Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  SECURITE


|||-  

virus.. "Remove Spyware"

 

1 utilisateur anonyme
Ajouter une réponse
 

 
Page photos
 
     
Vider la liste des messages à citer
 
 Page :
1
Auteur
 Sujet :

virus.. "Remove Spyware"

Prévenir les modérateurs en cas d'abus 
Flavien13
flavien13
  1. Posté le 01/03/2006 à 12:37:31  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
J'ai allumé mon pc ce matin et un icone Remove Spyware avait apparut.. il m'ouvre des pages internet, me demande de désinfecter mon ordinateur.. Pas de doute y'a quelque chose de pas net la-dessous ^^

 Si quelqu'un pouvait m'aider....

malekal_morte
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 01/03/2006 à 12:57:17  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
- Télécharge HijackThis puis génère un log :
 - Exécute le et clique sur Do a scan and save log file.
 - Ouvre le log avec le Bloc-Note
 - Colle le rapport ici
 - N'hésite pas à consulter l'aide HijackThis

(Publicité)
flavien13
  1. Posté le 01/03/2006 à 13:08:36  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Merci de m'aider..

 voici le log


 Logfile of HijackThis v1.99.1
 Scan saved at 13:07:57, on 01/03/2006
 Platform: Windows XP SP2 (WinNT 5.01.2600)
 MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 Running processes:
 C:\WINDOWS\System32\smss.exe
 C:\WINDOWS\system32\winlogon.e​xe
 C:\WINDOWS\system32\services.e​xe
 C:\WINDOWS\system32\lsass.exe
 C:\WINDOWS\system32\Ati2evxx.e​xe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\System32\svchost.ex​e
 C:\WINDOWS\system32\spoolsv.ex​e
 C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
 C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
 C:\WINDOWS\System32\drivers\CD​AC11BA.EXE
 C:\Program Files\Ahead\InCD\InCDsrv.exe
 C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
 C:\WINDOWS\System32\svchost.ex​e
 C:\WINDOWS\system32\rundll32.e​xe
 C:\WINDOWS\system32\Ati2evxx.e​xe
 C:\WINDOWS\Explorer.EXE
 C:\Program Files\Pinnacle\PCTV Stereo\Remote\Remoterm.exe
 C:\Program Files\Ahead\InCD\InCD.exe
 C:\USBStorage\USBDetector.exe
 C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
 C:\Program Files\Java\jre1.5.0_06\bin\jus​ched.exe
 C:\WINDOWS\system32\LVCOMSX.EX​E
 C:\Program Files\Logitech\Video\LogiTray.​exe
 C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe
 C:\WINDOWS\system32\taskswitch​.exe
 C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
 C:\Program Files\Winamp\winampa.exe
 C:\program files\valve\steam\steam.exe
 C:\Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe
 C:\WINDOWS\system32\ctfmon.exe
 C:\Program Files\InterVideo\Common\Bin\Wi​nCinemaMgr.exe
 C:\Program Files\Pinnacle\Shared Files\Programs\Scheduler\PCLES​cheduler.exe
 C:\Program Files\Logitech\Video\FxSvr2.ex​e
 C:\Program Files\MSN Messenger\msnmsgr.exe
 C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\AntiVir PersonalEdition Classic\avcenter.exe
 C:\Program Files\AntiVir PersonalEdition Classic\avscan.exe
 C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
 C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
 C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
 C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
 C:\Documents and Settings\flavien\Bureau\Hijack​This.exe

