Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  SECURITE


|||-  

C'est la galère Trojan-Proxy.Win32.Horst.be exmodule32.exe

 

Ajouter une réponse
 

 
Page photos
 
     
Vider la liste des messages à citer
 
 Page :
1
Auteur
 Sujet :

C'est la galère Trojan-Proxy.Win32.Horst.be exmodule32.exe

Prévenir les modérateurs en cas d'abus 
corbain dalas
corbain-dalas
  1. Posté le 22/05/2006 à 16:04:44  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:pleure: Depuis quelques jours je retrouve dans mon processus au démarrage :
 #exmodule32.exe
 celui-ci ralentit considérablement mon PC
 J'ai remarqué que certain d'entre vous avez une solution mais qu'elle était spécifique a chaqe PC.
 Si quelqu'un pouvait m'aider se serai super sympa
 Merci d'avance  :)

niklavi2-0
Assidu (de 10 000 à 19 999 messages postés)
  1. Posté le 22/05/2006 à 16:07:04  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 


 -Télécharges HijackThis: http://www.spywareinfo.com/~me​rijn/images/hijackthis_big.gif

 -Crée un dossier nommé HijackThis et place le dedans.

 -Exécute le et clique sur Do a scan and save log file.

 -Copie et colle ici ton rapport ouvert avec le bloc note. Sans rien faire d'autre.

(Publicité)
corbain-dalas
  1. Posté le 22/05/2006 à 16:11:00  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:jap:
 Voila mon rapport merci bocou de ton aide

 Logfile of HijackThis v1.99.1
 Scan saved at 17:09:51, on 22/05/2006
 Platform: Windows XP SP2 (WinNT 5.01.2600)
 MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 Running processes:
 C:\WINDOWS\System32\smss.exe
 C:\WINDOWS\system32\winlogon.e​xe
 C:\WINDOWS\system32\services.e​xe
 C:\WINDOWS\system32\lsass.exe
 C:\WINDOWS\system32\Ati2evxx.e​xe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\System32\svchost.ex​e
 C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBT​SERV.EXE
 C:\WINDOWS\system32\spoolsv.ex​e
 C:\WINDOWS\system32\Ati2evxx.e​xe
 C:\WINDOWS\Explorer.EXE
 C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
 C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
 C:\Program Files\Logitech\Easy Synchronization\servicestub.ex​e
 C:\Program Files\Logitech\Easy Synchronization\LogitechEasySy​nc.exe
 C:\flexlm\lmgrd.exe
 C:\WINDOWS\System32\svchost.ex​e
 C:\flexlm\SW_D.EXE
 C:\WINDOWS\AGRSMMSG.exe
 C:\WINDOWS\System32\ezSP_Px.ex​e
 C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe
 C:\Program Files\Logitech\SetPoint\LBTWiz​.exe
 C:\Program Files\Logitech\Easy Synchronization\LogitechEasySy​nc.exe
 C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe
 C:\Program Files\MessengerPlus! 3\MsgPlus.exe
 C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
 C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\Program Files\QuickTime\qttask.exe
 C:\program files\valve\steam\steam.exe
 C:\Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe
 C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
 C:\Program Files\MSN Messenger\msnmsgr.exe
 C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe
 C:\Program Files\Logitech\SetPoint\SetPoi​nt.exe
 C:\Program Files\sony\usbsircs\USBsircs.e​xe
 C:\Program Files\PyGrenouille\pygrenouill​e.exe
 C:\PROGRA~1\WIDCOMM\LOGICI~1\B​TSTAC~1.EXE
 C:\Program Files\Fichiers communs\Logitech\KhalShared\KH​ALMNPR.EXE
 C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
 C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\WINDOWS\system32\NOTEPAD.EX​E
 C:\WINDOWS\system32\mmc.exe
 C:\Program Files\sony\giga pocket\RM_SV.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 d:\Programmes\HijackThis.exe

