAdv.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: dlbu_device - Dell - C:\WINDOWS\system32\dlbucoms.exe O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: SiteAdvisor Service - McAfee, Inc. - C:\Program Files\SiteAdvisor\6061\SAService.exe Et enfin le rapport cleanavi: Clean Navipromo version 1.1.3 commencé le 11/04/2007 à 15:32:40,42 Fix lancé depuis C:\navilog1 Mise a jour le 31.03.2007 a 08h00 by IL-MAFIOSO Executé en mode sans echec Mode suppression automatique avec prise en charge résultats Blacklight *** fsbl1.txt non trouvé *** (Assurez-vous que Blacklight n'avait rien trouvé lors de la recherche) *** Suppression dossiers dans C:\WINDOWS *** *** Suppression dossiers dans C:\Program Files *** *** Suppression dossiers dans C:\Documents and Settings\All Users\Application Data *** *** Suppression dossiers dans C:\Documents and Settings\Moi\Application Data *** *** Suppression fichiers *** *** Suppression fichiers temporaires *** Nettoyage contenu C:\WINDOWS\Temp effectué ! Nettoyage contenu C:\Documents and Settings\Moi\Local Settings\Temp effectué ! *** Sauvegarde du registre vers dossier Backupnavi*** sauvegarde du registre réalisé avec succès ! *** Nettoyage registre *** Nettoyage registre Ok *** Traitement Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Recherche fichiers connus: 2)Recherche et Suppression Heuristique : * ** *** **** ***** ****** ******* ******** *** Nettoyage termine le 11/04/2007 à 15:33:39,70 *** Il est à noter que lors de la première opération (navilog) le rapport (cleanavi) ne s'est pas enregistré automatiquement sur le bureau. Il était introuvable en recherche sur le bureau. Je l'ai donc recommencé en fin de procédure, et j'ai enregistré le rapport par un copier-coller dans un document texte que j'ai créé pour l'occasion. Si cela à une incidence sur le processus je recommencerai depuis le début Sinon tout le reste s'est déroulé chronologiquement sans accroc.

Bonjour bruce lee, et merci de ta patience . J'ai donc exécuté BFU en mode sans échec (j'ai du mal, je ne sais pas pourquoi mais je ne peux pas fixer en icones ur le bureau les fichiers .zip, il faut que j'aille à chaque fois les rechercher via "démarrer" - "rechercher" Mais j'ai réussi, et voici le nouveau rapport hijackthis effectué en mode dans échec: Logfile of HijackThis v1.99.1 Scan saved at 08:50:03, on 11/04/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\WINDOWS\Explorer.EXE C:\DOCUME~1\Moi\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.google.fr/keyword/%s R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://forum.telecharger.01net.com/microhebdo/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - (no file) R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6061\SiteAdv.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6061\SiteAdv.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe" O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [bTUSRBDG] BtUsrBdg.exe O4 - HKLM\..\Run: [bTSETBOOTKEY] BTSetBootKey.exe O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe" O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [iMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE O4 - HKLM\..\Run: [Dell Photo AIO Printer 942] "C:\Program Files\Dell Photo AIO Printer 942\dlbubmgr.exe" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME\TomTomHOME.exe" -s O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" O4 - HKLM\..\Run: [siteAdvisor] C:\Program Files\SiteAdvisor\6061\SiteAdv.exe O4 - HKLM\..\Run: [icraxmlfp] c:\windows\system32\icraxmlfp.exe icraxmlfp O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DSpace.exe] C:\Documents and Settings\Moi\DSpace.exe O4 - Startup: BOINC Manager.lnk = C:\Program Files\BOINC\boincmgr.exe O4 - Startup: SpamPal.lnk = C:\Program Files\SpamPal\spampal.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: WiFi Station.lnk = ? O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...?p=ZNxdm119YYFR O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Post Image to Blog - res://C:\WINDOWS\ImageShackToolbar\ImageShackToolbar.dll/5003 O8 - Extra context menu item: Tag This Image - res://C:\WINDOWS\ImageShackToolbar\ImageShackToolbar.dll/5002 O8 - Extra context menu item: Upload All Images to ImageShack - res://C:\WINDOWS\ImageShackToolbar\ImageShackToolbar.dll/5000 O8 - Extra context menu item: Upload Image to ImageShack - res://C:\WINDOWS\ImageShackToolbar\ImageShackToolbar.dll/5001 O8 - Extra context menu item: View EXIF - C:\ViewEXIF\EXIF.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O15 - Trusted Zone: http://toolbar.imageshack.us O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/f...tup1.0.0.15.cab O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/...nst20040510.cab O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} - http://tools.ebayimg.com/eps/wl/activex/eB...l_v1-0-3-48.cab O16 - DPF: {556DDE35-E955-11D0-A707-000000521957} - http://www.xblock.com/download/xclean_micro.exe O16 - DPF: {6932D140-ABC4-4073-A44C-D4A541665E35} (ImageShack Toolbar) - http://toolbar.imageshack.us/toolbar/ImageShackToolbar.cab O16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - http://www.fnacmusic.com/telechargementFna...acComposant.cab O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by124fd.bay124.hotmail.msn.com/activex/HMAtchmt.ocx O18 - Protocol: bw+0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Protocol: offline-8876480 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6061\SiteAdv.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: dlbu_device - Dell - C:\WINDOWS\system32\dlbucoms.exe O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: SiteAdvisor Service - McAfee, Inc. - C:\Program Files\SiteAdvisor\6061\SAService.exe Si ça te dit quelque chose... merci encore.

