Sujet Précédent Sujet Suivant

Trops de fenetres publicitaires!!!!!!

Fermé
footzz10 Messages postés 55 Date d'inscription mardi 6 février 2007 Statut Membre Dernière intervention 1 mars 2009 - 13 févr. 2007 à 00:30
 Utilisateur anonyme - 13 févr. 2007 à 01:09
Bonjour,
Depuis que j'ai mis à jour mon internet explorer,il y a toujours des fenetres publicitaires qui apparaissent à chaque fois!!!!!Meme j'ai essayé de les bloquées mais sa ne fonctionne pas!!!!!

J'aurai besoin d'aide
Merci

5 réponses

Réponse 1 / 5
Utilisateur anonyme
13 févr. 2007 à 00:35
Bonjour

Télécharge HijackThis v1.99.1
http://pchelpbordeaux.free.fr/logiciels.html
Tutorial
http://pchelpbordeaux.free.fr/tuto.html
Démo en image
http://pageperso.aol.fr/balltrap34/demohijack.htm

Fais un scan et poste l'analyse ici.
0
Réponse 2 / 5
footzz10 Messages postés 55 Date d'inscription mardi 6 février 2007 Statut Membre Dernière intervention 1 mars 2009 2
13 févr. 2007 à 00:41
Voila le rapport!




Logfile of HijackThis v1.99.1
Scan saved at 18:40:03, on 2007-02-12
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\System32\GEARSec.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\Program Files\Norton Ghost\Agent\VProSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\PRISMSVR.EXE
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Norton Ghost\Agent\GhostTray.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\PROGRA~1\McAfee\SPAMKI~1\MskAgent.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\WINDOWS\system32\igfxsrvc.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe
C:\Program Files\Nokia\Nokia PC Suite 6\Launch Application 2.exe
C:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE
C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE
C:\Program Files\NetWaiting\netWaiting.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\America Online 9.0\aoltray.exe
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\MSN Messenger\usnsvc.exe
c:\progra~1\intern~1\iexplore.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.google.ca/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?cc=fr&toHttps=1&redig=D4322FEE7CF74A348CB9CE970F098EF5
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?cc=fr&toHttps=1&redig=D4322FEE7CF74A348CB9CE970F098EF5
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.google.ca/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "c:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Norton Ghost 10.0] "C:\Program Files\Norton Ghost\Agent\GhostTray.exe"
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [MSKDetectorExe] C:\PROGRA~1\McAfee\SPAMKI~1\MSKDetct.exe /startup
O4 - HKLM\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MskAgent.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\Launch Application 2.exe -onlytray
O4 - HKLM\..\Run: [DataLayer] C:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ppmate] C:\Program Files\PPMate\PPMate\ppmate.exe -autoplay
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [BYTEHOPETYPENOUN] C:\Documents and Settings\All Users\Application Data\4objbytehope\FIVEHOLD.exe
O4 - HKCU\..\Run: [ModemOnHold] C:\Program Files\NetWaiting\netWaiting.exe
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [gram ping] C:\DOCUME~1\CARLAT~1\APPLIC~1\BLUEBO~1\long owns pop.exe
O4 - HKCU\..\Run: [WINSOS VERIFY] "C:\Program Files\WINSOS\WINSOS.EXE" MINI
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O4 - Global Startup: Carte pour réseau sans fil WLAN (USB 2.0).lnk = ?
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: QuickBooks Update Agent.lnk = C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\npjpi150_10.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\npjpi150_10.dll
O9 - Extra button: (no name) - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - c:\program files\mcafee\spamkiller\mcapfbho.dll
O9 - Extra 'Tools' menuitem: McAfee AntiPhishing Filter - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - c:\program files\mcafee\spamkiller\mcapfbho.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/binFrameWork/v10/StagingUI.cab46479.cab
O16 - DPF: {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} (DjVuCtl Class) - http://downloadcenter.samsung.com/content/common/cab/DjVuControlLite_EN.cab
O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (ZoneBuddy Class) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/BinFrameWork/v10/ZBuddy.cab32846.cab
O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/binframework/v10/ZPAChat.cab32846.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O16 - DPF: {CAC181B0-4D70-402D-B571-C596A47D0CE0} (CBankshotZoneCtrl Class) - http://zone.msn.com/bingame/zpagames/zpa_pool.cab42858.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (StadiumProxy Class) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/binframework/v10/StProxy.cab41227.cab
O18 - Protocol: bw+0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\System32\GEARSec.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
O23 - Service: McAfee SpamKiller Server (MskService) - McAfee Inc. - C:\PROGRA~1\McAfee\SPAMKI~1\MSKSrvr.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files\Norton Ghost\Agent\VProSvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
0
Réponse 3 / 5
Utilisateur anonyme
13 févr. 2007 à 00:48
Re

AVG7, Symantec, McAffee , c'est trop. Il faut un seul antivirus.