 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Bar = res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INT​EGRATION_BAND_SEARCHBAR_HTML
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://www.club-internet.fr/hautdebit/
 R1 - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings,ProxyOverride = localhost
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me = Liens
 R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A636​60E0FE3} - C:\PROGRA~1\COPERN~1\COPERN~1.​DLL
 O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD​80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll
 O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050B​A6940E3} - (no file)
 O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - c:\program files\google\googletoolbar2.dl​l
 O3 - Toolbar: UCmore XP - The Search Accelerator - {44BE0690-5429-47f0-85BB-3FFD8​020233E} - C:\Program Files\TheSearchAccelerator\UCM​TSAIE.dll
 O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.e​xe
 O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
 O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
 O4 - HKLM\..\Run: [OemReset] %systemroot%\OPTIONS\OEMRESET.​EXE /AUDIT
 O4 - HKLM\..\Run: [PCTVRemote] C:\Program Files\Pinnacle\PCTV Stereo\Remote\Remoterm.exe
 O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
 O4 - HKLM\..\Run: [USBDetector] C:\USBStorage\USBDetector.exe
 O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
 O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDT​ray.exe" /s
 O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jus​ched.exe
 O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.​exe
 O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EX​E
 O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.e​xe
 O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.​exe
 O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe"  -osboot
 O4 - HKLM\..\Run: [CoolSwitch] C:\WINDOWS\system32\taskswitch​.exe
 O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
 O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
 O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
 O4 - HKCU\..\Run: [Steam] "c:\program files\valve\steam\steam.exe" -silent
 O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe
 O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestE​ngine.exe" boot
 O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
 O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\Wi​nCinemaMgr.exe
 O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMC​onf.exe
 O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
 O4 - Global Startup: Pinnacle Scheduler.lnk = ?
 O6 - HKCU\Software\Policies\Microso​ft\Internet Explorer\Restrictions present
 O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.h​tml
 O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dl​l/cmsearch.html
 O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dl​l/cmwordtrans.html
 O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dl​l/cmbacklinks.html
 O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dl​l/cmcache.html
 O8 - Extra context menu item: Chercher avec Copernic Agent - res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INT​EGRATION_MENU_SEARCHEXT
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Off​ice10\EXCEL.EXE/3000
 O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dl​l/cmsimilar.html
 O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dl​l/cmtrans.html
 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401​C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv​.dll
 O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401​C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv​.dll
 O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D360​5EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.​EXE
 O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D360​5EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.​EXE
 O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4​F58CE6E} - C:\PROGRA~1\COPERN~1\COPERN~1.​EXE
 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O15 - Trusted Zone: http://*.update.microsoft.com
 O15 - Trusted Zone: http://*.windowsupdate.microsoft.com
 O15 - Trusted Zone: http://download.windowsupdate.com
 O15 - Trusted Zone: http://*.windowsupdate.com
 O16 - DPF: {00B71CFB-6864-4346-A978-C0A14​556272C} (Checkers Class) - http://messenger.zone.msn.com/ [...] b31267.cab
 O16 - DPF: {14B87622-7E19-4EA8-93B3-97215​F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/ [...] b31267.cab
 O16 - DPF: {17492023-C23A-453E-A040-C7C58​0BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
 O16 - DPF: {205FF73B-CA67-11D5-99DD-44455​3540000} (CInstall Class) - http://www.videossimo.com/eQoonWeb/cab/Install.cab
 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6​333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/ [...] b31267.cab
 O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105​AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/s [...] vSniff.cab
 O16 - DPF: {42F2C9BA-614F-47C0-B3E3-ECFD3​4EED658} - http://promo.dollarrevenue.com [...] ad185a.exe
 O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138E​A171B49} (FileSharingCtrl Class) - http://appdirectory.messenger. [...] ngctrl.cab
 O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF​33E833C} (WUWebControl Class) - http://v5.windowsupdate.micros [...] 4676334562
 O16 - DPF: {644E432F-49D3-41A1-8DD5-E0991​62EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/s [...] /cabsa.cab
 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA​91D2FC3} (MUWebControl Class) - http://update.microsoft.com/mi [...] 2483294218
 O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04​F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840 [...] scan53.cab
 O16 - DPF: {80DD2229-B8E4-4C77-B72F-F2297​2D723EA} (AvxScanOnline Control) - http://www.bitdefender.com/sca [...] fender.cab
 O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD​1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/ [...] b31267.cab
 O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36​F38BFA8} (Aurigma Image Uploader 3.0 Control) - http://www.photoways.com/clien [...] oader3.cab
 O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0​A5519FF} (MsnMessengerSetupDownloadCont​rol Class) - http://messenger.msn.com/downl [...] loader.cab
 O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-22031​3175592} (ZoneIntro Class) - http://messenger.zone.msn.com/ [...] b32846.cab
 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-44455​3540000} (Shockwave Flash Object) - https://download.macromedia.co [...] wflash.cab
 O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F3855​91623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/ [...] b31267.cab
 O18 - Protocol: bw+0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw+0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9​B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305​202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.​dll" (file missing)
 O18 - Protocol: offline-8876480 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O20 - Winlogon Notify: DH - C:\WINDOWS\system32\WYDMLOG.dl​l
 O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.d​ll
 O23 - Service: AntiVir Scheduler (AntiVirScheduler) - H+BEDV Datentechnik GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
 O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
 O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.e​xe
 O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.e​xe
 O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CD​AC11BA.EXE
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1​1\Intel 32\IDriverT.exe
 O23 - Service: InCD File System Service (InCDsrv) - AHEAD Software - C:\Program Files\Ahead\InCD\InCDsrv.exe
 O23 - Service: iPodService - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
 O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.​exe" -d -f "%ProgramFiles%\WinPcap\rpcapd​.ini (file missing)

malekal_morte
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 01/03/2006 à 15:07:36  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
- Télécharge et installe ewido
 - Mets le à jour à partir du bouton Update
 - Télécharge l2mfix
 - Double clic sur l2mfix.exe pour lancer l'extraction

