High-Tech Santé Médecine Droit-Finances

Réalisation

vidéo numérique

Rechercher : dans
Par :

[Virussss] Win32 et bombe de décompression

Dernière réponse le 7 fév 2007 à 09:48:20 Dakiii, le 29 déc 2006 à 19:06:57 
 Signaler ce message aux modérateurs

Bonjour à tous,

Après avoir longtemps été sur Intenet explorer et été "protégé" par Mac afee, je change recement de navigateur ( de IE à firefox ) et d'antivirus ( de Mc Afee à avast!).

La première analyse que me fait avast me détecte des virus de partout ainsi que des chevaux de troies de tous les côtés. J'en refais plusieurs à la suite et maintenant, après avoir réussi à virer pas mal de virus, il m'en reste quelques uns que je n'arrive pas du tout a supprimer :
-Win32:Adware-gen [Adw]
-Win32:Dialer-567[trj]
- et une petite bombe de décmopression !!!!

Est ce que vous pouvez m'aider à tout supprimer, tout nettoyer et à retrouver un pc clean svp ???

Ps : je ne suis pas un big boss en informatique mais je devrai y arriver avec des termes pas trop compliqué ...

merci ;)

Configuration: Windows XP
Firefox 1.5.0.9

Posez votre question Répondre

2

salwa5, le 29 déc 2006 à 21:04:30

Bonsoir telecharge et execute ces antispywares ( pense a les mettre a jour avant de les lancées)
(1) ad-aware version 1.06

(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo
http://pageperso.aol.fr/balltrap34/adwseflash.zip

tutorial
http://www.pcentraide.com/index.php?showtopic=188
***
(2) spybot version 1.4

(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite


voir demo d utilisation
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
***



ps : un grand merci a balltrap pour les lien :)

(3) AVG anti spyware
http://www.01net.com/...

(n'oublie pas de le mettre a jour avant de lancer le scan)


Relance AVG AS puis choisis l'onglet "Analyse"
Puis l'onglet "Paramètres"
Sous la question "Comment réagir ?", clique sur "Actions recommandées" et choisis "Quarantaine"
Re-clique sur l'onglet "Analyse" puis réalise une "Analyse complète du système"

/!\ Si un fichier est infecté en fin d'analyse /!\
Clique sur "Appliquer toutes les actions "

Clique sur "Enregistrer le rapport" puis sur "Enregistrer le rapport sous"
Enregistre ce fichier texte sur ton bureau ensuite colle le raport ici


supprime les fichiers inutiles (fichiers temporaire , cookies .. ect avec ceci

Ccleaner
http://www.malekal.com/tutorial_CCleaner.html

- Nettoye ta base de registre avec regcleaner : http://www.malekal.com/regcleaner.html

tutorial
http://www.pcentraide.com/index.php?showtopic=5898


a++++

   
Répondre à salwa5

3

Dakiii, le 29 déc 2006 à 23:34:47

Re,

bon j'ai fais ce que tu m'as di, tout va bien pour ad-aware, spybot, Ccleaner et regcleaner, j'ai réussi à virer plein de fichiers indésirables ... etc, MAIS pour AVG anti spyware , j'arrive pas a installer les mises a jour ------> résultat je n'ai pas fais d'analyse avec AVG.
Il me dit qu'il y a une erreur lors de l'instalation.

Je reessaierai demain et jte dis si ca a marché ou pas.

Je referai une analyse avast demain pour voir ce qu'il reste ...


En tout cas merci pour ton aide, et après tout ca est ce que le pc sera niquel ????

   
Répondre à Dakiii

salwa5, le 29 déc 2006 à 23:45:11

Desinstalles / reinstalle avg antispyware demain normalement ca devrais marché

a demain

a+++

   
Répondre à salwa5

4

Dakiii, le 30 déc 2006 à 07:25:14

Les mises à jours se sont installées automatiquement en démarrant le pc ...

voila le rapport AVG :

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 07:19:55 30/12/2006

+ Résultat de l'analyse:



C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\R­P391\A0099216.dll -> Adware.ErrorSafe : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP349\A0085532.dll -> Adware.HotBar : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP363\A0094188.dll -> Adware.WebHancer : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP363\A0094189.exe -> Adware.WebHancer : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP363\A0094184.exe -> Adware.Webhancer.a : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP364\A0095312.exe -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP398\A0100720.exe -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\av.cpl -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
HKU\S-1-5-21-2417316939-3560401039-581869224-1009\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2178F3FB-2560-458F-BDEE-631E2FE0DFE4} -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP398\A0100731.dll -> Adware.WinAntiVixer : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\actskn45.ocx -> Downloader.IstBar : Nettoyé et sauvegardé (mise en quarantaine).
C:\Program Files\Fichiers communs\kfri\kfrid\vocabulary -> Downloader.TSUpdate.j : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP391\A0099212.exe -> Not-A-Virus.Downloader.Win32.WinFixer.m : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP405\A0110168.exe -> Not-A-Virus.Downloader.Win32.WinFixer.o : Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.576:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.577:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.375:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.516:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.73:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.74:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.75:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.765:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.76:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.77:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.780:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.78:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.79:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.80:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.81:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.881:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.532:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.533:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.828:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Adition : Nettoyé.
:mozilla.829:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Adition : Nettoyé.
:mozilla.770:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Adjuggler : Nettoyé.
:mozilla.771:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Adjuggler : Nettoyé.
:mozilla.772:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Adjuggler : Nettoyé.
:mozilla.317:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.318:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.312:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.313:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.314:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.315:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.316:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.97:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.214:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.614:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Bfast : Nettoyé.
:mozilla.83:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.84:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.296:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.297:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.298:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.299:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.945:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Casinotropez : Nettoyé.
:mozilla.735:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Clickzs : Nettoyé.
:mozilla.736:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Clickzs : Nettoyé.
:mozilla.581:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Com : Nettoyé.
:mozilla.167:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.168:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.169:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.776:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Cqcounter : Nettoyé.
:mozilla.82:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.290:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.913:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.764:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.30:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.42:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.44:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.45:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.46:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.47:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.190:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.23:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.396:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.645:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.372:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.373:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.374:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.376:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.394:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.552:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.773:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.774:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.830:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Komtrack : Nettoyé.
:mozilla.831:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Komtrack : Nettoyé.
:mozilla.947:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Masterstats : Nettoyé.
:mozilla.398:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.931:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Qksrv : Nettoyé.
:mozilla.932:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Qksrv : Nettoyé.
:mozilla.697:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.698:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.699:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.700:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.701:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.702:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.703:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.781:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Revenue : Nettoyé.
:mozilla.782:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Revenue : Nettoyé.
:mozilla.91:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.92:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.93:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.94:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.95:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.96:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.413:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.414:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.415:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.416:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.417:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.418:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.419:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.420:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.421:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.422:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.423:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.424:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.425:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.426:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.427:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.428:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.429:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.430:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.431:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.434:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.435:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.436:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.437:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.438:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.439:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.440:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.441:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.442:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.443:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.444:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.445:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.446:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.447:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.448:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.449:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.450:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.751:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexlist : Nettoyé.
:mozilla.752:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexlist : Nettoyé.
:mozilla.753:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexlist : Nettoyé.
:mozilla.754:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexlist : Nettoyé.
:mozilla.755:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexlist : Nettoyé.
:mozilla.756:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sexlist : Nettoyé.
:mozilla.799:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.85:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.86:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.241:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.242:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.243:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.244:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.245:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.246:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.247:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.248:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.251:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.252:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.122:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.123:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.124:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.125:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.126:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.664:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Tribalfusion : Nettoyé.
:mozilla.833:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.834:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.835:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.836:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.837:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.838:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.87:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Valueclick : Nettoyé.
:mozilla.88:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Valueclick : Nettoyé.
:mozilla.910:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Valueclick : Nettoyé.
:mozilla.911:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Valueclick : Nettoyé.
:mozilla.226:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.227:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.228:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.573:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.393:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Yadro : Nettoyé.
:mozilla.329:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.330:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.331:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.332:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.567:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.568:C:\Documents and Settings\Zacharie\Application Data\Mozilla\Firefox\Profiles\9v92xeb4.default\cookies-1.txt -> TrackingCookie.Zedo : Nettoyé.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP346\A0084235.exe -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP349\A0086627.exe -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP351\A0087796.exe -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP352\A0088880.exe -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP353\A0088920.exe -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP354\A0091156.exe -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP356\A0093336.exe -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP357\A0093642.exe -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP359\A0093918.exe -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP363\A0094260.exe -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\wintsvtr.exe -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).


