Mon ordi et vachement chelou nivo progamme!!! HELP PLZ !!!

ok tou dabor certain programme aparaisse et dézaparaisse kan je fai alt upr et lotre truc.... Vu ke je sui en informatike un singe avec une tronconneuz je voudrai bien savoir komen enlever certain pa genti truc tel ke Core.exe,cli.exe et les multiple svchost ke jai. Cela se prosui apré linfection de toute par ka subi mon ordi ya pa lonten 5 spyware a nen plu finir) g tou essayer spybot,spy sweeper , et mm ad aware et je sais pa tro utiliser hijackthis alor siouplai yorai pa kelkun sur cette tite terre bleu ki orai un peu de coeur pr me aider siouplai.... Dieu vou le rendra certainemen ;p

Core.exe .....c koi ???

Ya ossi bocou bocou bocou dutilisation de mémoire par iexplorer .exe...je sais ke c internet mai sa utilise 43 700 Ko environ :s
siouplai ya pa kelkun ki pourai maider

Bonjour,

Poste un rapport HijackThis

Télécharge le, puis met le dans un dossier dédié (exemple : ..\Bureau\Hijackthis\Hijackthis.exe ).
Renomme-le en Scanner.exe (clic droit sur le fichier HijackThis et choisis renommer).
Ensuite, lance le (double clic sur Scanner.exe ensuite tu l’exécutes) appuie sur Do a system scan a save a logfile, le bloc note va alors s’ouvrir, tu copies et tu colles le rapport ici dans ta prochaine réponse.

merki bob ji vai ti suite

Logfile of HijackThis v1.99.1
Scan saved at 20:03:20, on 2006-11-09
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\CACHEM~1\CachemanXP.exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\WINDOWS\SYSTEM\DRIVER\ntuser.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SYSTEM\DRIVER\ntsrv.exe
C:\WINDOWS\system\driver\csrss.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\Program Files\Auto Power-on\RunTask.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Auto Power-on\AutoPowerOn.exe
C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE
C:\Program Files\Logitech\ImageStudio\LogiTray.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\D-Link AirPlus Xtreme G\AirPlus.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\dgjzjgdz\LOCALS~1\Temp\Rar$EX00.922\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://global.acer.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.ad-w-a-r-e.com/cgi-bin/PopupV3?ID={8AC77F05-E80B-AEF3-8E7F-461918717671}&type=normal&mSkip=1&rnd=27027
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: UserInit=userinit.exe
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Executive Software\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [AutoPowerOn] C:\Program Files\Auto Power-on\AutoPowerOn.exe
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe -Embedding -boot
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [PCLEPCI] C:\PROGRA~1\PINNAC~1\PPE\PPE.EXE
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [winlog] winlog.exe
O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKLM\..\RunServices: [winlog] winlog.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [EA Core] C:\Program Files\Electronic Arts\EA Downloader\Core.exe -silent
O4 - Global Startup: D-Link AirPlus Xtreme G Configuration Utility.lnk = ?
O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://global.acer.com/
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games.com.my/com/EGamesPlugin.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
O18 - Protocol: bw+0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: DateTime - C:\WINDOWS\system32\hr6005jme.dll (file missing)
O21 - SSODL: IconPackager Repair - {1799460C-0BC8-4865-B9DF-4A36CD703FF0} - C:\WINDOWS\system32\iprepair.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: CachemanXP (CachemanXPService) - OuterTechnologies - C:\PROGRA~1\CACHEM~1\CachemanXP.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NTBOOTMGR (NTBOOT) - Unknown owner - C:\WINDOWS\SYSTEM\DRIVER\ntuser.exe
O23 - Service: NTLOAD - Unknown owner - C:\WINDOWS\SYSTEM\DRIVER\ntsrv.exe
O23 - Service: NTSVCMGR - Unknown owner - C:\WINDOWS\SYSTEM\DRIVER\ntsrv.exe
O23 - Service: Auto Power-on & Shut-down Service (PCAutoPowerOnService) - Unknown owner - C:\Program Files\Auto Power-on\PCAutoPowerOnService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe

jespere ke kelkun konprendra mieu ke moi .... ;p

Bonjour,

Infection Look2Me et autres !! On commence, attache ta ceinture c'est partit  

1/ Prière d'imprimer ces instructions, ou de les coller dans un fichier texte, pour lecture durant ce fix. Regarde bien les trois petites notes au bas, avant de débuter.