 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://www.google.fr/
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://www.club-vaio.sony-europe.com/
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me = Liens
 O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7​D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelpe​r.dll
 O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - c:\program files\google\googletoolbar2.dl​l
 O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - c:\program files\google\googletoolbar2.dl​l
 O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
 O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.ex​e
 O4 - HKLM\..\Run: [VAIO Update 2] "C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe" /Stationary
 O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
 O4 - HKLM\..\Run: [Logitech BT Wizard] LBTWiz.exe -silent
 O4 - HKLM\..\Run: [Easy Synchronization] C:\Program Files\Logitech\Easy Synchronization\LogitechEasySy​nc.exe
 O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe"  -osboot
 O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.​exe
 O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
 O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
 O4 - HKLM\..\Run: [.nvsvc] C:\WINDOWS\system\smss.exe /w
 O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
 O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
 O4 - HKLM\..\RunOnce: [Easy Synchronization] C:\Program Files\Logitech\Easy Synchronization\LogitechEasySy​nc.exe --ports
 O4 - HKCU\..\Run: [Steam] "c:\program files\valve\steam\steam.exe" -silent
 O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe
 O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
 O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
 O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adob​e Gamma Loader.exe
 O4 - Global Startup: Assistant d'Acrobat.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
 O4 - Global Startup: BTTray.lnk = ?
 O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMC​onf.exe
 O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoi​nt.exe
 O4 - Global Startup: Pilote Remocon.lnk = C:\Program Files\sony\usbsircs\USBsircs.e​xe
 O4 - Global Startup: PyGrenouille.lnk = C:\Program Files\PyGrenouille\pygrenouill​e.exe
 O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dl​l/cmwordtrans.html
 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Off​ice10\EXCEL.EXE/3000
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFF​ICE11\EXCEL.EXE/3000
 O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
 O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dl​l/cmbacklinks.html
 O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dl​l/cmsimilar.html
 O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dl​l/cmsearch.html
 O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dl​l/cmcache.html
 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401​C608501} - C:\Program Files\Java\j2re1.4.2_01\bin\np​jpi142_01.dll
 O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401​C608501} - C:\Program Files\Java\j2re1.4.2_01\bin\np​jpi142_01.dll
 O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4AC​F32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
 O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C5​71A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\​REFIEBAR.DLL
 O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4​460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
 O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4​460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O14 - IERESET.INF: START_PAGE_URL=http://www.club​-vaio.sony-europe.com/
 O15 - Trusted Zone: *.sony-europe.com
 O15 - Trusted Zone: *.sonystyle-europe.com
 O15 - Trusted Zone: *.vaio-link.com
 O16 - DPF: {17492023-C23A-453E-A040-C7C58​0BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
 O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF​33E833C} (WUWebControl Class) - http://update.microsoft.com/wi [...] 5028178078
 O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E​0DC46EF} (HardwareDetection Control) - http://config.zebulon.fr/plugi [...] ection.cab
 O18 - Protocol: bw+0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw+0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9​B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0s - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305​202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.​dll" (file missing)
 O18 - Protocol: offline-8876480 - {D5EB16FA-0F77-4B4D-A880-AAE95​A6FB4C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll
 O20 - Winlogon Notify: LBTWlgn - c:\program files\fichiers communs\logitech\bluetooth\LBT​Wlgn.dll
 O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
 O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.e​xe
 O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.e​xe
 O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r (file missing)
 O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
 O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech Inc. - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBT​SERV.EXE
 O23 - Service: Logitech Easy Synchronization - Unknown owner - C:\Program Files\Logitech\Easy Synchronization\servicestub.ex​e
 O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\AVLib\Pacsptisvr.exe
 O23 - Service: SolidWorks SolidNetWork License Manager - Macrovision Corporation - C:\flexlm\lmgrd.exe
 O23 - Service: Sony TV Tuner Controller - Sony Corporation - C:\Program Files\sony\giga pocket\halsv.exe
 O23 - Service: Sony TV Tuner Manager - Sony Corporation - C:\Program Files\sony\giga pocket\RM_SV.exe
 O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\Sptisrv.exe
 O23 - Service: VAIO Media Music Server (VAIOMediaPlatform-MusicServer​-AppServer) - Unknown owner - C:\Program Files\sony\vaio media music server\SSSvr.exe" /Service=VAIOMediaPlatform-Mus​icServer-AppServer /DisplayName="VAIO Media Music Server (file missing)
 O23 - Service: VAIO Media Music Server (HTTP) (VAIOMediaPlatform-MusicServer​-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\sv_httpd.exe" /Service=VAIOMediaPlatform-Mus​icServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\MusicSer​ver\HTTP (file missing)
 O23 - Service: VAIO Media Music Server (UPnP) (VAIOMediaPlatform-MusicServer​-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\vaio media platform\UPnPFramework.exe
 O23 - Service: VAIO Media Photo Server (VAIOMediaPlatform-PhotoServer​-AppServer) - Sony Corporation - C:\Program Files\sony\photo server\appsrv\PhotoAppSrv.exe
 O23 - Service: VAIO Media Photo Server (HTTP) (VAIOMediaPlatform-PhotoServer​-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-Pho​toServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\PhotoSe​rver\HTTP (file missing)
 O23 - Service: VAIO Media Photo Server (UPnP) (VAIOMediaPlatform-PhotoServer​-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe
 O23 - Service: VAIO Media Video Server (VAIOMediaPlatform-VideoServer​-AppServer) - Unknown owner - C:\Program Files\sony\giga pocket\GPVSvr.exe" /Service=VAIOMediaPlatform-Vid​eoServer-AppServer /DisplayName="VAIO Media Video Server (file missing)
 O23 - Service: VAIO Media Video Server (HTTP) (VAIOMediaPlatform-VideoServer​-HTTP) - Unknown owner - C:\Program Files\Fichiers communs\sony shared\vaio media platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-Vid​eoServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\VideoSe​rver\HTTP (file missing)
 O23 - Service: VAIO Media Video Server (UPnP) (VAIOMediaPlatform-VideoServer​-UPnP) - Sony Corporation - C:\Program Files\Fichiers communs\sony shared\vaio media platform\UPnPFramework.exe

niklavi2-0
Assidu (de 10 000 à 19 999 messages postés)
  1. Posté le 22/05/2006 à 16:29:53  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
relances hijackthis,cliques sur do a system scan only et coches les lignes suivantes