Fin du rapport

   
Répondre à Dakiii

5

^^Marie^^, le 30 déc 2006 à 07:56:44

Salut

Pour avancer

Bcp de cookies donc pas méchant

Fais un nettoyage des cookies avec ce log

CleanUp40
http://pageperso.aol.fr/Balltrap34/CleanUp40.exe
Démo d’utilisation :
http://pageperso.aol.fr/balltrap34/democleanup.htm

Tu peux refaire un AVG ensuite (tu verras la différence)

F - Hijackthis - Outil de diagnostic et réparation
lire démo
http://pageperso.aol.fr/balltrap34/Hijenr.gif
http://pageperso.aol.fr/balltrap34/demohijack.htm
Télécharge version française ici
http://telechargement.zebulon.fr/160-patch-francais-pour-hij­ackthis-1991.html
Copie/colle le rapport

Bon courage

A++







L'homme sage ne joue pas à "saute-mouton" avec une licorne... ...

   
Répondre à ^^Marie^^

6

Dakiii, le 31 déc 2006 à 11:23:00

Salut

désolé pour le retard...

voila le rapport de hijackthis :

Logfile of HijackThis v1.99.1
Scan saved at 11:19:59, on 31/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://free.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [Athan] C:\Program Files\Athan\Athan.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe

   
Répondre à Dakiii

7

^^Marie^^, le 31 déc 2006 à 11:38:53

On continue le nettoyage

1°/ - Télécharge le logiciel SmitfraudFix ((crée par S!Ri J)
http://siri.urz.free.fr/Fix/SmitfraudFix.zip et décompresse le.


En image :
http://siri.urz.free.fr/Fix/SmitfraudFix.php

tu le décompresses tu doubles cliques sur smitfraudfix.cmd et tu choisi l option 1
cela vas générer un rapport.
Copie/colle le rapport

Il faut que tu installe un pare feu

télécharger la version gratuite de Kerio (avec Avast => moins de conflits)
http://www.clubic.com/telecharger-fiche11071-kerio-personal-firewall.html

Tuto =>
http://www.vulgarisation-informatique.com/kerio.php
Site de Kerio
http://kerio.probb.fr/

L'homme sage ne joue pas à "saute-mouton" avec une licorne... ...

   
Répondre à ^^Marie^^

8

Dakiii, le 1 jan 2007 à 14:50:39

Voila le rapport de smitfroudfix :

SmitFraudFix v2.132

Rapport fait à 14:45:57,34, 01/01/2007
Executé à partir de C:\Program Files\Mozilla Firefox\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» C:\


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Zacharie


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Zacharie\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Zacharie\Favoris


»»»»»»»»»»»»»»»»»»»»»»»» Bureau


»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"


»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32


»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin

   
Répondre à Dakiii

9

^^Marie^^, le 1 jan 2007 à 19:40:07

Re


Redémarres le PC en mode sans échec : tu tapotes sur la touche F8 de ton clavier (ou F5 ) et tu choisis le mode sans échec)

- Ouvre le dossier "SmitfraudFix" et double clic sur "Smitfraudfix.cmd", choisit l’option 2 et tu réponds oui à tout.

Copie/colle le rapport sur le forum stp.

Installe Kerio


Refais un hitjackthis

A++


L'homme sage ne joue pas à "saute-mouton" avec une licorne... ...

   
Répondre à ^^Marie^^

10

Dakiii, le 2 jan 2007 à 10:48:07

Re

tiens voila le rapport que j'ai obtenu :

SmitFraudFix v2.132

Rapport fait à 10:27:54,34, 02/01/2007
Executé à partir de C:\Program Files\SmitfraudFix\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode sans echec

»»»»»»»»»»»»»»»»»»»»»»»» Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus


»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés


»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin

pour kerio, la configuration a faire est pas si facile que ca, mais bon j'ai qd même réussi et on verra par la suite ...

   
Répondre à Dakiii

11

^^Marie^^, le 2 jan 2007 à 11:09:26

Salut

Refais un hitjackthis

stp
merci

L'homme sage ne joue pas à "saute-mouton" avec une licorne... ...

   
Répondre à ^^Marie^^

12

Dakiii, le 4 jan 2007 à 08:45:05

Voila le rapport d'hijackthis :

Logfile of HijackThis v1.99.1
Scan saved at 08:43:14, on 04/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\ALCWZRD.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Athan\Athan.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [Athan] C:\Program Files\Athan\Athan.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: bw+0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe

   
Répondre à Dakiii

13

^^Marie^^, le 4 jan 2007 à 09:29:33

Bonjour,

Méthode à suivre dans l'ordre...
------------------------------------------------------------­----------------
Télécharger ces logiciels (sauf si tu les as)
A utiliser plus tard

