Ordinateur infecté > je demande votre aide
Répondre à la discussion
Affichage des résultats 1 à 20 sur 20

Ordinateur infecté > je demande votre aide



  1. 18/01/2006, 13h46 #1
    fenouille

    Ordinateur infecté > je demande votre aide


    ------

    <Bonjour

    Voila ce que HijackThis m'a sorti...
    Je me doute qu'il y a du boulot, cet ordi est infecté jusqu'a la moelle ( c'est celui de mon frère et il n'y connait pas grand chose ...)

    Logfile of HijackThis v1.99.1
    Scan saved at 14:42:00, on 18/01/2006
    Platform: Windows XP (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 (6.00.2600.0000)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\csrss.exe
    C:\WINDOWS\system32\winlogon.e xe
    C:\WINDOWS\system32\services.e xe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.ex e
    C:\WINDOWS\System32\svchost.ex e
    C:\WINDOWS\System32\svchost.ex e
    C:\WINDOWS\System32\svchost.ex e
    C:\WINDOWS\system32\spoolsv.ex e
    C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpcc.exe
    C:\WINDOWS\RG9taW5pcXVl\comman d.exe
    C:\WINDOWS\System32\FTRTSVC.ex e
    C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpm.exe
    C:\WINDOWS\System32\svchost.ex e
    C:\WINDOWS\System32\wdfmgr.exe
    C:\WINDOWS\Explorer.exe
    C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpcc.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\eMule\emule1.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsch ed.exe
    C:\WINDOWS\System32\wlxmud.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\Dominique\Bureau\Hija ckThis.exe