Télécharge Look2Me-Destroyer.exe sur ton Bureau.

http://www.atribune.org/ccount/click.php?id=7

* Ferme toutes les fenêtres actives avant de passer à l'étape suivante.
* Double-clique Look2Me-Destroyer.exe afin de lancer l'outil.
* Coche Run this program as a task
* Un message s'affichera, te disant ceci : "Look2Me-Destroyer will close and re-open in approximately 10 seconds". Clique OK
* Il se relancera après les 10 secondes, puis clique sur le bouton Scan for L2M; les icônes de ton Bureau vont disparaître : c'est normal.
* Lorsque le scan termine, clique sur le bouton Remove L2M
* Un message Done Scanning apparaîtra, clique OK.
* Un nouveau message s'affichera : Done removing infected files! Look2Me-Destroyer will now shutdown your computer; clique OK.
* Ton PC va maintenant s'éteindre.
* Démarre ton PC normalement.
* Colle le rapport généré, situé ici : C:\Look2Me-Destroyer.txt dans ta prochaine réponse.

#Si Look2Me-Destroyer ne se relance pas automatiquement après les 10 secondes, redémarre et essaie à nouveau.

##Si tu reçois un message de ton parefeu que l'outil tente d'accéder à l'internet : accepte.

###Si un message runtime error '339' s'affiche : télécharge MSWINSCK.OCX du lien ci-bas, et place-le dans le dossier C:\Windows\System32.
http://www.ascentive.com/support/new/images/lib/MSWINSC...

2/ • Télécharge combofix.exe (par sUBs) sur ton Bureau

http://download.bleepingcomputer.com/sUBs/combofix.exe

• Double clique combofix.exe et suis les invites.
• Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

3/ Reposte un nouveau rapport HijackThis.

le programme Loo2me destroyer marche mai sa si ke sa ouvrira ds 1 minute et sa fai 15 minute ke jaten :s

c bon dsl

Voila le premier rapport de Look2Me !!! Merci encore mm si jai pa fini   !!!!