Voici donc le nouveau rapport hijackthis, après éxécution du script BFU en mode sans échec: Logfile of HijackThis v1.99.1 Scan saved at 15:00:58, on 09/04/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PSIService.exe C:\Program Files\CyberLink\Shared Files\RichVideo.exe C:\Program Files\SiteAdvisor\6061\SAService.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Picasa2\PicasaMediaDetector.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\BtUsrBdg.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe C:\WINDOWS\system32\BTSetBootKey.exe C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe C:\Program Files\Dell Photo AIO Printer 942\dlbubmgr.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Dell Photo AIO Printer 942\dlbubmon.exe C:\Program Files\TomTom HOME\TomTomHOME.exe C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe C:\Program Files\SiteAdvisor\6061\SiteAdv.exe C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe C:\Program Files\Hercules\WiFi Station\WifiStation.exe C:\Program Files\BOINC\boincmgr.exe C:\Program Files\SpamPal\spampal.exe C:\Program Files\BOINC\boinc.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\DOCUME~1\Moi\LOCALS~1\Temp\Répertoire temporaire 2 pour hijackthis.zip\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.google.fr/keyword/%s R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://forum.telecharger.01net.com/microhebdo/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - (no file) R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6061\SiteAdv.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6061\SiteAdv.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe" O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [bTUSRBDG] BtUsrBdg.exe O4 - HKLM\..\Run: [bTSETBOOTKEY] BTSetBootKey.exe O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe" O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [iMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE O4 - HKLM\..\Run: [Dell Photo AIO Printer 942] "C:\Program Files\Dell Photo AIO Printer 942\dlbubmgr.exe" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME\TomTomHOME.exe" -s O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" O4 - HKLM\..\Run: [siteAdvisor] C:\Program Files\SiteAdvisor\6061\SiteAdv.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DSpace.exe] C:\Documents and Settings\Moi\DSpace.exe O4 - Startup: BOINC Manager.lnk = C:\Program Files\BOINC\boincmgr.exe O4 - Startup: SpamPal.lnk = C:\Program Files\SpamPal\spampal.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: WiFi Station.lnk = ? O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...?p=ZNxdm119YYFR O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Post Image to Blog - res://C:\WINDOWS\ImageShackToolbar\ImageShackToolbar.dll/5003 O8 - Extra context menu item: Tag This Image - res://C:\WINDOWS\ImageShackToolbar\ImageShackToolbar.dll/5002 O8 - Extra context menu item: Upload All Images to ImageShack - res://C:\WINDOWS\ImageShackToolbar\ImageShackToolbar.dll/5000 O8 - Extra context menu item: Upload Image to ImageShack - res://C:\WINDOWS\ImageShackToolbar\ImageShackToolbar.dll/5001 O8 - Extra context menu item: View EXIF - C:\ViewEXIF\EXIF.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O15 - Trusted Zone: http://toolbar.imageshack.us O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/f...tup1.0.0.15.cab O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/...nst20040510.cab O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} - http://tools.ebayimg.com/eps/wl/activex/eB...l_v1-0-3-48.cab O16 - DPF: {556DDE35-E955-11D0-A707-000000521957} - http://www.xblock.com/download/xclean_micro.exe O16 - DPF: {6932D140-ABC4-4073-A44C-D4A541665E35} (ImageShack Toolbar) - http://toolbar.imageshack.us/toolbar/ImageShackToolbar.cab O16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - http://www.fnacmusic.com/telechargementFna...acComposant.cab O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by124fd.bay124.hotmail.msn.com/activex/HMAtchmt.ocx O18 - Protocol: bw+0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Protocol: offline-8876480 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6061\SiteAdv.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: dlbu_device - Dell - C:\WINDOWS\system32\dlbucoms.exe O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: SiteAdvisor Service - McAfee, Inc. - C:\Program Files\SiteAdvisor\6061\SAService.exe C'est curieux, cela ne ressemble pas aux rapports hijackthis que j'ai eu l'occasion de voir... Non, c'est le même que tout à l'heure, j'ai dû me gourer qqpart...