    R1 - HKCU\Software\Microsoft\Intern et Explorer,(Default) = www.google.com
    R1 - HKCU\Software\Microsoft\Intern et Explorer\Main,Default_Search_U RL = http://www.e-finder.cc/search/ (obfuscated)
    R0 - HKCU\Software\Microsoft\Intern et Explorer\Main,Start Page = http://ads1.revenue.net/l?site_id=11634&pplacement_id=1
    R1 - HKLM\Software\Microsoft\Intern et Explorer\Main,Default_Search_U RL = http://www.e-finder.cc/search/ (obfuscated)
    R1 - HKLM\Software\Microsoft\Intern et Explorer\Main,Search Bar = http://www.e-finder.cc/search/ (obfuscated)
    R1 - HKLM\Software\Microsoft\Intern et Explorer\Main,Search Page = http://www.e-finder.cc/search/ (obfuscated)
    R1 - HKCU\Software\Microsoft\Intern et Explorer\Search,CustomizeSearc h = http://www.e-finder.cc/search/ (obfuscated)
    R1 - HKCU\Software\Microsoft\Intern et Explorer\Search,(Default) = http://www.e-finder.cc/search/ (obfuscated)
    R0 - HKLM\Software\Microsoft\Intern et Explorer\Search,CustomizeSearc h = http://www.e-finder.cc/search/ (obfuscated)
    R1 - HKLM\Software\Microsoft\Intern et Explorer\Search,(Default) = http://www.e-finder.cc/search/ (obfuscated)
    R1 - HKCU\Software\Microsoft\Intern et Explorer\SearchURL,(Default) = http://www.e-finder.cc/search/ (obfuscated)
    R1 - HKLM\Software\Microsoft\Intern et Explorer\SearchURL,(Default) = http://www.e-finder.cc/search/ (obfuscated)
    R1 - HKCU\Software\Microsoft\Intern et Explorer\Main,Window Title = Wanadoo
    R0 - HKCU\Software\Microsoft\Intern et Explorer\Toolbar,LinksFolderNa me = Liens
    R3 - URLSearchHook: (no name) - {031125C5-167C-947B-8D86-6EF3F7432D77} - C:\WINDOWS\ayckjtsq.dll
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.D LL
    F2 - REG:system.ini: Shell=Explorer.exe
    O2 - BHO: (no name) - {08F04BFC-8540-AAEE-1E46-A938794F9092} - C:\WINDOWS\System32\jucq.dll
    O2 - BHO: (no name) - {0EF04BF8-8547-A8E9-1E31-D838044A90E2} - C:\WINDOWS\System32\jucq.dll
    O2 - BHO: Gopher Class - {11A4CA8C-A8B9-49c2-A6D3-3F64C9EEBAE6} - C:\Program Files\DNS\Catcher.dll
    O2 - BHO: (no name) - {1C6468F0-9C20-B0AA-8351-7EDBCA0C54E0} - C:\WINDOWS\ayckjtsq.dll
    O2 - BHO: (no name) - {3EDD7B8A-A870-E9DA-3305-E815410BBDA0} - C:\WINDOWS\System32\jucq.dll
    O2 - BHO: wb - {55BE9F0D-6CAF-4c3e-B125-5A13A8C9D0EC} - C:\WINDOWS\System32\nsnF59.dll
    O2 - BHO: LANBridge Class - {71D1708F-973D-4600-AF01-AD86688403AE} - C:\WINDOWS\System32\aguquvxz.d ll
    O2 - BHO: XBTB07618 Class - {BBBE1C1A-89F7-4AF6-ABD1-F8FBCFA47408} - C:\PROGRA~1\MAXIFI~1\tbuE94\MA XIFI~1.DLL
    O2 - BHO: SDWin32 Class - {BDE98574-3ECA-4317-8084-BDEBCA6FE71B} - C:\WINDOWS\System32\wlxmu.dll
    O2 - BHO: ohb Class - {F0C08B30-BA30-4FEB-924B-2E250CF0697D} - C:\WINDOWS\System32\siq.dll
    O2 - BHO: RichEditor Class - {F79A2C4B-8776-4ED7-8B2F-4786A4A3500A} - C:\WINDOWS\System32\richedtr.d ll
    O3 - Toolbar: Maxifiles - {77FBF9B8-1D37-4FF2-9CED-192D8E3ABA6F} - C:\Program Files\MaxiFiles\tbuE94\maxifil es.dll
    O3 - Toolbar: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Install s\cpn\yt.dll
    O4 - HKLM\..\Run: [AVPCC] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpcc.exe" /wait
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsch ed.exe" -osboot
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [Uish] "C:\Program Files\airu\warp.exe" -vt ndrv
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\ EXCEL.EXE/3000
    O9 - Extra button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Program Files\ATI Multimedia\TV\EXPLBAR.DLL
    O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
    O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
    O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
    O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
    O13 - DefaultPrefix:
    O13 - WWW Prefix:
    O13 - WWW. Prefix: http://ehttp.cc/?
    O16 - DPF: {00000000-0000-0000-0000-000020030000} - http://www.advnt01.com/dialer/fra_pao.exe
    O16 - DPF: {00000000-0000-0000-0000-000020040000} - http://207.234.185.217/ABoxInst_int5.exe
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
    O16 - DPF: {10003000-1000-0000-1000-000000000000} - ms-its:mhtml:file://C:\foo.mht!http://greg-tut.com/G7/chm10.chm::/ieloader.exe
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/62...bridge-c46.cab
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
    O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://software-dl.real.com/19b99a44...dxIE601_fr.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.co...?1099170614389
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary...o.cab32846.cab
    O16 - DPF: {DAB941D8-BC94-4819-AB4D-5598C65FA3FE} (iiittt Class) - http://tb.searchitquick.com/v30/siq.cab
    O16 - DPF: {DDF44FD9-749F-4761-89BB-E8A59339E459} - http://akamai.downloadv3.com/binarie...ce_9_EN_XP.cab
    O18 - Protocol: bw+0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw00 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw00s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw10 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw10s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw20 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw20s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw30 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw30s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw40 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw40s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw50 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw50s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw60 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw60s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw70 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw70s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw80 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw80s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw90 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw90s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll

    -----
    "Le stress est la clef de l'échec."
  2. 18/01/2006, 13h47 #2
    fenouille