A - ad-aware version 1.06
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo
http://pageperso.aol.fr/balltrap34/adwseflash.zip

B - spybot version 1.4
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo d utilisation
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm

C - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
Télécharge ici :
http://www.ccleaner.com/ccdownload.asp
Tutorial ici:
http://www.vulgarisation-informatique.com/nettoyer-windows-c­cleaner.php

D - Ewido
http://www.malekal.com/tutorial_ewidoV4.html
------------------------------------------------------------­----------------
¤Affiche tous les fichiers et dossiers :
Clique sur démarrer/panneau de configuration/outil/option des dossiers/affichage

Coche « afficher les fichiers et dossiers cachés »

Décoche la case "Masquer les fichiers protégés du système d'exploitation (recommandé)"

Décoche « masquer les extensions dont le type est connu »
Puis fais «Ok» pour valider les changements.

Et appliquer !
=================================
Relance HijackThis, choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked"
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" –osboot
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [Athan] C:\Program Files\Athan\Athan.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 –k
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" –atboottime
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O11 - Options group: [INTERNATIONAL] International*
O18 - Protocol: bw+0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {C4E5AD55-2A9C-4840-A444-63059D520899} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll


Dans ajout/supp des programmes
Logitech\Desktop Messenger
============ ============================
¤Démarre en mode sans échec :
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
(Si F8 ne marche pas utilise la touche F5).
----------------------------------------------------------------------------
¤Vide tes fichiers temps et temporary internet file:

Maintenant tu lances
A/ Ad-Aware supprime quarantaine
B/ Spybot Supprime quarantaine
C/ Ccleaner Ewido Copier/coller le rapport
D/
----------------------------------------------------------------------------
¤ Vide ta Corbeille.
----------------------------------------------------------------------------
¤ Redémarre en mode normal, relance Hijackthis et copie/colle un nouveau rapport sur le forum.

Tiens nous au courant

A+
L'homme sage ne joue pas à "saute-mouton" avec une licorne... ...

   
Répondre à ^^Marie^^

14

Dakiii, le 4 jan 2007 à 09:46:46

Ok c'est bon j'ai tous les logiciels,

par contre, ca fait pas un peu beaucoup à cocher ou c'est normal ??

merci de ton aide ;)

   
Répondre à Dakiii

15

^^Marie^^, le 4 jan 2007 à 09:52:30

Bah, t"affoles pas,
C'est normal

L'homme sage ne joue pas à "saute-mouton" avec une licorne... ...

   
Répondre à ^^Marie^^

16

Dakiii, le 4 jan 2007 à 11:50:58

C'est bon j'ai tout fais et voila le rapport de hijackthis :

Logfile of HijackThis v1.99.1
Scan saved at 11:49:47, on 04/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\ps2.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe

   
Répondre à Dakiii

17

^^Marie^^, le 4 jan 2007 à 12:01:24

Où en sont tes soucis ?


O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-

Tu t'en serts ??
L'homme sage ne joue pas à "saute-mouton" avec une licorne... ... 

   
Répondre à ^^Marie^^

18

Dakiii, le 4 jan 2007 à 12:31:51

A la base le pc plantait au bout de quelques minutes dès qu'on lancait un jeu vidéo ou un truc dans le genre après que les ventillos aient tourné a fond. Je pensais que ma carte graphique déconnait et après avoir été faire un tour sur le site de ATI ( marque de ma carte ), j'ai une carte graph avec les dernières mises a jours , tout est en ordre, en gros les bugs ne viennent pas de ma carte graph.

Un gars que je connais (informaticien) a regardé le pc, et m'a dit que les bugs venaient sans doute d'un virus qui surchargait le processeur et qui faisait bloquer l'ordi ---> d'ailleurs on a lancé un jeu, et au moment où les ventillos se sont mis a tourner ( et donc juste avant que l'ordi bloque ) on a regardé les processus en marche (CTRL+ALT+suppr/processus ), et la personne a terminé un processus et de suite les ventillos se sont éteint et l'ordi n'a pas bloqué ---> la personne m'a dit que ce n'était pas un logiciel normal en gros ca devait être un virus.

De là on a regardé mon antivirus et il n'était pas du tout a jour, j'ai donc changé Mc Afee et pris Avast!, j'ai lancé une analyse et j'ai vu plein de virus , de merdes ... comme je le dis dans mon premier message j'ai réussis à en supprimer pas mal mais il reste des incorruptibles.