Tu as une infection Lop.
Télécharge LopxpMH sur ton Bureau.

http://perso.numericable.fr/~altshift/Info/Fichiers/lopxpMH2.zip

Dézippe-le (clic droit >> Extraire ici) et double clique sur le fichier lopxpMH.bat.

Poste le contenu du rapport qui va s'ouvrir.
0
Réponse 4 / 5
footzz10 Messages postés 55 Date d'inscription mardi 6 février 2007 Statut Membre Dernière intervention 1 mars 2009 2
13 févr. 2007 à 00:51
Je dois garder lekel?


et voila pour le rapport...



Rapport fait à 18:50:12,67 le 2007-02-12

******************************************
## Répertoires Application Data

Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\Documents and Settings\Administrator\Application Data

2006-11-05 02:28 <DIR> .
2006-11-05 02:28 <DIR> ..
2006-11-05 02:28 <DIR> Gtek
2006-11-05 02:28 <DIR> Identities
2006-11-05 02:28 <DIR> Intel
2006-11-05 02:28 <DIR> Microsoft
2006-11-05 02:28 <DIR> Sun
2006-11-05 02:28 <DIR> Symantec
2006-11-05 02:28 62 desktop.ini
1 File(s) 62 bytes
8 Dir(s) 1ÿ833ÿ402ÿ368 bytes free
Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\Documents and Settings\Administrator\Local Settings\Application Data

2006-11-05 02:28 <DIR> .
2006-11-05 02:28 <DIR> ..
2006-11-05 02:28 <DIR> {7148F0A6-6813-11D6-A77B-00B0D0142030}
2006-11-05 02:28 <DIR> ApplicationHistory
2006-11-05 02:28 <DIR> BVRP Software
2006-11-05 02:28 <DIR> Google
2006-11-05 02:28 <DIR> Microsoft
2006-11-05 02:28 <DIR> Musicmatch
2006-11-05 02:28 4ÿ240ÿ656 IconCache.db
1 File(s) 4ÿ240ÿ656 bytes
8 Dir(s) 1ÿ833ÿ398ÿ272 bytes free
Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\Documents and Settings\All Users\Application Data

2004-08-10 12:57 <DIR> .
2004-08-10 12:57 <DIR> ..
2006-11-28 20:21 <DIR> 4objbytehope
2007-02-07 19:32 <DIR> Adobe
2006-07-14 22:31 <DIR> AOL
2006-10-09 00:58 <DIR> Apple Computer
2006-12-05 00:03 <DIR> Avg7
2006-10-22 02:14 <DIR> BVRP Software
2006-07-14 22:28 <DIR> CyberLink
2006-10-13 22:07 <DIR> Google
2006-12-05 00:18 <DIR> Grisoft
2006-07-14 22:36 <DIR> GTek
2006-07-14 22:35 <DIR> InstallShield
2006-07-14 22:23 <DIR> Intel
2006-07-14 22:33 <DIR> Intuit
2006-07-14 22:43 <DIR> McAfee
2006-07-14 22:43 <DIR> McAfee.com
2006-07-14 22:43 <DIR> McAfee.com Personal Firewall
2004-08-10 12:57 <DIR> Microsoft
2006-10-16 22:11 <DIR> pixelStorm
2006-08-30 21:34 <DIR> Prism
2006-07-14 22:32 <DIR> QuickTime
2004-08-10 13:13 <DIR> SBSI
2006-07-14 22:37 <DIR> Symantec
2006-07-14 22:32 <DIR> Viewpoint
2006-08-04 23:43 <DIR> Windows Genuine Advantage
2006-11-05 02:59 <DIR> Yahoo! Companion
2004-08-10 12:57 62 desktop.ini
2006-12-07 21:28 0 LauncherAccess.dt
2006-07-14 22:27 4 QSLLPSVCShare
2007-01-08 11:26 583 QTSBandwidthCache
4 File(s) 649 bytes
27 Dir(s) 1ÿ833ÿ398ÿ272 bytes free
Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\Documents and Settings\Carla Tavares\Application Data