    Re : Ordinateur infecté > je demande votre aide

    O18 - Protocol: bwa0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPl ugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bws0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bws0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bww0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bww0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp. dll" (file missing)
    O18 - Protocol: offline-8876480 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Filter: text/html - {8293D547-38DD-4325-B35A-F1817EDFA5FC} - C:\Program Files\CMSystem\plugin.dll
    O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.e xe
    O23 - Service: AVP Control Centre Service (AVPCC) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpcc.exe" /service (file missing)
    O23 - Service: Command Service (cmdService) - Unknown owner - C:\WINDOWS\RG9taW5pcXVl\comman d.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.ex e
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1 1\Intel 32\IDriverT.exe
    O23 - Service: KAV Monitor Service (KAVMonitorService) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpm.exe" /service (file missing)
    O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
    O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
    O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
    O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
    O23 - Service: Windows Overlay Components - Unknown owner - C:\WINDOWS\drmbaue.exe (file missing)
    O23 - Service: Windows VisFx Components - Unknown owner - C:\WINDOWS\eajrsvc.exe (file missing)
    "Le stress est la clef de l'échec."
  3. 18/01/2006, 13h49 #3
    fenouille

    Re : Ordinateur infecté > je demande votre aide

    merci de me dire ce que je dois cocher,. Je lui ai install&#233; le navigateur Firefox, c'est d&#233;j&#224; ca !
    "Le stress est la clef de l'échec."
  4. 18/01/2006, 15h19 #4
    invite1f4ba402

    Re : Ordinateur infecté > je demande votre aide

    Bonjour,
    Tu peux déjà suivre les recommandations intégrées à HijackThis (bouton Infos on Selected Item)
    ou essayer l'analyse en ligne de ton rapport:

    http://forum.telecharger.com/telecha...essages-1.html

    Cette analyse en ligne m'a permis de me débarrasser de l'adware filost qui résistait à tous les anti-virus ou anti-spyware que j'ai testés.
  5. Aujourd'hui
    A voir en vidéo sur Futura
  6. 18/01/2006, 15h20 #5
    yoda1234

    Re : Ordinateur infecté > je demande votre aide

    Bonjour
    as tu pensé a dégrossir le travail de certains intervenants en appliquant a la lettre ceci .
    Petite précision:
    Si malgré ce traitement le ou les malwares resistaient, il faudrait en dernier recours utliser un logiciel appelé HijackThis.
    Tu peut aussi rajouter ewido,
    sans oublier de décocher les deux options "Install background guard" et "Install scan via context menu"sur la page "Additional Options" .
    Là où l'ignorance est un bienfait, c'est de la folie d'être sage (Thomas Gray).
  7. 18/01/2006, 15h26 #6
    fenouille

    Re : Ordinateur infecté > je demande votre aide

    Citation Envoyé par yoda1234
    Bonjour
    as tu pensé a dégrossir le travail de certains intervenants en appliquant a la lettre ceci .
    Petite précision:
    Tu peut aussi rajouter ewido,
    sans oublier de décocher les deux options "Install background guard" et "Install scan via context menu"sur la page "Additional Options" .

    bonjour Yoda1234

    oui j'ai fait un scan adware et spypot mais pas encore ewido.
    Je pensais qu'il fallais utilliser HijacksThis en premier justement (autant pour moi )
    Le scan ediwo je le fais en mode sans échec ou pas ?
    "Le stress est la clef de l'échec."
  8. 18/01/2006, 15h33 #7
    Cyrrus

    Re : Ordinateur infecté > je demande votre aide

    Bonjour fenouille,

    Oui en sans echec de preference. J'espere que ca va lui degrossir son log car il est vraiment bien plein...
    Bonne journ&#233;e
    Cyrrus
  9. 18/01/2006, 15h36 #8
    invitecaff288f

    Re : Ordinateur infecté > je demande votre aide

    Salut,
    Ouaip, ben moi si tu peux encore acceder au systeme et faire une sauvegarde, je te conseillerais de formater et de tout reinstaller. C carrement plus sur. et au moins t sur qu´il n´y a plus rien. c un peu plus de boulot, mais parfois ca va plus vite que de ce casser la tete avec n logiciels qui vont pas faire completement le travail.