 Sur HijackThis, refais un scan et coches les lignes suivantes :

 O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050B​A6940E3} - (no file)
 O3 - Toolbar: UCmore XP - The Search Accelerator - {44BE0690-5429-47f0-85BB-3FFD8​020233E} - C:\Program Files\TheSearchAccelerator\UCM​TSAIE.dll
 O16 - DPF: {205FF73B-CA67-11D5-99DD-44455​3540000} (CInstall Class) - http://www.videossimo.com/eQoonWeb/cab/Install.cab
 O16 - DPF: {42F2C9BA-614F-47C0-B3E3-ECFD3​4EED658} - http://promo.dollarrevenue.com [...] ad185a.exe
 O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36​F38BFA8} (Aurigma Image Uploader 3.0 Control) - http://www.photoways.com/clien [...] oader3.cab

 ---> puis clic sur le bouton "Fix Checked"
 n'hésite pas à consulter l'aide HijackThis

 Ensuite télécharges et installes :
 KillBox
 Aide Killbox

 sélectionne cette liste :

 C:\Program Files\TheSearchAccelerator\UCM​TSAIE.dll

 ---> et tu fais clic droit / copier

 Ouvres killbox
 - Sélectionne "delete on reboot"
 - Clique sur le menu "File" -> "Past from clip board"
 - Clique sur la croix rouge et et blanche
 - Répond yes et laisse redémarrer ton pc.
 N'hésite pas à consulter l'Aide killbox

 -- Redémarre en mode en mode sans échec, si tu sais pas comment on fait lis ceci
 --Supprime les dossiers :

 C:\Program Files\TheSearchAccelerator\
 C:\!KillBox

 - Dans le dossier l2mfix, double clic sur l2mfix.bat, appuie sur n'importe quelle - touche puis choisis l'option #1 (et pas autre chose) et valide avec la touche entrée.
 - Le bloc note va s'ouvrir avec le résultat du scan.
 - Fais un copier coller du résultat ici.

 - Démarre ewido et clique "Complete System Scan"
 - Laisse le scan se faire et touche à rien, s'il te propose de supprimer des malwares, dis oui, quand le scan est terminé, clique sur "Save Report" pour enregistrer le rapport et colle le ici
 N'hésite pas à consulter l'Aide ewido pour tout problème.
 - Tu peux consulter l'Aide ewido

 -- Redémarre en mode normal
 -- Colle les logs ewido et de l2mfix ainsi qu'un nouveau log HijackThis

flavien13
  1. Posté le 01/03/2006 à 15:27:48  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
je viens de voir ton message..Je vais suivre la procédure..
 Si ça peut aider j'ai maintenant des icones "Free Online Music" "Cheap Holiday Travel" "Online Dating" ..

(Publicité)
flavien13
  1. Posté le 01/03/2006 à 16:59:08  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Voila les raports..

 L2MFIX find log 010406
 These are the registry keys present
 ******************************​******************************​**********************
 Winlogon/notify:
 Windows Registry Editor Version 5.00

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
 "DLLName"="Ati2evxx.dll"
 "Asynchronous"=dword:00000000
 "Impersonate"=dword:00000001
 "Lock"="AtiLockEvent"
 "Logoff"="AtiLogoffEvent"
 "Logon"="AtiLogonEvent"
 "Disconnect"="AtiDisConnectEve​nt"
 "Reconnect"="AtiReConnectEvent​"
 "Safe"=dword:00000000
 "Shutdown"="AtiShutdownEvent"
 "StartScreenSaver"="AtiStartSc​reenSaverEvent"
 "StartShell"="AtiStartShellEve​nt"
 "Startup"="AtiStartupEvent"
 "StopScreenSaver"="AtiStopScre​enSaverEvent"
 "Unlock"="AtiUnLockEvent"

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
 "Asynchronous"=dword:00000000
 "Impersonate"=dword:00000000
 "DllName"=hex(2):63,00,72,00,7​9,00,70,00,74,00,33,00,32,00,2​e,00,64,00,6c,00,\
  6c,00,00,00
 "Logoff"="ChainWlxLogoffEvent"