2006-08-01 09:39 <DIR> .
2006-08-01 09:39 <DIR> ..
2006-08-01 13:26 <DIR> Adobe
2006-08-01 13:26 <DIR> AdobeUM
2006-10-09 01:00 <DIR> Apple Computer
2007-01-02 21:48 <DIR> ArcSoft
2006-12-05 00:18 <DIR> AVG7
2006-11-28 20:21 <DIR> BLUE BORE
2006-12-08 11:34 <DIR> ConvertTemp
2006-08-01 11:35 <DIR> Corel
2006-08-02 11:24 <DIR> Corel Photo Album
2006-08-01 13:27 <DIR> CyberLink
2006-08-02 11:22 <DIR> Datalayer
2006-10-16 00:33 <DIR> DivX
2006-12-24 15:25 <DIR> Gearbox Software
2006-10-13 22:09 <DIR> Google
2006-08-01 09:39 <DIR> Gtek
2006-10-09 00:30 <DIR> Help
2006-08-01 09:39 <DIR> Identities
2006-08-01 09:39 <DIR> Intel
2006-12-09 18:03 <DIR> Lavasoft
2006-08-21 01:35 <DIR> Leadertech
2006-08-01 12:05 <DIR> Macromedia
2006-08-01 09:40 <DIR> McAfee.com Personal Firewall
2006-08-01 09:39 <DIR> Microsoft
2006-10-16 00:29 <DIR> Mozilla
2006-11-28 20:21 <DIR> NetPumper
2006-08-02 11:22 <DIR> Nokia
2006-08-02 11:26 <DIR> Nokia Multimedia Player
2006-08-02 11:13 <DIR> PC Suite
2006-11-26 12:39 <DIR> PPMate
2006-11-26 12:53 <DIR> ppStream
2006-12-08 11:34 <DIR> Samsung
2006-08-21 01:35 <DIR> Sonic
2006-08-01 09:39 <DIR> Sun
2006-08-01 09:39 <DIR> Symantec
2006-12-08 11:34 <DIR> Temporary
2006-12-08 11:34 <DIR> TransRender
2006-08-01 09:39 62 desktop.ini
2006-08-01 11:35 12ÿ358 PFP120JCM.{PB
2006-08-01 11:35 61ÿ678 PFP120JPR.{PB
3 File(s) 74ÿ098 bytes
38 Dir(s) 1ÿ833ÿ394ÿ176 bytes free
Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\Documents and Settings\Carla Tavares\Local Settings\Application Data

2006-08-01 09:39 <DIR> .
2006-08-01 09:39 <DIR> ..
2006-08-01 09:39 <DIR> {7148F0A6-6813-11D6-A77B-00B0D0142030}
2006-08-01 13:26 <DIR> Adobe
2006-10-09 01:00 <DIR> Apple Computer
2006-08-01 09:39 <DIR> ApplicationHistory
2006-08-01 09:39 <DIR> BVRP Software
2006-08-02 11:24 <DIR> Corel Photo Album
2006-08-01 09:39 <DIR> Google
2006-10-09 00:30 <DIR> Help
2006-08-01 09:39 <DIR> Microsoft
2006-10-16 00:29 <DIR> Mozilla
2006-08-01 09:39 <DIR> Musicmatch
2006-08-01 13:27 <DIR> Powercinema
2006-08-02 14:36 <DIR> PowerDVD
2006-10-09 00:53 <DIR> WMTools Downloaded Files
2006-08-05 00:58 33ÿ792 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2006-08-01 12:13 136 fusioncache.dat
2006-08-01 12:13 83ÿ704 GDIPFONTCACHEV1.DAT
2006-08-01 09:39 2ÿ109ÿ226 IconCache.db
4 File(s) 2ÿ226ÿ858 bytes
16 Dir(s) 1ÿ833ÿ394ÿ176 bytes free
Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\Documents and Settings\Default User\Application Data