    Cordialement
  10. 18/01/2006, 15h39 #9
    yoda1234

    Re : Ordinateur infecté > je demande votre aide

    Re-bonjour
    oui fait le en mode sans échec.
    Là où l'ignorance est un bienfait, c'est de la folie d'être sage (Thomas Gray).
  11. 18/01/2006, 15h42 #10
    yoda1234

    Re : Ordinateur infecté > je demande votre aide

    Citation Envoyé par pingoo
    Salut,
    Ouaip, ben moi si tu peux encore acceder au systeme et faire une sauvegarde, je te conseillerais de formater et de tout reinstaller. C carrement plus sur. et au moins t sur qu´il n´y a plus rien. c un peu plus de boulot, mais parfois ca va plus vite que de ce casser la tete avec n logiciels qui vont pas faire completement le travail.

    Cordialement
    Bonjour
    c"est vraiment n'importe quoi.
    Le formatage dans 90% des cas est le refuge de l'incompétence.
    Dernière modification par yoda1234 ; 18/01/2006 à 15h46.
    Là où l'ignorance est un bienfait, c'est de la folie d'être sage (Thomas Gray).
  12. 18/01/2006, 16h39 #11
    invite597d4991

    Re : Ordinateur infecté > je demande votre aide

    Citation Envoyé par yoda1234
    Le formatage dans 90% des cas est le refuge de l'incompétence.
    J'ai bien dû formater 20 fois windows, et je dois dire qu'en effet la plupart du temps c'était par incompétence, mais vu la complexité (bien plus grande que celle des Unix like) et le "bordel" pour réparer la moindre connerie, on gagne du temps par le formatage...
  13. 18/01/2006, 16h41 #12
    fenouille

    Re : Ordinateur infecté > je demande votre aide

    Re tout le monde.

    alors voila le log apres avoir passé spybot, ad aware et ediwo en mode sans echec...

    Logfile of HijackThis v1.99.1
    Scan saved at 17:36:32, on 18/01/2006
    Platform: Windows XP (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 (6.00.2600.0000)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.e xe
    C:\WINDOWS\system32\services.e xe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.ex e
    C:\WINDOWS\System32\svchost.ex e
    C:\WINDOWS\system32\spoolsv.ex e
    C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpcc.exe
    C:\Program Files\ewido anti-malware\ewidoctrl.exe
    C:\WINDOWS\System32\FTRTSVC.ex e
    C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpm.exe
    C:\WINDOWS\System32\svchost.ex e
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpcc.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsch ed.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Documents and Settings\Dominique\Bureau\Hija ckThis.exe

    R1 - HKCU\Software\Microsoft\Intern et Explorer,(Default) = www.google.com
    R0 - HKCU\Software\Microsoft\Intern et Explorer\Main,Start Page = http://ads1.revenue.net/l?site_id=11634&pplacement_id=1
    R0 - HKLM\Software\Microsoft\Intern et Explorer\Main,Start Page =
    R1 - HKCU\Software\Microsoft\Intern et Explorer\Main,Window Title = Wanadoo
    R0 - HKCU\Software\Microsoft\Intern et Explorer\Toolbar,LinksFolderNa me = Liens
    R3 - URLSearchHook: (no name) - {031125C5-167C-947B-8D86-6EF3F7432D77} - C:\WINDOWS\ayckjtsq.dll (file missing)
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.D LL
    O2 - BHO: Gopher Class - {11A4CA8C-A8B9-49c2-A6D3-3F64C9EEBAE6} - C:\Program Files\DNS\Catcher.dll
    O2 - BHO: (no name) - {1C6468F0-9C20-B0AA-8351-7EDBCA0C54E0} - C:\WINDOWS\ayckjtsq.dll (file missing)
    O2 - BHO: LANBridge Class - {71D1708F-973D-4600-AF01-AD86688403AE} - C:\WINDOWS\System32\aguquvxz.d ll (file missing)
    O2 - BHO: XBTB07618 Class - {BBBE1C1A-89F7-4AF6-ABD1-F8FBCFA47408} - C:\PROGRA~1\MAXIFI~1\tbuE94\MA XIFI~1.DLL (file missing)
    O2 - BHO: SDWin32 Class - {BDE98574-3ECA-4317-8084-BDEBCA6FE71B} - C:\WINDOWS\System32\wlxmu.dll (file missing)
    O2 - BHO: RichEditor Class - {F79A2C4B-8776-4ED7-8B2F-4786A4A3500A} - C:\WINDOWS\System32\richedtr.d ll
    O3 - Toolbar: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Install s\cpn\yt.dll
    O4 - HKLM\..\Run: [AVPCC] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpcc.exe" /wait
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsch ed.exe" -osboot
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Bi naries\MSConfig.exe /auto
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [Uish] "C:\Program Files\airu\warp.exe" -vt ndrv
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\ EXCEL.EXE/3000
    O9 - Extra button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Program Files\ATI Multimedia\TV\EXPLBAR.DLL
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
    "Le stress est la clef de l'échec."
  14. 18/01/2006, 16h42 #13
    fenouille