Look2Me-Destroyer V1.0.12

Scanning for infected files.....
Scan started at 2006-11-10 17:50:15

Infected! C:\WINDOWS\system32\hr6005jme.dll
Infected! C:\WINDOWS\system32\mtihnd.dll
Infected! C:\WINDOWS\system32\mwxex.dll
Infected! C:\WINDOWS\system32\izhlpapi.dll
Infected! C:\WINDOWS\system32\jxt500.dll
Infected! C:\WINDOWS\system32\cjyptui.dll
Infected! C:\WINDOWS\system32\cncdll.dll
Infected! C:\WINDOWS\system32\namsdba.dll
Infected! C:\WINDOWS\system32\xlsp1res.dll
Infected! C:\WINDOWS\system32\dhwsock.dll
Infected! C:\WINDOWS\system32\mzdemui.dll
Infected! C:\WINDOWS\system32\mogsvc.dll
Infected! C:\WINDOWS\system32\icsecsnp.dll
Infected! C:\WINDOWS\system32\mvdemui.dll
Infected! C:\WINDOWS\system32\dn6s01j7e.dll
Infected! C:\WINDOWS\system32\cEbinet.dll
Infected! C:\WINDOWS\system32\hr4005hme.dll
Infected! C:\WINDOWS\system32\mrvfw32.dll
Infected! C:\WINDOWS\system32\lbcoinst.dll
Infected! C:\WINDOWS\system32\xosp3res.dll
Infected! C:\WINDOWS\system32\fp2o03f3e.dll
Infected! C:\WINDOWS\system32\jtpo0773e.dll
Infected! C:\WINDOWS\system32\cymcat.dll
Infected! C:\WINDOWS\system32\gpj0l31m1.dll
Infected! C:\WINDOWS\system32\mmpbde40.dll
Infected! C:\WINDOWS\system32\mboeacct.dll
Infected! C:\WINDOWS\system32\meisam11.dll
Infected! C:\WINDOWS\system32\trcfgwmi.dll
Infected! C:\WINDOWS\system32\iQssam.dll
Infected! C:\WINDOWS\system32\e2jmlc111f.dll
Infected! C:\WINDOWS\system32\rFsmxs.dll
Infected! C:\WINDOWS\system32\rncns4.dll
Infected! C:\WINDOWS\system32\sjlogcfg.dll
Infected! C:\WINDOWS\system32\kvdmac.dll
Infected! C:\WINDOWS\system32\dfquery.dll
Infected! C:\WINDOWS\system32\mhxbde40.dll
Infected! C:\WINDOWS\system32\knrnel32.dll
Infected! C:\WINDOWS\system32\shlwid.dll
Infected! C:\WINDOWS\system32\onbc32.dll
Infected! C:\WINDOWS\system32\kedinbe1.dll
Infected! C:\WINDOWS\system32\smrrnfr.dll
Infected! C:\WINDOWS\system32\modtcprx.dll
Infected! C:\WINDOWS\system32\cWbview.dll
Infected! C:\WINDOWS\system32\s2880cluefq80.dll
Infected! C:\WINDOWS\system32\h42olef31h2.dll
Infected! C:\WINDOWS\system32\n48olel31hq.dll
Infected! C:\WINDOWS\system32\mvjul9191.dll
Infected! C:\WINDOWS\system32\wR2time.dll
Infected! C:\WINDOWS\system32\irp2l57o1.dll
Infected! C:\WINDOWS\system32\dBdx9_25.dll
Infected! C:\WINDOWS\system32\WR5fiber.dll
Infected! C:\WINDOWS\system32\Iz50_qc.dll
Infected! C:\WINDOWS\system32\k062lajo1doc.dll
Infected! C:\WINDOWS\system32\rDcpldlg.dll
Infected! C:\WINDOWS\system32\enr6l19s1.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP827\A0051080.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP827\A0051096.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0061122.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0062131.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0063138.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0063147.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0063157.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0064167.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0065175.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0065186.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0066183.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0066188.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0066193.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0066202.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067209.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067211.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067220.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067229.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067239.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067248.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067257.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067353.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067364.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067373.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067382.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067391.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067400.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067409.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067421.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067430.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067440.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067453.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068461.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068471.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068479.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068481.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068491.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068501.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068511.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068525.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068551.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068553.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068562.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068571.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068580.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068588.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068599.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068639.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068640.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068649.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068650.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068659.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068669.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068678.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068694.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068703.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068711.dll
Infected! C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068713.dll
Infected! C:\WINDOWS\system32\guard.tmp

Attempting to delete infected files...