Il n'y a rien d'anormal à ce qu'apparaissent tous ces dossiers BFU ?? Bon, je vais aller en mode sans échec...

Je cherche à avoir dans C:/BFU les2 fichiers EGDACCESS.bfu et BFU.exe..... .... reviens dès que c'est au point Merci, à +

Et voici mon rapport . Euh... c'est bien ça? Logfile of HijackThis v1.99.1 Scan saved at 11:25:05, on 09/04/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe C:\WINDOWS\system32\drivers\CDAC11BA.EXE C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PSIService.exe C:\Program Files\CyberLink\Shared Files\RichVideo.exe C:\Program Files\SiteAdvisor\6061\SAService.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Picasa2\PicasaMediaDetector.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\BtUsrBdg.exe C:\WINDOWS\system32\BTSetBootKey.exe C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe C:\Program Files\Dell Photo AIO Printer 942\dlbubmgr.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe C:\Program Files\Dell Photo AIO Printer 942\dlbubmon.exe C:\Program Files\TomTom HOME\TomTomHOME.exe C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe C:\Program Files\SiteAdvisor\6061\SiteAdv.exe C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Hercules\WiFi Station\WifiStation.exe C:\Program Files\BOINC\boincmgr.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe C:\Program Files\SpamPal\spampal.exe C:\Program Files\BOINC\boinc.exe C:\WINDOWS\system32\dlbucoms.exe C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe C:\WINDOWS\system32\notepad.exe C:\DOCUME~1\Moi\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.google.fr/keyword/%s R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://forum.telecharger.01net.com/microhebdo/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - (no file) R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6061\SiteAdv.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6061\SiteAdv.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe" O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [bTUSRBDG] BtUsrBdg.exe O4 - HKLM\..\Run: [bTSETBOOTKEY] BTSetBootKey.exe O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe" O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [iMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE O4 - HKLM\..\Run: [Dell Photo AIO Printer 942] "C:\Program Files\Dell Photo AIO Printer 942\dlbubmgr.exe" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME\TomTomHOME.exe" -s O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" O4 - HKLM\..\Run: [siteAdvisor] C:\Program Files\SiteAdvisor\6061\SiteAdv.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DSpace.exe] C:\Documents and Settings\Moi\DSpace.exe O4 - Startup: BOINC Manager.lnk = C:\Program Files\BOINC\boincmgr.exe O4 - Startup: SpamPal.lnk = C:\Program Files\SpamPal\spampal.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: WiFi Station.lnk = ? O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...?p=ZNxdm119YYFR O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Post Image to Blog - res://C:\WINDOWS\ImageShackToolbar\ImageShackToolbar.dll/5003 O8 - Extra context menu item: Tag This Image - res://C:\WINDOWS\ImageShackToolbar\ImageShackToolbar.dll/5002 O8 - Extra context menu item: Upload All Images to ImageShack - res://C:\WINDOWS\ImageShackToolbar\ImageShackToolbar.dll/5000 O8 - Extra context menu item: Upload Image to ImageShack - res://C:\WINDOWS\ImageShackToolbar\ImageShackToolbar.dll/5001 O8 - Extra context menu item: View EXIF - C:\ViewEXIF\EXIF.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O15 - Trusted Zone: http://toolbar.imageshack.us O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/f...tup1.0.0.15.cab O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/...nst20040510.cab O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} - http://tools.ebayimg.com/eps/wl/activex/eB...l_v1-0-3-48.cab O16 - DPF: {556DDE35-E955-11D0-A707-000000521957} - http://www.xblock.com/download/xclean_micro.exe O16 - DPF: {5F4D3335-3194-4167-85AE-E7325F2695EF} - http://scripts.dlv4.com/binaries/egaccess4..._1068_em_XP.cab O16 - DPF: {5FD9726A-4977-449D-8352-25FDD8A510B5} - http://scripts.dlv4.com/binaries/egaccess4..._1067_em_XP.cab O16 - DPF: {6932D140-ABC4-4073-A44C-D4A541665E35} (ImageShack Toolbar) - http://toolbar.imageshack.us/toolbar/ImageShackToolbar.cab O16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - http://www.fnacmusic.com/telechargementFna...acComposant.cab O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by124fd.bay124.hotmail.msn.com/activex/HMAtchmt.ocx O18 - Protocol: bw+0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Protocol: offline-8876480 - {180306D6-7EAA-4DF4-9041-85CBD021A791} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6061\SiteAdv.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: dlbu_device - Dell - C:\WINDOWS\system32\dlbucoms.exe O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: SiteAdvisor Service - McAfee, Inc. - C:\Program Files\SiteAdvisor\6061\SAService.exe