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
 "Asynchronous"=dword:00000000
 "Impersonate"=dword:00000000
 "DllName"=hex(2):63,00,72,00,7​9,00,70,00,74,00,6e,00,65,00,7​4,00,2e,00,64,00,\
  6c,00,6c,00,00,00
 "Logoff"="CryptnetWlxLogoffEve​nt"

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
 "DLLName"="cscdll.dll"
 "Logon"="WinlogonLogonEvent"
 "Logoff"="WinlogonLogoffEvent"
 "ScreenSaver"="WinlogonScreenS​averEvent"
 "Startup"="WinlogonStartupEven​t"
 "Shutdown"="WinlogonShutdownEv​ent"
 "StartShell"="WinlogonStartShe​llEvent"
 "Impersonate"=dword:00000000
 "Asynchronous"=dword:00000001

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
 @=""
 "DLLName"="igfxsrvc.dll"
 "Asynchronous"=dword:00000001
 "Impersonate"=dword:00000001
 "Unlock"="WinlogonUnlockEvent"

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
 "DLLName"="wlnotify.dll"
 "Logon"="SCardStartCertProp"
 "Logoff"="SCardStopCertProp"
 "Lock"="SCardSuspendCertProp"
 "Unlock"="SCardResumeCertProp"
 "Enabled"=dword:00000001
 "Impersonate"=dword:00000001
 "Asynchronous"=dword:00000001

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
 "Asynchronous"=dword:00000000
 "DllName"=hex(2):77,00,6c,00,6​e,00,6f,00,74,00,69,00,66,00,7​9,00,2e,00,64,00,\
  6c,00,6c,00,00,00
 "Impersonate"=dword:00000000
 "StartShell"="SchedStartShell"
 "Logoff"="SchedEventLogOff"

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
 "Logoff"="WLEventLogoff"
 "Impersonate"=dword:00000000
 "Asynchronous"=dword:00000001
 "DllName"=hex(2):73,00,63,00,6​c,00,67,00,6e,00,74,00,66,00,7​9,00,2e,00,64,00,\
  6c,00,6c,00,00,00

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
 "DLLName"="WlNotify.dll"
 "Lock"="SensLockEvent"
 "Logon"="SensLogonEvent"
 "Logoff"="SensLogoffEvent"
 "Safe"=dword:00000001
 "MaxWait"=dword:00000258
 "StartScreenSaver"="SensStartS​creenSaverEvent"
 "StopScreenSaver"="SensStopScr​eenSaverEvent"
 "Startup"="SensStartupEvent"
 "Shutdown"="SensShutdownEvent"
 "StartShell"="SensStartShellEv​ent"
 "PostShell"="SensPostShellEven​t"
 "Disconnect"="SensDisconnectEv​ent"
 "Reconnect"="SensReconnectEven​t"
 "Unlock"="SensUnlockEvent"
 "Impersonate"=dword:00000001
 "Asynchronous"=dword:00000001

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
 "Asynchronous"=dword:00000000
 "DllName"=hex(2):77,00,6c,00,6​e,00,6f,00,74,00,69,00,66,00,7​9,00,2e,00,64,00,\
  6c,00,6c,00,00,00
 "Impersonate"=dword:00000000
 "Logoff"="TSEventLogoff"
 "Logon"="TSEventLogon"
 "PostShell"="TSEventPostShell"
 "Shutdown"="TSEventShutdown"
 "StartShell"="TSEventStartShel​l"
 "Startup"="TSEventStartup"
 "MaxWait"=dword:00000258
 "Reconnect"="TSEventReconnect"
 "Disconnect"="TSEventDisconnec​t"

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
 "DLLName"="wlnotify.dll"
 "Logon"="RegisterTicketExpired​NotificationEvent"
 "Logoff"="UnregisterTicketExpi​redNotificationEvent"
 "Impersonate"=dword:00000001
 "Asynchronous"=dword:00000001

 ******************************​******************************​**********************
 useragent:
 Windows Registry Editor Version 5.00

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Internet Settings\User Agent\Post Platform]
 "sv1"=""

 ******************************​******************************​**********************
 Shell Extension key:
 Windows Registry Editor Version 5.00