 O4 - HKLM\..\Run: [.nvsvc] C:\WINDOWS\system\smss.exe /w

 fermes tous tes programmes et connexions internet et cliques sur fix checked


 ensuite

 Télécharge : Pocket KillBox

 -Décomresses-le (clic droit -> extraire tout)

 selectionnes ce texte


 



 C:\WINDOWS\system\smss.exe /w
 



 Clic droit -> Copier.

 ---



 - Ouvres killbox.exe

 - Sélectionne "delete on reboot"

 - Clique sur "File" -> "Past from clip board"

 - Clique sur la croix rouge et et blanche

 - Répond par "yes et laisse redémarrer ton pc.

 ---



 Supprime ce dossier : C:\!KillBox

 - télécharges et installes ewido http://download.ewido.net/ewido-setup.exe

 - Pendant l'installation décoche "Install background guard (required for automatic updates)" et "Install scan via context menu".

 - lance Ewido et mets-le à jour

 ensuite -Redémarre en mode sans échec, (en tapotant F8 au démarrage). Si tu ne comprend pas,>>regarde ici<<.

 - clique "Complete System Scan"

 - quand le scan est terminé, clique sur "Save Report" et localise le rapport.

 colle le rapport d'ewido



corbain-dalas
  1. Posté le 22/05/2006 à 18:52:27  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Ca a mis le temps mai c bon



 ------------------------------​---------------------------
 ewido anti-malware - Rapport de scan
 ------------------------------​---------------------------

 + Créé le:  19:46:28, 22/05/2006
 + Somme de contrôle: 2335B583

 + Résultats du scan:

  HKLM\SOFTWARE\Gator.com -> Adware.Gator : Nettoyer et sauvegarder
  HKLM\SOFTWARE\Gator.com\Gator -> Adware.Gator : Nettoyer et sauvegarder
  HKLM\SOFTWARE\Gator.com\Gator\​dyn -> Adware.Gator : Nettoyer et sauvegarder
  HKLM\SOFTWARE\Gator.com\Gator\​stat -> Adware.Gator : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@2o7[2].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@adtech[2].txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@advertising[2].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@as-eu.falkag[1].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@as1.falkag[2].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@clickbank[1].txt -> TrackingCookie.Clickbank : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@com[1].txt -> TrackingCookie.Com : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@ehg-ati.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@ehg-foxmovies.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@ehg-neuftelecom.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@ehg-sonyesolutions.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@ehg-tvtv.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@ehg-warnerbrothers.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@hotlog[2].txt -> TrackingCookie.Hotlog : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@microsofteup.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@revenue[2].txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@skyeurope.122.2o7[2].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@tacoda[1].txt -> TrackingCookie.Tacoda : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@valueclick[1].txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@wreport.weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Cookies\laro​usse@yadro[2].txt -> TrackingCookie.Yadro : Nettoyer et sauvegarder
  C:\Documents and Settings\Larousse\Local Settings\Temp\Cookies\larousse​@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
  C:\WINDOWS\system\smss.exe -> Trojan.Small : Nettoyer et sauvegarder


 ::Fin du rapport

(Publicité)
corbain-dalas
  1. Posté le 22/05/2006 à 19:27:38  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Merci beaucoup je pense que c'est bon, 20 min apres le demarage RàS
 Encore merci

niklavi2-0
Assidu (de 10 000 à 19 999 messages postés)
  1. Posté le 22/05/2006 à 22:04:45  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
de rien @++

 Page :
1

Aller à :
 

Sujets relatifs
C:\progra~1\movies~1\datamngr\mgrldr.dll proxy revient à chaque demarrage
Win32:Fareit-LM [Trj] virus trojan clé usb
spyware.Apropos.c L'accès au chemin d'accès "C:\Windows\system32\drivers\etc\hosts" est refusé." I
slt c quoi Hijackthis v2.0.2 Infecté par file:///C:/WINDOWS/privacy_danger/index.htm
virus c koi ta tof sur Windows Live Messenger J'ai C:\hiberfil.sys & C:\pagefile.sys... Sont-ce des virus?
Plus de sujets relatifs à : C'est la galère Trojan-Proxy.Win32.Horst.be exmodule32.exe

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
0mcamcap.exe 10
probleme avec pub et favori 13
virus nommé rontokbro@mm 1
infecté par trojan swizzor.dh 6
winantivirus pro 2006[résolu] 24