2004-08-10 12:57 <DIR> .
2004-08-10 12:57 <DIR> ..
2006-07-14 22:36 <DIR> Gtek
2006-08-01 09:38 <DIR> Identities
2006-08-01 09:38 <DIR> Intel
2004-08-10 12:57 <DIR> Microsoft
2006-08-01 09:38 <DIR> Sun
2006-08-01 09:38 <DIR> Symantec
2004-08-10 12:57 62 desktop.ini
1 File(s) 62 bytes
8 Dir(s) 1ÿ833ÿ394ÿ176 bytes free
Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\Documents and Settings\Default User\Local Settings\Application Data

2004-08-10 12:57 <DIR> .
2004-08-10 12:57 <DIR> ..
2006-08-01 09:38 <DIR> {7148F0A6-6813-11D6-A77B-00B0D0142030}
2006-08-01 09:38 <DIR> ApplicationHistory
2006-08-01 09:38 <DIR> BVRP Software
2006-08-01 09:38 <DIR> Google
2004-08-10 13:03 <DIR> Microsoft
2006-08-01 09:38 <DIR> Musicmatch
2006-08-01 09:38 3ÿ782ÿ806 IconCache.db
1 File(s) 3ÿ782ÿ806 bytes
8 Dir(s) 1ÿ833ÿ394ÿ176 bytes free
Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\Documents and Settings\LocalService\Application Data

2004-08-10 13:08 <DIR> .
2004-08-10 13:08 <DIR> ..
2006-12-05 00:18 <DIR> AVG7
2006-08-23 22:36 <DIR> Macromedia
2006-08-01 10:28 <DIR> McAfee.com Personal Firewall
2004-08-10 13:08 <DIR> Microsoft
0 File(s) 0 bytes
6 Dir(s) 1ÿ833ÿ390ÿ080 bytes free
Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\Documents and Settings\LocalService\Local Settings\Application Data

2004-08-10 13:08 <DIR> .
2004-08-10 13:08 <DIR> ..
2004-08-10 13:08 <DIR> Microsoft
0 File(s) 0 bytes
3 Dir(s) 1ÿ833ÿ390ÿ080 bytes free
Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\Documents and Settings\NetworkService\Application Data

2004-08-10 13:08 <DIR> .
2004-08-10 13:08 <DIR> ..
2006-08-02 14:13 <DIR> Intel
2004-08-10 13:08 <DIR> Microsoft
0 File(s) 0 bytes
4 Dir(s) 1ÿ833ÿ390ÿ080 bytes free
Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\Documents and Settings\NetworkService\Local Settings\Application Data

2004-08-10 13:08 <DIR> .
2004-08-10 13:08 <DIR> ..
2004-08-10 13:08 <DIR> Microsoft
0 File(s) 0 bytes
3 Dir(s) 1ÿ833ÿ390ÿ080 bytes free
Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\Documents and Settings\Owner

Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\Documents and Settings\Owner\Local Settings\Application Data

2006-08-01 09:39 <DIR> .
2006-08-01 09:39 <DIR> ..
2006-08-01 09:39 <DIR> Google
0 File(s) 0 bytes
3 Dir(s) 1ÿ833ÿ390ÿ080 bytes free
Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\WINDOWS\system32\config\systemprofile\Application Data

2004-08-10 13:07 <DIR> .
2004-08-10 13:07 <DIR> ..
2006-08-01 09:39 <DIR> Gtek
2006-08-01 09:39 <DIR> Identities
2006-07-14 22:24 <DIR> Intel
2006-08-01 09:40 <DIR> McAfee.com Personal Firewall
2004-08-10 13:07 <DIR> Microsoft
2006-08-01 09:39 <DIR> Sun
2006-08-01 09:39 <DIR> Symantec
2004-08-10 13:07 62 desktop.ini
1 File(s) 62 bytes
9 Dir(s) 1ÿ833ÿ390ÿ080 bytes free
Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data

2004-08-10 13:07 <DIR> .
2004-08-10 13:07 <DIR> ..
2006-08-01 09:39 <DIR> {7148F0A6-6813-11D6-A77B-00B0D0142030}
2006-08-01 09:39 <DIR> ApplicationHistory
2006-08-01 09:39 <DIR> BVRP Software
2006-08-01 09:39 <DIR> Google
2004-08-10 13:07 <DIR> Microsoft
2006-08-01 09:39 <DIR> Musicmatch
2006-08-01 09:39 3ÿ782ÿ806 IconCache.db
1 File(s) 3ÿ782ÿ806 bytes
8 Dir(s) 1ÿ833ÿ390ÿ080 bytes free