Attempting to delete: C:\WINDOWS\system32\mtihnd.dll
C:\WINDOWS\system32\mtihnd.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mwxex.dll
C:\WINDOWS\system32\mwxex.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\izhlpapi.dll
C:\WINDOWS\system32\izhlpapi.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\jxt500.dll
C:\WINDOWS\system32\jxt500.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\cjyptui.dll
C:\WINDOWS\system32\cjyptui.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\cncdll.dll
C:\WINDOWS\system32\cncdll.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\namsdba.dll
C:\WINDOWS\system32\namsdba.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\xlsp1res.dll
C:\WINDOWS\system32\xlsp1res.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\dhwsock.dll
C:\WINDOWS\system32\dhwsock.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mzdemui.dll
C:\WINDOWS\system32\mzdemui.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mogsvc.dll
C:\WINDOWS\system32\mogsvc.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\icsecsnp.dll
C:\WINDOWS\system32\icsecsnp.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mvdemui.dll
C:\WINDOWS\system32\mvdemui.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\dn6s01j7e.dll
C:\WINDOWS\system32\dn6s01j7e.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\cEbinet.dll
C:\WINDOWS\system32\cEbinet.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\hr4005hme.dll
C:\WINDOWS\system32\hr4005hme.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mrvfw32.dll
C:\WINDOWS\system32\mrvfw32.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\lbcoinst.dll
C:\WINDOWS\system32\lbcoinst.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\xosp3res.dll
C:\WINDOWS\system32\xosp3res.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\fp2o03f3e.dll
C:\WINDOWS\system32\fp2o03f3e.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\jtpo0773e.dll
C:\WINDOWS\system32\jtpo0773e.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\cymcat.dll
C:\WINDOWS\system32\cymcat.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\gpj0l31m1.dll
C:\WINDOWS\system32\gpj0l31m1.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mmpbde40.dll
C:\WINDOWS\system32\mmpbde40.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mboeacct.dll
C:\WINDOWS\system32\mboeacct.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\meisam11.dll
C:\WINDOWS\system32\meisam11.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\trcfgwmi.dll
C:\WINDOWS\system32\trcfgwmi.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\iQssam.dll
C:\WINDOWS\system32\iQssam.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\e2jmlc111f.dll
C:\WINDOWS\system32\e2jmlc111f.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\rFsmxs.dll
C:\WINDOWS\system32\rFsmxs.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\rncns4.dll
C:\WINDOWS\system32\rncns4.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\sjlogcfg.dll
C:\WINDOWS\system32\sjlogcfg.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\kvdmac.dll
C:\WINDOWS\system32\kvdmac.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\dfquery.dll
C:\WINDOWS\system32\dfquery.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mhxbde40.dll
C:\WINDOWS\system32\mhxbde40.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\knrnel32.dll
C:\WINDOWS\system32\knrnel32.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\shlwid.dll
C:\WINDOWS\system32\shlwid.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\onbc32.dll
C:\WINDOWS\system32\onbc32.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\kedinbe1.dll
C:\WINDOWS\system32\kedinbe1.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\smrrnfr.dll
C:\WINDOWS\system32\smrrnfr.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\modtcprx.dll
C:\WINDOWS\system32\modtcprx.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\cWbview.dll
C:\WINDOWS\system32\cWbview.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\s2880cluefq80.dll
C:\WINDOWS\system32\s2880cluefq80.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\h42olef31h2.dll
C:\WINDOWS\system32\h42olef31h2.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\n48olel31hq.dll
C:\WINDOWS\system32\n48olel31hq.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mvjul9191.dll
C:\WINDOWS\system32\mvjul9191.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\wR2time.dll
C:\WINDOWS\system32\wR2time.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\irp2l57o1.dll
C:\WINDOWS\system32\irp2l57o1.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\dBdx9_25.dll
C:\WINDOWS\system32\dBdx9_25.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\WR5fiber.dll
C:\WINDOWS\system32\WR5fiber.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\Iz50_qc.dll
C:\WINDOWS\system32\Iz50_qc.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\k062lajo1doc.dll
C:\WINDOWS\system32\k062lajo1doc.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\rDcpldlg.dll
C:\WINDOWS\system32\rDcpldlg.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\enr6l19s1.dll
C:\WINDOWS\system32\enr6l19s1.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP827\A0051080.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP827\A0051080.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP827\A0051096.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP827\A0051096.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0061122.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0061122.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0062131.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0062131.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0063138.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0063138.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0063147.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0063147.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0063157.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP828\A0063157.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0064167.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0064167.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0065175.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0065175.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0065186.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0065186.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0066183.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0066183.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0066188.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0066188.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0066193.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0066193.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0066202.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0066202.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067209.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067209.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067211.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067211.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067220.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067220.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067229.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067229.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067239.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067239.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067248.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067248.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067257.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP829\A0067257.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067353.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067353.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067364.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067364.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067373.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067373.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067382.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067382.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067391.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067391.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067400.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067400.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067409.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067409.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067421.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067421.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067430.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067430.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067440.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067440.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067453.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0067453.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068461.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068461.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068471.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068471.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068479.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068479.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068481.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068481.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068491.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068491.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068501.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068501.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068511.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068511.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068525.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068525.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068551.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068551.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068553.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068553.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068562.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068562.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068571.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068571.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068580.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068580.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068588.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068588.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068599.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068599.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068639.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068639.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068640.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068640.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068649.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068649.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068650.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068650.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068659.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068659.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068669.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068669.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068678.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068678.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068694.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068694.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068703.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068703.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068711.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068711.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068713.dll
C:\System Volume Information\_restore{9A1FD5B5-C342-40BF-85C2-94262378FD26}\RP830\A0068713.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\guard.tmp
C:\WINDOWS\system32\guard.tmp Deleted successfully!