Re- Voici déjà le rapport fixnavi.txt Je m'occupe maintenant de hijackthis. Search Navipromo version 1.1.3 commencé le 09/04/2007 à 11:08:36,07 !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!! !!! Poster ce rapport sur le forum pour le faire analyser !!! !!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!! Fix lancé depuis C:\navilog1 Mise a jour le 31.03.2007 a 08h00 by IL-MAFIOSO Executé en mode normal *** Recherche Programmes installes *** Instant Access *** Recherche dossiers dans C:\WINDOWS *** C:\WINDOWS\msskinner trouvé ! *** Recherche dossiers dans C:\Program Files *** C:\Program Files\Instant Access trouvé ! C:\Program Files\MailSkinner trouvé ! *** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data *** *** Recherche dossiers dans C:\Documents and Settings\Moi\Application Data *** *** Recherche avec BlackLight Engine/F-secure *** BlackLight Engine est un produit de F-secure, pour + d'infos : http://www.f-secure.com/blacklight/blacklight_help.html Fichier(s) caché(s) dans C:\WINDOWS\system32 : C:\windows\system32\icraxmlfp.exe Processus caché(s) dans C:\WINDOWS\system32 : C:\windows\system32\icraxmlfp.exe *** Recherche fichiers *** C:\WINDOWS\pack.epk trouvé ! C:\WINDOWS\tmlpcert2007 trouvé ! C:\WINDOWS\system32\nvs2.inf trouvé ! C:\WINDOWS\system32\linewsrv.exe trouvé ! *** Recherche cles registre *** Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage] Recherche Clé Magic Control HKEY_CURRENT_USER\Software\Lanconfig trouvé ! HKEY_USERS\S-1-5-21-3845361479-2097110548-3550222069-1006\Software\Lanconfig trouvé ! *** Module de Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Recherche fichiers connus: 2)Recherche Heuristique : * C:\WINDOWS\system32\eckdujhg.dat trouvé ! C:\WINDOWS\system32\ftexqjuio.dat trouvé ! C:\WINDOWS\system32\icraxmlfp.dat trouvé ! ** C:\WINDOWS\system32\eckdujhg.dat trouvé ! C:\WINDOWS\system32\ftexqjuio.dat trouvé ! C:\WINDOWS\system32\icraxmlfp.dat trouvé ! *** C:\WINDOWS\system32\ftexqjuio_nav.dat trouvé ! **** C:\WINDOWS\system32\eckdujhg_navps.dat trouvé ! C:\WINDOWS\system32\icraxmlfp_navps.dat trouvé ! ***** C:\WINDOWS\system32\eckdujhg_nav.dat trouvé ! C:\WINDOWS\system32\ftexqjuio_nav.dat trouvé ! C:\WINDOWS\system32\icraxmlfp_nav.dat trouvé ! ****** ******* ******** C:\WINDOWS\system32\icraxmlfp.exe trouvé ! C:\WINDOWS\system32\linewsrv.exe trouvé ! *** Analyse Terminé le 09/04/2007 à 11:17:48,70 ***

D'accord. Merci bruce lee pour cette méthode, je déroule tout ça dès que possible, à bientôt.

Bonjour à tous. Je suis infecté par une série de popups à répétition a priori bien connus: System Doctor, NaviSearch, Instant Access... On m'a conseillé d'appliquer ce remède: http://www.alt-shift-return.org/Info/proc%E9dureIA.html J'ai réussi à "isoler", grâce à Blacklight (premier lien) la famille de fichiers qu'il convient d'éradiquer, et qui est pour moi: higntbmoz. Mais je n'arrive pas à télécharger les autres liens , c'est à dire que lorsque j'ai "vos fichiers sont téléchargés vers... bureau", et bien je ne trouve rien sur le bureau. Ma question est donc double: - D'abord bien sûr suis-je sur la bonne piste? Cette méthode est-elle la bonne? - Si oui, où fais-je une erreur lorsque j'essaie de télécharger les liens? Au plaisir de vous lire sur le sujet, cordialement.