******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks

Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\WINDOWS\Tasks

2007-02-11 17:45 278 B7D6CD689185768C.job
2006-10-09 00:59 284 AppleSoftwareUpdate.job
2006-08-01 09:39 366 McAfee.com Scan for Viruses - My Computer (DELL-Carla Tavares).job
2004-08-10 13:08 6 SA.DAT
2004-08-10 13:02 <DIR> ..
2004-08-10 13:02 <DIR> .
2004-08-10 12:51 65 desktop.ini
5 File(s) 999 bytes
2 Dir(s) 1ÿ833ÿ390ÿ080 bytes free

******************************************
## Répertoires de C:\Program Files

Volume in drive C has no label.
Volume Serial Number is 18CF-C534

Directory of C:\Program Files

2007-02-12 18:39 <DIR> .
2007-02-12 18:39 <DIR> ..
2006-12-24 18:39 <DIR> Activision
2007-02-07 19:29 <DIR> Adobe
2006-11-28 22:32 <DIR> America Online 9.0
2006-11-28 22:32 <DIR> AoE2
2006-07-14 22:32 <DIR> AOL Companion
2006-11-05 10:37 <DIR> Apple Software Update
2007-01-25 21:08 <DIR> Audacity
2006-11-28 22:32 <DIR> Avanquest update
2006-07-14 22:44 <DIR> BAE
2006-12-02 16:35 <DIR> BenQ
2006-09-22 18:39 <DIR> BitComet
2007-02-11 17:45 <DIR> BLUE BORE
2006-07-14 22:27 <DIR> Broadcom
2006-11-05 02:53 <DIR> CCleaner
2007-01-02 21:47 <DIR> Common Files
2004-08-10 13:02 <DIR> ComPlus Applications
2006-07-14 22:25 <DIR> CONEXANT
2006-07-14 22:40 <DIR> Corel
2006-07-14 22:41 <DIR> Corel Corporation
2006-07-14 22:28 <DIR> CyberLink
2006-10-11 22:48 <DIR> DAEMON Tools
2006-07-14 22:40 <DIR> Dell
2006-08-02 02:12 <DIR> Dell Support
2006-07-14 22:28 <DIR> Digital Line Detect
2006-11-28 22:32 <DIR> DivX
2006-10-11 22:58 <DIR> EA GAMES
2006-07-14 22:32 <DIR> EarthLink Setup
2006-10-16 18:09 <DIR> FunWebProducts
2006-11-30 22:56 <DIR> Google
2006-12-05 00:18 <DIR> Grisoft
2007-02-12 18:40 <DIR> Hijackthis Version Fran‡aise
2006-07-14 22:23 <DIR> Intel
2006-07-14 22:24 <DIR> Intel, Inc
2006-11-25 11:22 <DIR> Internet Explorer
2006-07-14 22:33 <DIR> Intuit
2006-11-05 10:41 <DIR> iPod
2006-10-09 00:52 <DIR> iPod Video Converter
2006-11-05 10:42 <DIR> iTunes
2006-12-24 13:46 <DIR> Java
2006-11-28 22:32 <DIR> LimeWire
2006-12-07 20:02 <DIR> LizardTech
2006-08-25 11:14 <DIR> Logitech
2006-11-28 22:30 <DIR> Maple 10
2006-07-14 22:43 <DIR> McAfee
2006-07-14 22:43 <DIR> McAfee.com
2006-11-28 22:32 <DIR> Messenger
2006-08-27 14:12 <DIR> Microsoft ActiveSync
2004-08-10 13:04 <DIR> microsoft frontpage
2006-08-08 00:43 <DIR> Microsoft Office
2006-07-14 22:31 <DIR> Microsoft Plus! Digital Media Edition
2006-07-14 22:31 <DIR> Microsoft Plus! Photo Story 2 LE
2006-08-08 00:40 <DIR> Microsoft.NET
2006-11-02 21:48 <DIR> MobTime Cell Phone Manager
2006-11-28 22:32 <DIR> Modem Helper
2006-11-03 09:45 <DIR> Motorola
2006-11-28 22:32 <DIR> Motorola Phone Tools
2004-08-10 13:02 <DIR> Movie Maker
2006-09-13 15:42 <DIR> MSN
2004-08-10 13:01 <DIR> MSN Gaming Zone
2007-02-08 23:34 <DIR> MSN Messenger
2006-11-15 21:46 <DIR> MSXML 4.0
2006-07-14 22:39 <DIR> MUSICMATCH
2004-08-10 13:02 <DIR> NetMeeting
2006-11-28 22:32 <DIR> NetWaiting
2006-07-14 22:29 <DIR> NetZeroInstallers
2006-08-02 12:53 <DIR> Nokia
2006-07-14 22:38 <DIR> Norton Ghost
2004-08-10 13:01 <DIR> Online Services
2006-12-14 07:28 <DIR> Outlook Express
2006-11-26 12:39 <DIR> PPMate
2006-11-05 10:56 <DIR> QuickTime
2006-12-07 21:23 <DIR> Samsung
2007-01-02 21:47 <DIR> SanDisk
2006-07-14 22:44 <DIR> SearchAssist
2006-07-14 22:25 <DIR> Sigmatel
2006-07-14 22:35 <DIR> Sonic
2006-07-14 22:37 <DIR> Symantec
2006-07-14 22:27 <DIR> Synaptics
2006-07-14 22:32 <DIR> Viewpoint
2006-07-14 22:36 <DIR> WebCyberCoach
2006-12-27 17:06 <DIR> Windows Media Connect 2
2006-12-27 17:34 <DIR> Windows Media Player
2004-08-10 13:01 <DIR> Windows NT
2006-10-11 23:26 <DIR> WinRAR
2006-12-09 17:40 <DIR> Winsos
2006-07-14 22:36 <DIR> WordPerfect Office 12
2004-08-10 13:04 <DIR> xerox
2006-11-05 02:53 <DIR> Yahoo!
0 File(s) 0 bytes
90 Dir(s) 1ÿ833ÿ381ÿ888 bytes free