Making registry repairs.

Removing: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DateTime

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{EBA51BE9-C4D4-4212-BDBB-7D64C5A5A9A7}"
HKCR\Clsid\{EBA51BE9-C4D4-4212-BDBB-7D64C5A5A9A7}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{E2716548-0031-4207-B11B-38E9A48AA9B2}"
HKCR\Clsid\{E2716548-0031-4207-B11B-38E9A48AA9B2}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{5A4CEB9B-B329-49DA-A7B6-5B446263A9BE}"
HKCR\Clsid\{5A4CEB9B-B329-49DA-A7B6-5B446263A9BE}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{E0DAD7FE-6C6C-4DFF-AA99-CDA0F6FA1009}"
HKCR\Clsid\{E0DAD7FE-6C6C-4DFF-AA99-CDA0F6FA1009}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{4622D183-573E-4453-B682-74A76E8FD79E}"
HKCR\Clsid\{4622D183-573E-4453-B682-74A76E8FD79E}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{3FDD45A3-7001-4F81-B39D-7E548455CB69}"
HKCR\Clsid\{3FDD45A3-7001-4F81-B39D-7E548455CB69}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{4F74C5B4-AC25-442A-B556-E0B2A2F81674}"
HKCR\Clsid\{4F74C5B4-AC25-442A-B556-E0B2A2F81674}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{DABF0D55-1825-4F8F-8618-ED6A21CC5361}"
HKCR\Clsid\{DABF0D55-1825-4F8F-8618-ED6A21CC5361}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{CEBF48B0-D9B3-4C45-B641-CBEF4CFED607}"
HKCR\Clsid\{CEBF48B0-D9B3-4C45-B641-CBEF4CFED607}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{FE8BD0BA-BF5E-40F1-A309-3351ABB88D84}"
HKCR\Clsid\{FE8BD0BA-BF5E-40F1-A309-3351ABB88D84}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{8D723A54-8F24-41E8-8625-E1D06A169B8D}"
HKCR\Clsid\{8D723A54-8F24-41E8-8625-E1D06A169B8D}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{9E36F111-EA6D-4414-B060-A69D8F884641}"
HKCR\Clsid\{9E36F111-EA6D-4414-B060-A69D8F884641}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{6D7ED2B2-D059-4D6B-B916-FB4A3A8F4699}"
HKCR\Clsid\{6D7ED2B2-D059-4D6B-B916-FB4A3A8F4699}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{712C0D00-6870-4855-A153-C0DABF7E19E4}"
HKCR\Clsid\{712C0D00-6870-4855-A153-C0DABF7E19E4}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{8612696E-1BA5-449C-8C1B-112C337D55F2}"
HKCR\Clsid\{8612696E-1BA5-449C-8C1B-112C337D55F2}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{8260C5E9-DB9D-4FFC-9E1E-ED30D984A400}"
HKCR\Clsid\{8260C5E9-DB9D-4FFC-9E1E-ED30D984A400}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{25F5AC59-DD52-4045-859F-043625D68401}"
HKCR\Clsid\{25F5AC59-DD52-4045-859F-043625D68401}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{8D5D1238-86A6-4FBB-B295-BAB3906F5D02}"
HKCR\Clsid\{8D5D1238-86A6-4FBB-B295-BAB3906F5D02}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{B362F0D1-0FE5-45AB-A065-AAE422C75DAD}"
HKCR\Clsid\{B362F0D1-0FE5-45AB-A065-AAE422C75DAD}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{2C6DD86F-FA2E-44B1-89FF-998F57C90C0A}"