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Shell Extensions\Approved]
 "{60254CA5-953B-11CF-8C96-00AA​00B8708C}"="Shell extensions for Windows Script Host"
 "{5F327514-6C5E-4d60-8F16-D07F​A08A78ED}"="Auto Update Property Sheet Extension"
 "{BDEADF00-C265-11D0-BCED-00A0​C90AB50F}"="Dossiers Web"
 "{0006F045-0000-0000-C000-0000​00000046}"="Microsoft Outlook Custom Icon Handler"
 "{42042206-2D85-11D3-8CFF-0050​04838597}"="Microsoft Office HTML Icon Handler"
 "{1D2680C9-0E2A-469d-B787-0655​58BC7D43}"="Fusion Cache"
 "{21569614-B795-46b1-85F4-E737​A8DC09AD}"="Shell Search Band"
 "{640167b4-59b0-47a6-b335-a6b3​c0695aea}"="Portable Media Devices"
 "{cc86590a-b60a-48e6-996b-41d2​5ed39a1e}"="Portable Media Devices Menu"
 "{8DD448E6-C188-4aed-AF92-4495​6194EB1F}"="Windows Media Player Play as Playlist Context Menu Handler"
 "{CE3FB1D1-02AE-4a5f-A6E9-D9F1​B4073E6C}"="Windows Media Player Burn Audio CD Context Menu Handler"
 "{F1B9284F-E9DC-4e68-9D7E-4236​2A59F0FD}"="Windows Media Player Add to Playlist Context Menu Handler"
 "{45AC2688-0253-4ED8-97DE-B537​0FA7D48A}"="Shell Extension for Malware scanning"
 "{7444C717-39BF-11D1-8CD9-00C0​4FC29D45}"="Extension de cryptographie PKO"
 "{7444C719-39BF-11D1-8CD9-00C0​4FC29D45}"="Extension de cryptographie Sign"

 ******************************​******************************​**********************
 HKEY ROOT CLASSIDS:
 ******************************​******************************​**********************
 Files Found are not all bad files:

 C:\WINDOWS\SYSTEM32\

avsda.dll      Wed 18 Jan 2006  13:06:02   A....         57 344    56,00 K

gdi32.dll      Thu 29 Dec 2005   3:56:04   A....        280 064   273,50 K

shdocvw.dll    Thu  1 Dec 2005   5:01:16   A....      1 492 992     1,42 M

sirenacm.dll   Wed 14 Dec 2005   9:24:42   A....        118 784   116,00 K

webclnt.dll    Wed  4 Jan 2006   4:35:12   A....         68 096    66,50 K

wmp.dll        Tue  6 Dec 2005   6:02:16   A....      5 533 696     5,28 M

 6 items found:  6 files, 0 directories.

Total of file sizes:  7 550 976 bytes      7,20 M
 Locate .tmp files:

 No matches found.
 ******************************​******************************​**********************
 Directory Listing of system files:
 Le volume dans le lecteur C n'a pas de nom.
 Le num‚ro de s‚rie du volume est A83D-0337

 R‚pertoire de C:\WINDOWS\System32

 15/02/2006  21:58    <REP>          dllcache
 24/03/2004  23:18    <REP>          Microsoft

0 fichier(s)                0 octets

2 R‚p(s)  13ÿ755ÿ195ÿ392 octets libres





 ------------------------------​---------------------------
 ewido anti-malware - Rapport de scan
 ------------------------------​---------------------------

 + Créé le:  16:57:54, 01/03/2006
 + Somme de contrôle: 39A5334F

 + Résultats du scan:

  HKLM\SOFTWARE\Classes\CLSID\{6​001CDF7-6F45-471b-A203-0225615​E35A7} -> Adware.Generic : Nettoyer et sauvegarder
  HKLM\SOFTWARE\Effective-i -> Adware.EffectiveBrandToolbar : Nettoyer et sauvegarder
  HKLM\SOFTWARE\Effective-i\TheS​earchAccelerator -> Adware.EffectiveBrandToolbar : Nettoyer et sauvegarder
  HKLM\SOFTWARE\Effective-i\TheS​earchAccelerator\IE5 -> Adware.EffectiveBrandToolbar : Nettoyer et sauvegarder
  HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\UCm​ore - The Search Accelerator -> Adware.UCmore : Nettoyer et sauvegarder
  HKU\S-1-5-21-118950172-1439906​313-590260106-1008\Software\Ef​fective-i -> Adware.EffectiveBrandToolbar : Nettoyer et sauvegarder
  HKU\S-1-5-21-118950172-1439906​313-590260106-1008\Software\Ef​fective-i\TheSearchAccelerator -> Adware.EffectiveBrandToolbar : Nettoyer et sauvegarder
  HKU\S-1-5-21-118950172-1439906​313-590260106-1008\Software\Ef​fective-i\TheSearchAccelerator​\IE5 -> Adware.EffectiveBrandToolbar : Nettoyer et sauvegarder
  HKU\S-1-5-21-118950172-1439906​313-590260106-1008\Software\Mi​crosoft\Windows\CurrentVersion​\Ext\Stats\{5345A7A1-805A-4923​-B505-86B2FEBA3FE0} -> Adware.Generic : Nettoyer et sauvegarder
  HKU\S-1-5-21-118950172-1439906​313-590260106-1008\Software\Mi​crosoft\Windows\CurrentVersion​\Ext\Stats\{5345A7A9-805A-4923​-B505-86B2FEBA3FE0} -> Adware.Generic : Nettoyer et sauvegarder
  HKU\S-1-5-21-118950172-1439906​313-590260106-1008\Software\Mi​crosoft\Windows\CurrentVersion​\Ext\Stats\{6001CDF7-6F45-471B​-A203-0225615E35A7} -> Adware.Generic : Nettoyer et sauvegarder
  C:\Documents and Settings\elisa\Cookies\elisa@w​eborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Bureau\UnInst​aller.exe -> Adware.Zestyfind : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@advertising[1].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@as1.falkag[1].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@findwhat[1].txt -> TrackingCookie.Findwhat : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@wreport.weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Cookies\flavi​en@zedo[1].txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Local Settings\Temporary Internet Files\Content.IE5\4LMZGPYJ\drs​martload_js[1].htm -> Downloader.IstBar.j : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Local Settings\Temporary Internet Files\Content.IE5\HOSR1TGP\drs​martload185a[1].exe -> Downloader.Adload.t : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Local Settings\Temporary Internet Files\Content.IE5\IB2JAH63\Ins​taller[1].exe -> Adware.Look2Me : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Local Settings\Temporary Internet Files\Content.IE5\NF5NRH8W\ucm​oreiex[1].exe/UCMTSAIE.DLL -> Adware.Ucmore : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Local Settings\Temporary Internet Files\Content.IE5\NF5NRH8W\ucm​oreiex[1].exe/IUCMORE.DLL -> Adware.Ucmore : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Local Settings\Temporary Internet Files\Content.IE5\SHAFSHU7\Err​orSafeScannerInstallFR[1].cab/UERSV_0001_N68M0602NetI​ns​taller.exe -> Not-A-Virus.Downloader.Win32.W​inFixer.d : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Mes documents\logiciel msn hack\Brutus.zip/BrutusA2.exe -> Not-A-Virus.PSWTool.Win32.Brut​us : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Mes documents\logiciel msn hack\hotcrack\UHANFO.EXE -> Trojan.ControlDuSockets.a : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Mes documents\logiciel msn hack\hothack.zip/UHANFO.EXE -> Trojan.ControlDuSockets.a : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Mes documents\logiciel msn hack\keylogwin.zip/KEYLOGWN.EX​E -> Not-A-Virus.Monitor.Win32.KeyL​og.95 : Nettoyer et sauvegarder
  C:\Documents and Settings\flavien\Mes documents\logiciel msn hack\mspass.zip/mspass.exe -> Not-A-Virus.PSWTool.Win32.Mess​en.103 : Nettoyer et sauvegarder
  C:\Documents and Settings\philippe\Cookies\phil​ippe@as-eu.falkag[2].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
  C:\Documents and Settings\philippe\Cookies\phil​ippe@sel.as-eu.falkag[1].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
  C:\Installer.exe -> Adware.Look2Me : Nettoyer et sauvegarder
  C:\RECYCLER\S-1-5-21-118950172​-1439906313-590260106-1008\Dc2​\IUCmore.dll -> Adware.Ucmore : Nettoyer et sauvegarder
  C:\RECYCLER\S-1-5-21-118950172​-1439906313-590260106-1008\Dc3​\UCMTSAIE.dll -> Adware.Ucmore : Nettoyer et sauvegarder
  C:\ucmoreiex.exe/UCMTSAIE.DLL -> Adware.Ucmore : Nettoyer et sauvegarder
  C:\ucmoreiex.exe/IUCMORE.DLL -> Adware.Ucmore : Nettoyer et sauvegarder
  C:\WINDOWS\DH.dll -> Hijacker.Small.jf : Nettoyer et sauvegarder
  C:\WINDOWS\Downloaded Program Files\UERSV_0001_N68M0602NetIn​staller.exe -> Not-A-Virus.Downloader.Win32.W​inFixer.d : Nettoyer et sauvegarder
  C:\WINDOWS\icont.exe -> Adware.AdURL : Nettoyer et sauvegarder
  C:\WINDOWS\iconu.exe -> Adware.Zestyfind : Nettoyer et sauvegarder
  C:\WINDOWS\Temp\bw2.com -> Adware.Zestyfind : Nettoyer et sauvegarder
  C:\WINDOWS\Temp\ICD1.tmp\UERSV​_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.W​inFixer.d : Nettoyer et sauvegarder