******************************************
## Popups autorisées

* Internet Explorer

! REG.EXE VERSION 3.0

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow
forums.montrealracing.com REG_BINARY
www.tv-reveil.com REG_BINARY
www.uzinagaz.com REG_BINARY
www.flash-games.net REG_BINARY
dns-look-up.com REG_SZ
www.dns-look-up.com REG_SZ
netsearchsoft.com REG_SZ
www.netsearchsoft.com REG_SZ

* Mozilla Firefox (1 autorisé 2 interdit)

******************************************
## Registre

* [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
PCSuiteTrayApplication REG_SZ C:\Program Files\Nokia\Nokia PC Suite 6\Launch Application 2.exe -onlytray
BYTEHOPETYPENOUN REG_SZ C:\Documents and Settings\All Users\Application Data\4objbytehope\FIVEHOLD.exe

* [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
gram ping REG_SZ C:\DOCUME~1\CARLAT~1\APPLIC~1\BLUEBO~1\long owns pop.exe

******************************************
## Zones de sécurité

* HKCU Domains (4)

* P3P History (5)

******************************************
## Recherche C:\WINDOWS\*.htm, "C:\WINDOWS\*.gif"


*************** Fin du rapport ****************
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 5
Utilisateur anonyme
13 févr. 2007 à 01:09
Re



Pour l'antivirus, c'est à toi de choisir.

AVG7 est gratuit, je pense que tu as payé pour les deux autres .
Garde celui qui a la durée d'abonnement la plus longue.


Une partie de la procédure se déroulera sans avoir accès à internet, prière d'imprimer ces instructions, ou de les coller dans un fichier texte, pour lecture durant cette désinfection.
Les manipulations sont à faire sans interruption et dans l'ordre.
Si tu ne comprends pas quelque chose, demande des explications avant de commencer

1 Télécharge CCleaner.
http://www.filehippo.com/download_ccleaner.html
Installe le dans un répertoire dédié.


2 Télécharge <gras>Brute Force Uninstaller (de Merijn)
http://www.merijn.org/files/bfu.zip
Créé un nouveau dossier directement sur le C:\ et nomme-le BFU. Décompresse le fichier téléchargé dans ce nouveau dossier (C:\BFU)


3 FAIS UN CLIC-DROIT sur le lien suivant
http://perso.orange.fr/Chercheur-perso/scripts/toolbar.bfu
et choisis "Enregistrer la cible sous..." afin de télécharger toolbar.bfu (de Chercheur). Sauvegarde dans le dossier créé (C:\BFU). **Note: si tu utlises Internet Explorer, lors de la sauvegarde, assure-toi que le champs "Type :" affiche "Tous les fichiers". Tu dois maintenant avoir deux fichiers dans le dossier C:\BFU : toolbar.bfu et BFU.exe (très important).