HKCR\Clsid\{2C6DD86F-FA2E-44B1-89FF-998F57C90C0A}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{589F3B29-EC34-4959-BB24-8319DA84AF14}"
HKCR\Clsid\{589F3B29-EC34-4959-BB24-8319DA84AF14}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{3DEEA646-4E1D-43C7-B6C8-A89245DD07D1}"
HKCR\Clsid\{3DEEA646-4E1D-43C7-B6C8-A89245DD07D1}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{A1FAC38A-AC29-49CC-83AC-F70CD8915802}"
HKCR\Clsid\{A1FAC38A-AC29-49CC-83AC-F70CD8915802}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{5BA43CD9-67AD-40A9-86B7-C630439AF518}"
HKCR\Clsid\{5BA43CD9-67AD-40A9-86B7-C630439AF518}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{FFEEF750-31A8-4E49-AAC3-D6674AC1B107}"
HKCR\Clsid\{FFEEF750-31A8-4E49-AAC3-D6674AC1B107}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{44108E8D-B936-4233-9BA3-D2A66F5B3D93}"
HKCR\Clsid\{44108E8D-B936-4233-9BA3-D2A66F5B3D93}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{EE4860F1-E083-4EED-B2FD-85AE34615370}"
HKCR\Clsid\{EE4860F1-E083-4EED-B2FD-85AE34615370}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{2A26AD3B-908D-4431-A403-45E8D06EE5F0}"
HKCR\Clsid\{2A26AD3B-908D-4431-A403-45E8D06EE5F0}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{95D5E3AC-C85D-49C4-89AC-96750B5A22D2}"
HKCR\Clsid\{95D5E3AC-C85D-49C4-89AC-96750B5A22D2}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{406ED38F-442C-4AEE-83AC-F95D0412C511}"
HKCR\Clsid\{406ED38F-442C-4AEE-83AC-F95D0412C511}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{9FB5A104-883C-4AEB-BF7D-542822D0B0A8}"
HKCR\Clsid\{9FB5A104-883C-4AEB-BF7D-542822D0B0A8}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{472075A6-8A75-454E-8604-206C40C3177F}"
HKCR\Clsid\{472075A6-8A75-454E-8604-206C40C3177F}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{CBB0E7E2-BB87-4EAE-AAF1-FA38C9BEBE55}"
HKCR\Clsid\{CBB0E7E2-BB87-4EAE-AAF1-FA38C9BEBE55}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{D40C651F-3B22-4F21-9397-FDD302D72089}"
HKCR\Clsid\{D40C651F-3B22-4F21-9397-FDD302D72089}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{46151B08-134B-47AA-8A10-63E5F925BA9F}"
HKCR\Clsid\{46151B08-134B-47AA-8A10-63E5F925BA9F}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{DE685EF1-256C-49A3-8DCF-44CEE9259E06}"
HKCR\Clsid\{DE685EF1-256C-49A3-8DCF-44CEE9259E06}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{831DC565-AE03-469A-BECA-E84D0AF6EFB4}"
HKCR\Clsid\{831DC565-AE03-469A-BECA-E84D0AF6EFB4}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{762B47A5-294A-4143-A011-52F7E23785E5}"
HKCR\Clsid\{762B47A5-294A-4143-A011-52F7E23785E5}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{CE91CAB5-F13A-4EBC-A5F7-E4DF3FE53F77}"
HKCR\Clsid\{CE91CAB5-F13A-4EBC-A5F7-E4DF3FE53F77}

Restoring Windows certificates.