 ::Fin du rapport

malekal_morte
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 01/03/2006 à 17:15:53  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
repose un log HijackThis s'il te plait

flavien13
  1. Posté le 01/03/2006 à 20:08:11  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
tout a l'air d'etre revenu dans l'ordre un grand merci..

 Logfile of HijackThis v1.99.1
 Scan saved at 20:06:59, on 01/03/2006
 Platform: Windows XP SP2 (WinNT 5.01.2600)
 MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 Running processes:
 C:\WINDOWS\System32\smss.exe
 C:\WINDOWS\system32\winlogon.e​xe
 C:\WINDOWS\system32\services.e​xe
 C:\WINDOWS\system32\lsass.exe
 C:\WINDOWS\system32\Ati2evxx.e​xe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\System32\svchost.ex​e
 C:\WINDOWS\system32\spoolsv.ex​e
 C:\WINDOWS\System32\drivers\CD​AC11BA.EXE
 C:\Program Files\ewido anti-malware\ewidoctrl.exe
 C:\Program Files\ewido anti-malware\ewidoguard.exe
 C:\Program Files\Ahead\InCD\InCDsrv.exe
 C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
 C:\WINDOWS\System32\svchost.ex​e
 C:\WINDOWS\system32\Ati2evxx.e​xe
 C:\WINDOWS\Explorer.EXE
 C:\Program Files\Pinnacle\PCTV Stereo\Remote\Remoterm.exe
 C:\Program Files\Ahead\InCD\InCD.exe
 C:\USBStorage\USBDetector.exe
 C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
 C:\Program Files\Java\jre1.5.0_06\bin\jus​ched.exe
 C:\WINDOWS\system32\LVCOMSX.EX​E
 C:\Program Files\Logitech\Video\LogiTray.​exe
 C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe
 C:\WINDOWS\system32\taskswitch​.exe
 C:\Program Files\Winamp\winampa.exe
 C:\program files\valve\steam\steam.exe
 C:\Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe
 C:\Program Files\Logitech\Video\FxSvr2.ex​e
 C:\WINDOWS\system32\ctfmon.exe
 C:\Program Files\InterVideo\Common\Bin\Wi​nCinemaMgr.exe
 C:\Program Files\Pinnacle\Shared Files\Programs\Scheduler\PCLES​cheduler.exe
 C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
 C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
 C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
 C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
 C:\Program Files\MSN Messenger\msnmsgr.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Documents and Settings\flavien\Bureau\Hijack​This.exe