    Re : Ordinateur infecté > je demande votre aide

    O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
    O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
    O13 - WWW. Prefix: http://ehttp.cc/?
    O16 - DPF: {00000000-0000-0000-0000-000020030000} - http://www.advnt01.com/dialer/fra_pao.exe
    O16 - DPF: {00000000-0000-0000-0000-000020040000} - http://207.234.185.217/ABoxInst_int5.exe
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/62...bridge-c46.cab
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
    O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://software-dl.real.com/19b99a44...dxIE601_fr.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.co...?1099170614389
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary...o.cab32846.cab
    O16 - DPF: {DDF44FD9-749F-4761-89BB-E8A59339E459} - http://akamai.downloadv3.com/binarie...ce_9_EN_XP.cab
    O18 - Protocol: bw+0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw00 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw00s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw10 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw10s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw20 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw20s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw30 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw30s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw40 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw40s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw50 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw50s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw60 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw60s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw70 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw70s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw80 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw80s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw90 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw90s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPl ugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bws0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bws0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bww0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bww0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp. dll" (file missing)
    O18 - Protocol: offline-8876480 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.e xe
    O23 - Service: AVP Control Centre Service (AVPCC) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpcc.exe" /service (file missing)
    O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
    "Le stress est la clef de l'échec."
  15. 18/01/2006, 16h43 #14
    fenouille

    Re : Ordinateur infecté > je demande votre aide

    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.ex e
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1 1\Intel 32\IDriverT.exe
    O23 - Service: KAV Monitor Service (KAVMonitorService) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpm.exe" /service (file missing)
    O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
    O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
    O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
    O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
    O23 - Service: Windows Overlay Components - Unknown owner - C:\WINDOWS\drmbaue.exe (file missing)
    O23 - Service: Windows VisFx Components - Unknown owner - C:\WINDOWS\eajrsvc.exe (file missing)
    "Le stress est la clef de l'échec."
  16. 18/01/2006, 16h46 #15
    fenouille

    Re : Ordinateur infecté > je demande votre aide

    je vous poste un rapport de scann ewido ou pas ?
    "Le stress est la clef de l'échec."
  17. 18/01/2006, 16h50 #16
    yoda1234

    Re : Ordinateur infecté > je demande votre aide

    Re-bonjour
    oui, je pense que cela aidera Cyrrus.
    Là où l'ignorance est un bienfait, c'est de la folie d'être sage (Thomas Gray).
  18. 18/01/2006, 17h14 #17
    fenouille

    Re : Ordinateur infecté > je demande votre aide

    ---------------------------------------------------------
    ewido anti-malware - Rapport de scan
    ---------------------------------------------------------

    + Créé le: 18:08:24, 18/01/2006
    + Somme de contrôle: C16AC25A

    + Résultats du scan:

    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\DNS -> Adware.Shorty : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\NIX Solutions -> Spyware.DailyToolbar : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\NIX Solutions\EbonyToolbar -> Spyware.DailyToolbar : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\NIX Solutions\EbonyToolbar\Search -> Spyware.DailyToolbar : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\NIX Solutions\EbonyToolbar\Search\ MRU -> Spyware.DailyToolbar : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\WinUpdt -> Spyware.SecondThought : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\_rtneg2 -> Spyware.Begin2Search : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\_rtneg2\eeennn -> Spyware.Begin2Search : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\_rtneg2\kkws -> Spyware.Begin2Search : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\_rtneg2\ppops -> Spyware.Begin2Search : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\_rtneg2\reel -> Spyware.Begin2Search : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\_rtneg2\ssites -> Spyware.Begin2Search : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\_siq -> Spyware.Begin2Search : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\_siq\kkws -> Spyware.Begin2Search : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\_siq\ppops -> Spyware.Begin2Search : Nettoyer et sauvegarder
    HKU\S-1-5-21-1214440339-162531612-725345543-1003\Software\_siq\ssites -> Spyware.Begin2Search : Nettoyer et sauvegarder
    :mozilla.6:C:\Documents and Settings\Dominique\Application Data\Mozilla\Firefox\Profiles\ kivh7nh4.default\cookies.txt -> Spyware.Cookie.Doubleclick : Nettoyer et sauvegarder
    :mozilla.9:C:\Documents and Settings\Dominique\Application Data\Mozilla\Firefox\Profiles\ kivh7nh4.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder
    :mozilla.10:C:\Documents and Settings\Dominique\Application Data\Mozilla\Firefox\Profiles\ kivh7nh4.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder
    :mozilla.11:C:\Documents and Settings\Dominique\Application Data\Mozilla\Firefox\Profiles\ kivh7nh4.default\cookies.txt -> Spyware.Cookie.Smartadserver : Nettoyer et sauvegarder
    :mozilla.16:C:\Documents and Settings\Dominique\Application Data\Mozilla\Firefox\Profiles\ kivh7nh4.default\cookies.txt -> Spyware.Cookie.Atdmt : Nettoyer et sauvegarder
    :mozilla.18:C:\Documents and Settings\Dominique\Application Data\Mozilla\Firefox\Profiles\ kivh7nh4.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Nettoyer et sauvegarder


    ::Fin du rapport
    "Le stress est la clef de l'échec."
  19. 18/01/2006, 18h37 #18
    Cyrrus

    Re : Ordinateur infecté > je demande votre aide

    Bonsoir &#224; tous,

    Je n'ai pas le temps d'analyser le log hijackthis ce soir. Le truc sympa c'est qu'Ewido n'a pas debusqu&#233; de truc horrible, juste des bons petits spywares de seconde classe. Je pense que ton log doit &#234;tre pas tr&#232;s loin de la propret&#233;, mis il faudra que je te le d&#233;grossisse s&#233;rieusement, car l&#224; c'est illisible...

    @pingoo et overmind :

    Franchement si c'est pas par paresse que vous formatez...en formatant on s'enl&#232;ve certes les probl&#232;mes, mais franchement qu'est ce qu'on en tire ? On apprend rien de son systeme, et &#224; la prochaine boulette on rebelotte...
    En attaquant la b&#234;te on apprend &#224; connaitre le fonctionnement de son systeme. C'est tr&#232;s gratifiant, et en plus vous &#234;tes aid&#233;...alors tentez le coup un jour, au pire, vous serez comment formatez ^^

    Bonne soir&#233;e &#224; tous
    Cyrrus
  20. 18/01/2006, 18h46 #19
    fenouille

    Re : Ordinateur infecté > je demande votre aide

    merci beaucoup Cyrrus. C'est sympa de m'aider comme ca. (prommis apres je n'ai plus de pc infecté )
    Ca peut attendre ne t'en fais pas

    Bonne soirée
    "Le stress est la clef de l'échec."
  21. 18/01/2006, 21h11 #20
    igor51

    Re : Ordinateur infecté > je demande votre aide

    Bonsoir,
    Bon je vais supléer Cyrrus:
    Alors je vais te demander juste de fixer quelques lignes histoire d'y voir beaucoup plus clair!!!