Replaced hosts file with default windows hosts file


Restoring SeDebugPrivilege for Administrateurs - Succeeded

et voici le raport de combofix !!!

dgjzjgdz - 06-11-10 17:58:27,45 Service Pack 2
ComboFix 06.11.9 - Running from: "C:\Documents and Settings\dgjzjgdz\Bureau"

(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINDOWS\Duce6.exe
C:\dfndrff_e15.exe
C:\kybrdff_e15.exe
C:\WINDOWS\system32\aaa00000.sys
C:\Program Files\Fichiers communs\Yazzle1122OinAdmin.exe
C:\Program Files\Fichiers communs\Yazzle1122OinUninstaller.exe
C:\Program Files\outlook
C:\Program Files\winupdates
C:\Program Files\Fichiers communs\{2B1B1302-0AE9-1036-0112-040409210002}

~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~

Folders Quarantined:

C:\QooBox\Purity\WINDOWS\system32\MANTEC~1
C:\QooBox\Purity\WINDOWS\system32\MANTEC~1\??mantec
C:\QooBox\Purity\WINDOWS\system32\MANTEC~1\explorer.exe


((((((((((((((((((((((((((((((( Files Created from 2006-10-10 to 2006-11-10 ))))))))))))))))))))))))))))))))))


2006-10-17 21:24 42,736 --a------ C:\WINDOWS\icont.exe


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2006-11-01 19:33 -------- d-------- C:\Program Files\Electronic Arts
2006-11-01 19:28 -------- d-------- C:\Program Files\EA SPORTS
2006-10-28 23:07 -------- d-------- C:\Documents and Settings\dgjzjgdz\Application Data\vlc
2006-10-24 21:38 -------- d-------- C:\Program Files\Lavasoft
2006-10-24 21:38 -------- d-------- C:\Documents and Settings\dgjzjgdz\Application Data\Lavasoft
2006-10-20 17:58 -------- d-------- C:\Documents and Settings\dgjzjgdz\Application Data\ArcSoft
2006-09-28 18:26 135168 --a------ C:\WINDOWS\ms05462672319.exe
2006-09-27 19:10 -------- d-------- C:\Documents and Settings\dgjzjgdz\Application Data\Macromedia
2006-09-27 19:06 -------- d-------- C:\Documents and Settings\dgjzjgdz\Application Data\Webroot
2006-09-27 19:06 -------- d-------- C:\Documents and Settings\dgjzjgdz\Application Data\Real
2006-09-27 19:06 -------- d-------- C:\Documents and Settings\dgjzjgdz\Application Data\ATI
2006-09-26 18:55 -------- d-------- C:\Program Files\Webroot
2006-09-26 18:01 1233 --a------ C:\WINDOWS\system32\dlhdb6b3.sys
2006-09-25 12:53 2 --a------ C:\WINDOWS\system32\wnstssv.exe
2006-09-19 17:55 -------- d-------- C:\Program Files\KONAMI
2006-09-15 17:21 53248 --a------ C:\WINDOWS\uninst108.exe
2006-09-15 17:17 53248 --a------ C:\WINDOWS\uni_e6h.exe
2006-09-14 20:02 -------- d-------- C:\Program Files\PopCap Games
2006-09-13 01:03 1084416 --a------ C:\WINDOWS\system32\msxml3.dll
2006-08-31 10:43 131072 --a------ C:\WINDOWS\system32\lurvaj.dll
2006-08-25 11:51 617472 --a------ C:\WINDOWS\system32\comctl32.dll
2006-08-21 08:26 16896 --a------ C:\WINDOWS\system32\fltlib.dll
2006-08-21 05:14 23040 --a------ C:\WINDOWS\system32\fltmc.exe
2006-08-16 07:59 100352 --a------ C:\WINDOWS\system32\6to4svc.dll