 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Bar = res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INT​EGRATION_BAND_SEARCHBAR_HTML
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://www.club-internet.fr/hautdebit/
 R1 - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings,ProxyOverride = localhost
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me = Liens
 R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A636​60E0FE3} - C:\PROGRA~1\COPERN~1\COPERN~1.​DLL
 O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD​80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll
 O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - c:\program files\google\googletoolbar2.dl​l
 O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.e​xe
 O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
 O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
 O4 - HKLM\..\Run: [OemReset] %systemroot%\OPTIONS\OEMRESET.​EXE /AUDIT
 O4 - HKLM\..\Run: [PCTVRemote] C:\Program Files\Pinnacle\PCTV Stereo\Remote\Remoterm.exe
 O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
 O4 - HKLM\..\Run: [USBDetector] C:\USBStorage\USBDetector.exe
 O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
 O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDT​ray.exe" /s
 O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jus​ched.exe
 O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.​exe
 O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EX​E
 O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.e​xe
 O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.​exe
 O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe"  -osboot
 O4 - HKLM\..\Run: [CoolSwitch] C:\WINDOWS\system32\taskswitch​.exe
 O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
 O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
 O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
 O4 - HKCU\..\Run: [Steam] "c:\program files\valve\steam\steam.exe" -silent
 O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe
 O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestE​ngine.exe" boot
 O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
 O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\Wi​nCinemaMgr.exe
 O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMC​onf.exe
 O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
 O4 - Global Startup: Pinnacle Scheduler.lnk = ?
 O6 - HKCU\Software\Policies\Microso​ft\Internet Explorer\Restrictions present
 O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.h​tml
 O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dl​l/cmsearch.html
 O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dl​l/cmwordtrans.html
 O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dl​l/cmbacklinks.html
 O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dl​l/cmcache.html
 O8 - Extra context menu item: Chercher avec Copernic Agent - res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INT​EGRATION_MENU_SEARCHEXT
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Off​ice10\EXCEL.EXE/3000
 O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dl​l/cmsimilar.html
 O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dl​l/cmtrans.html
 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401​C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv​.dll
 O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401​C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv​.dll
 O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D360​5EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.​EXE
 O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D360​5EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.​EXE
 O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4​F58CE6E} - C:\PROGRA~1\COPERN~1\COPERN~1.​EXE
 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O15 - Trusted Zone: http://*.update.microsoft.com
 O15 - Trusted Zone: http://*.windowsupdate.microsoft.com
 O15 - Trusted Zone: http://download.windowsupdate.com
 O15 - Trusted Zone: http://*.windowsupdate.com
 O16 - DPF: {00B71CFB-6864-4346-A978-C0A14​556272C} (Checkers Class) - http://messenger.zone.msn.com/ [...] b31267.cab
 O16 - DPF: {14B87622-7E19-4EA8-93B3-97215​F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/ [...] b31267.cab
 O16 - DPF: {17492023-C23A-453E-A040-C7C58​0BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6​333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/ [...] b31267.cab
 O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105​AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/s [...] vSniff.cab
 O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138E​A171B49} (FileSharingCtrl Class) - http://appdirectory.messenger. [...] ngctrl.cab
 O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF​33E833C} (WUWebControl Class) - http://v5.windowsupdate.micros [...] 4676334562
 O16 - DPF: {644E432F-49D3-41A1-8DD5-E0991​62EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/s [...] /cabsa.cab
 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA​91D2FC3} (MUWebControl Class) - http://update.microsoft.com/mi [...] 2483294218
 O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04​F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840 [...] scan53.cab
 O16 - DPF: {80DD2229-B8E4-4C77-B72F-F2297​2D723EA} (AvxScanOnline Control) - http://www.bitdefender.com/sca [...] fender.cab
 O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD​1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/ [...] b31267.cab
 O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F1​19A8AB8} - http://static.zangocash.com/ca [...] ge-c32.cab
 O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0​A5519FF} (MsnMessengerSetupDownloadCont​rol Class) - http://messenger.msn.com/downl [...] loader.cab
 O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-22031​3175592} (ZoneIntro Class) - http://messenger.zone.msn.com/ [...] b32846.cab
 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-44455​3540000} (Shockwave Flash Object) - https://download.macromedia.co [...] wflash.cab
 O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F3855​91623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/ [...] b31267.cab
 O18 - Protocol: bw+0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw+0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9​B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0s - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305​202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.​dll" (file missing)
 O18 - Protocol: offline-8876480 - {90F190C6-A3F8-449B-B064-30CA3​BAD6226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.d​ll
 O23 - Service: AntiVir Scheduler (AntiVirScheduler) - H+BEDV Datentechnik GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
 O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
 O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.e​xe
 O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.e​xe
 O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\System32\drivers\CD​AC11BA.EXE
 O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
 O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1​1\Intel 32\IDriverT.exe
 O23 - Service: InCD File System Service (InCDsrv) - AHEAD Software - C:\Program Files\Ahead\InCD\InCDsrv.exe
 O23 - Service: iPodService - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
 O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.​exe" -d -f "%ProgramFiles%\WinPcap\rpcapd​.ini (file missing)

(Publicité)
malekal_morte
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 01/03/2006 à 20:23:25  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
ça donne quoi au niveau de l'icone/popup ?

 Page :
1

Aller à :
 

Sujets relatifs
logiciel anti spyware virus win32:ZLob.AW[TRJ]
virus win32:ZLob.AW[TRJ] problème aprés avoir été infecté par le virus trojan
virus Win32:Volage-D adware detecte des virus mais ne peut les enlever
Virus italien (+ bulle en anglais) VIRUS-TROJAN-SPAM DIALER ITALIEN LA SOLUTION
SOLUTION DU VIRUS ITALIEN Que faire de tous les virus/spywares placés en quarantaine
Plus de sujets relatifs à : virus.. "Remove Spyware"

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
W32/Gaobot.MJU.worm 12
solution de dernière limite avant la benne?... 2
logiciel anti spyware 2
Spyfalcon c'est pas des façons 17
comment se debarasser des pub sur msn 1