Je lancerai une analyse avast! demain soir ( pô l'temps :'( ) et te dirai ce qu'il reste. Ceci dit avec tous les logiciels qu'on m'a fait télécharger, je pense qu'il ne doit pas rester grand chose comparé à avant. Je sais pas si la bombe de décompression est toujours là.
En tout cas mon pc rame moins qu'avant, mais bloque toujours ( au bout de plus de temps) quand on lance un jeu ....




O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} -

Je ne pense pas que je m'en serve ...



En tout cas merci a toi ^^Marie^^ et bonne anniversaire a l'avance ;)

   
Répondre à Dakiii

19

Dakiii, le 5 jan 2007 à 22:37:30

Re

après une analyse de avast voila ce qui reste :

- un truc impossible a scaner ds C:\prgram flies ... winzip
- 3 trucs impossibles a scaner dans : C:\System Volume information ...\WINZIP32.EX
- et une bombe de décompression : C:\System Volume information ... /0compressed.zip

et sinon O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-

je pense pas que je m'en serve

   
Répondre à Dakiii

20

^^Marie^^, le 5 jan 2007 à 22:44:29

Salut

Chui pas trop là en ce moment, déso

En tout cas merci a toi ^^Marie^^ et bonne anniversaire a l'avance ;) Bien joué et merci --- lol

Fais ce qui suit

L'infection se situe dans le système de restauration XP (System Volume Information\_restore)

¤Désactive ta restauration système (uniquement si tu es sous XP):
Clic droit sur poste de travail puis,
propriété, tu cliques sur onglet restauration système
tu coches la case « désactiver la restauration » et applique.

Puis,

¤Réactive ta restauration système (uniquement si tu es sous XP):
Clic droit sur poste de travail puis,
propriété, tu cliques sur onglet restauration système
tu décoches la case « désactiver la restauration » et applique.


Exlique nous tes soucis

L'homme sage ne joue pas à "saute-mouton" avec une licorne... ...

   
Répondre à ^^Marie^^

21

Dakiii, le 5 jan 2007 à 23:14:25

Bon j'ai désactivé puis réactivé, rien ne c'est passé en apparence.

faudra que je fasse une autre analyse ( pas ce soir mais demain ---> c'est trop long, au moins 2 heures )

voili voilou

   
Répondre à Dakiii

22

Dakiii, le 7 jan 2007 à 00:00:35

Ah c'est bon ma bombe de décompression n'est plus là après avoir fait une analyse de avast suite à la désactivatin puis réactivation du système de restauration !!! trop forte ^^Marie^^

Par contre il me reste un fichier suspect :
C:\Program Files\WINZIP\winzip10.exe\SETUP.WZ\WINZIP32.EX_. ---> avast n'arrive pas à le scaner, il me dit que les données de ce type de fichiers ne sont pas prise en compte et quand j'essaie de le supprimer il me dit qu'une erreur s'est produite lors de la suppression.

Voila c'est la seule chose qui me reste.

++

   
Répondre à Dakiii

23

^^Marie^^, le 7 jan 2007 à 12:23:56

Slt

Refais un HT
stp

t'affoles pas pour la réponse si elle tarde, mais CCM est en plein travaux en ce moment, et moi chui un peu à la bourre

A++ L'homme sage ne joue pas à "saute-mouton" avec une licorne... ... 

   
Répondre à ^^Marie^^

24

Dakiii, le 8 jan 2007 à 20:47:18

Logfile of HijackThis v1.99.1
Scan saved at 20:46:43, on 08/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\ps2.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\AVG antispyware\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe

   
Répondre à Dakiii

25

Dakiii, le 10 jan 2007 à 17:33:14

Alors t'as regardé ??

   
Répondre à Dakiii

26

^^Marie^^, le 11 jan 2007 à 07:49:57

Pour moi ton log est clean
As tu un soucis particulier

A++ L'homme sage ne joue pas à "saute-mouton" avec une licorne... ...

   
Répondre à ^^Marie^^

27

Dakiii, le 16 jan 2007 à 21:25:26

Re

désolé de mon énorme retard mais y'a eu un problème avec ma ligne internet et je ne pouvais pas me connecter.

Beh l'ordi plante de moins en moins donc tout doit être rentrer dans l'ordre.

Par contre le pare feu kerio indique quelques application et je sais pas ce que c'est, tu peux me dire ce que c'est stp ???
-LSA Shell (Export Version)
-Generic Host Process for Win32 Services

voila

   
Répondre à Dakiii
30 réponses 12 Suivant
Posez votre question Répondre
Ils ont besoin de votre aide