    R0 - HKCU\Software\Microsoft\Intern et Explorer\Main,Start Page = http://ads1.revenue.net/l?site_id=11...acement_id= 1
    R0 - HKLM\Software\Microsoft\Intern et Explorer\Main,Start Page =
    R3 - URLSearchHook: (no name) - {031125C5-167C-947B-8D86-6EF3F7432D77} - C:\WINDOWS\ayckjtsq.dll (file missing)
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.D LL
    O2 - BHO: Gopher Class - {11A4CA8C-A8B9-49c2-A6D3-3F64C9EEBAE6} - C:\Program Files\DNS\Catcher.dll
    O2 - BHO: (no name) - {1C6468F0-9C20-B0AA-8351-7EDBCA0C54E0} - C:\WINDOWS\ayckjtsq.dll (file missing)
    O2 - BHO: LANBridge Class - {71D1708F-973D-4600-AF01-AD86688403AE} - C:\WINDOWS\System32\aguquvxz.d ll (file missing)
    O2 - BHO: XBTB07618 Class - {BBBE1C1A-89F7-4AF6-ABD1-F8FBCFA47408} - C:\PROGRA~1\MAXIFI~1\tbuE94\MA XIFI~1.DLL (file missing)
    O2 - BHO: SDWin32 Class - {BDE98574-3ECA-4317-8084-BDEBCA6FE71B} - C:\WINDOWS\System32\wlxmu.dll (file missing)
    O2 - BHO: RichEditor Class - {F79A2C4B-8776-4ED7-8B2F-4786A4A3500A} - C:\WINDOWS\System32\richedtr.d ll
    O13 - WWW. Prefix: http://ehttp.cc/?
    O16 - DPF: {00000000-0000-0000-0000-000020030000} - http://www.advnt01.com/dialer/fra_pao.exe
    O16 - DPF: {00000000-0000-0000-0000-000020040000} - http://207.234.185.217/ABoxInst_int5.exe
    O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/62...bridge-c46.cab
    O16 - DPF: {DDF44FD9-749F-4761-89BB-E8A59339E459} - http://akamai.downloadv3.com/binarie...ce_9_EN_XP.cab
    O18 - Protocol: bw+0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw00 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw00s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw10 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw10s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw20 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw20s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw30 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw30s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw40 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw40s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw50 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw50s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw60 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw60s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw70 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw70s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw80 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw80s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw90 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bw90s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPl ugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bws0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bws0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bww0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bww0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgr app. dll" (file missing)
    O18 - Protocol: offline-8876480 - {676CF69C-A385-49DD-A7A8-EBF3BAD2388D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl ugProtocol-8876480.dll


    Voila fixed checked ses lignes et reposte un log je pense que l'on y verra deja plus clair

    bonne soirée
    Faire des erreurs est humain. Les mettre sur le dos de l'informatique l'est encore plus.
« controler un PC depuis un autre PC distant | Paramétrer la taille des paquets et sécurité »

Discussions similaires

  1. Ordinateur infecté ?
    Par invite0e8b7c46 dans le forum Internet - Réseau - Sécurité générale
    Réponses: 36
    Dernier message: 08/05/2007, 12h16
  2. je demande votre aide et en urgence SVP (pascal)
    Par invitef0471425 dans le forum Logiciel - Software - Open Source
    Réponses: 7
    Dernier message: 23/04/2007, 20h41
  3. Ordinateur infecté, besoin d'aide
    Par invite9e667fbf dans le forum Internet - Réseau - Sécurité générale
    Réponses: 5
    Dernier message: 01/04/2007, 17h07
  4. je demande vraiment votre aide
    Par inviteba5b50da dans le forum Internet - Réseau - Sécurité générale
    Réponses: 4
    Dernier message: 25/01/2006, 01h40
Découvrez nos comparatifs produits sur l'informatique et les technologies.