4 Redémarre en mode sans échec. Attention, tu n'as pas accès à internet dans ce mode, note bien ce que tu as à faire.
Démarre l'ordinateur.
Une fois le chargement du BIOS terminé, il y a un écran noir. Appuye sur la touche F8 ou F5 jusqu'à l'affichage du menu des options avancées de Windows.
En utilisant les touches du curseur, sélectionne le mode sans échec approprié et appuye sur Entrée.


5 Relance un scan HijackThis et coche les lignes ci-dessous :

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [BYTEHOPETYPENOUN] C:\Documents and Settings\All Users\Application Data\4objbytehope\FIVEHOLD.exe
O4 - HKCU\..\Run: [gram ping] C:\DOCUME~1\CARLAT~1\APPLIC~1\BLUEBO~1\long owns pop.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\npjpi150_10.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\npjpi150_10.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/binFrameWork/v10/StagingUI.cab46479.cab
O16 - DPF: {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} (DjVuCtl Class) - http://downloadcenter.samsung.com/content/common/cab/DjVuControlLite_EN.cab
O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (ZoneBuddy Class) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/BinFrameWork/v10/ZBuddy.cab32846.cab
O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) -
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O16 - DPF: {CAC181B0-4D70-402D-B571-C596A47D0CE0} (CBankshotZoneCtrl Class) - http://zone.msn.com/bingame/zpagames/zpa_pool.cab42858.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (StadiumProxy Class) - https://zone.msn.com/en/utility/handler404.aspx?404;http://zone.msn.com:80/binframework/v10/StProxy.cab41227.cab
O18 - Protocol: bw+0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {9C5F4D1F-1887-426D-A8EA-DD774CE77206} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

Ferme toutes les fenêtres Windows, Internet explorer, Outlook,sauf le logiciel Hijackthis et clique sur « Fix checked »


6 Assure toi d'avoir accés à tous les fichiers.
Démarrer, Poste de travail ou autre dossier, Menu Outils, Option des dossiers, onglet Affichage :
Activer la case : Afficher les fichiers et dossiers cachés
Désactiver la case : Masquer les extensions des fichiers dont le type est connu
Désactiver la case : Masquer les fichiers protégés du système d'exploitation
Puis Appliquer


7 Supprime les fichiers/dossiers incriminés (s'ils existent encore) :

C:\Program Files\NetPumper --> Son installation a amené l'infection. Même date, même heure.
C:\Program Files\BLUE BORE
C:\Documents and Settings\All Users\Application Data\4objbytehope
C:\Documents and Settings\Carla Tavares\Application Data\BLUE BORE
C:\WINDOWS\Tasks\B7D6CD689185768C.job

Recache les fichiers systeme afin de ne pas faire d'erreur à l'avenir en sélectionnant ne pas afficher les fichiers cachés ou les fichiers système.


8 Lance le nettoyage avec CCleaner


9 Démarre le "Brute Force Uninstaller" en double-cliquant BFU.exe (du dossier C:\BFU)
Clique sur le petit dossier jaune, à la droite de la boîte Scriptline to execute, et double-clique sur :

toolbar.bfu

Dans la boîte "Scriptline to execute", tu devrais maintenant voir ceci : C:\BFU\toolbar.bfu
Clique sur Execute et laisse-le faire son travail.
Attendre que Complete script execution apparaîsse et clique sur OK.
Clique Exit pour fermer le programme BFU.


10 Redémarre normalement

Poste un nouveau log HijackThis.
0

Discussions similaires

Problème de clavier, des fenêtre s'ouvrent !!
Lyon691D -
tanteelise -

5 réponses
Conhost.exe
ThaBestGamer -
Malekal_morte- -

1 réponse
p0robleme outlook
ghis2000 -
Panth33ra -

1 réponse
Mon pc ouvre des fenetres tout seul
ilvyans -
bugiuglg -

25 réponses
Afficher deux fenêtres côte à côte
ptitchinoise -
pistouri -

11 réponses