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe"
"msnmsgr"="\"C:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background"
"EA Core"="C:\\Program Files\\Electronic Arts\\EA Downloader\\Core.exe -silent"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"DAEMON Tools"="\"C:\\Program Files\\DAEMON Tools\\daemon.exe\" -lang 1033"
"SoundMan"="SOUNDMAN.EXE"
"SunJavaUpdateSched"="C:\\Program Files\\Java\\jre1.5.0_03\\bin\\jusched.exe"
"TkBellExe"="\"C:\\Program Files\\Fichiers communs\\Real\\Update_OB\\realsched.exe\" -osboot"
"DiskeeperSystray"="\"C:\\Program Files\\Executive Software\\Diskeeper\\DkIcon.exe\""
"AutoPowerOn"="C:\\Program Files\\Auto Power-on\\AutoPowerOn.exe"
"LVCOMS"="C:\\Program Files\\Fichiers communs\\Logitech\\QCDriver2\\LVCOMS.EXE"
"LogitechGalleryRepair"="C:\\Program Files\\Logitech\\ImageStudio\\ISStart.exe"
"LogitechImageStudioTray"="C:\\Program Files\\Logitech\\ImageStudio\\LogiTray.exe"
"SSBkgdUpdate"="C:\\Program Files\\Fichiers communs\\Scansoft Shared\\SSBkgdUpdate\\SSBkgdupdate.exe -Embedding -boot"
"PinnacleDriverCheck"="C:\\WINDOWS\\system32\\PSDrvCheck.exe -CheckReg"
"PCLEPCI"="C:\\PROGRA~1\\PINNAC~1\\PPE\\PPE.EXE"
"ATICCC"="\"C:\\Program Files\\ATI Technologies\\ATI.ACE\\cli.exe\" runtime"
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"SpySweeper"="\"C:\\Program Files\\Webroot\\Spy Sweeper\\SpySweeper.exe\" /startintray"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000001

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,aa,00,00,00,00,00,00,00,ff,02,00,00,e2,02,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:04,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\
ff,ff,04,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\
00,00,01,00,00,00

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"
"IconPackager Repair"="{1799460C-0BC8-4865-B9DF-4A36CD703FF0}"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"


Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\At1.job
C:\WINDOWS\tasks\At2.job
C:\WINDOWS\tasks\At5.job

Completion time: 06-11-10 17:59:11.10
C:\ComboFix.txt ... 06-11-10 17:59

Et pour finir voila un autre rapport Hijackthis...jespere ke c fini ... nn jrigole jatendrai le temps ki fo pr nettoyer toute cette merde 

Logfile of HijackThis v1.99.1
Scan saved at 18:05:47, on 2006-11-10
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\CACHEM~1\CachemanXP.exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\WINDOWS\SYSTEM\DRIVER\ntuser.exe
C:\WINDOWS\SYSTEM\DRIVER\ntsrv.exe
C:\WINDOWS\system\driver\csrss.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Auto Power-on\AutoPowerOn.exe
C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE
C:\Program Files\Logitech\ImageStudio\LogiTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\dgjzjgdz\LOCALS~1\Temp\Rar$EX00.453\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://global.acer.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.ad-w-a-r-e.com/cgi-bin/PopupV3?ID={8AC77F05-E80B-AEF3-8E7F-461918717671}&type=normal&mSkip=1&rnd=27027
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: UserInit=userinit.exe
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Executive Software\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [AutoPowerOn] C:\Program Files\Auto Power-on\AutoPowerOn.exe
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe -Embedding -boot
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [PCLEPCI] C:\PROGRA~1\PINNAC~1\PPE\PPE.EXE
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [EA Core] C:\Program Files\Electronic Arts\EA Downloader\Core.exe -silent
O4 - Global Startup: D-Link AirPlus Xtreme G Configuration Utility.lnk = ?
O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://global.acer.com/
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games.com.my/com/EGamesPlugin.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
O18 - Protocol: bw+0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {6DF540FA-A39C-45EE-8D7A-A62C644BC2BB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

jaten toujour une de vo remarke pr mr dire koi