Vérole ou pas?

abigail74 Messages postés 14 Statut Membre -  
abigail74 Messages postés 14 Statut Membre -
Il me manque les lettres avec accents et les c avec cédilles dans le système. Pouvez vous m'aider? Il doit surement y avoir des choses a supprimer.
Un gros merci d'avance.
Logfile of HijackThis v1.99.1
Scan saved at 08:48:48, on 18/07/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wlancfg.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
C:\PROGRA~1\mcafee.com\vso\mcvsshld.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
C:\PROGRA~1\MYWEBS~1\bar\15.bin\mwsoemon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Yahoo!\Messenger\ypager.exe
C:\Program Files\MSI\3D!Turbo Experience\3D!Turbo.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\FlashGet\flashget.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\NENNO\Local Settings\Temporary Internet Files\Content.IE5\MEUELI3B\HijackThis[1].exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customize/ycomp/defaults/sb/*http://www.yahoo.com/search/ie.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ie/defaults/sb/ymsgr6/fr/*http://www.yahoo.com/ext/search/search.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com/?.home=msgr
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/ycomp/defaults/su/*http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.cegetel.net/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\15.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\15.bin\MWSSRCAS.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\15.bin\MWSBAR.DLL
O2 - BHO: XNetIEObj Class - {1808648B-3102-4293-8AD3-06AF71D3321B} - C:\Program Files\Endeavors\AppExpress\bho_2_5_5_17070\bho.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FlashGet\jccatch.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NVCLOCK] Rundll32 nvclock.dll,fnNvclock
O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] "c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe"
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [McAfee Guardian] "C:\Program Files\McAfee\McAfee Shared Components\Guardian\CMGrdian.exe" /SU
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [mmtask] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\15.bin\mwsoemon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\15.bin\mwsoemon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet
O4 - Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\15.bin\MWSOEMON.EXE
O4 - Global Startup: 3D!Turbo Experience.lnk = C:\Program Files\MSI\3D!Turbo Experience\3D!Turbo.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\15.bin\MWSOEMON.EXE
O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZS
O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Télécharger tout avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmesfr.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmesfr.dll
O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {00000000-0000-0000-0000-000020030000} - http://www.advnt01.com/dialer/fra_med_due.exe
O16 - DPF: {0878B424-1F95-4E26-B5AB-F0D349D89650} - http://download.bargain-buddy.net/download/bargain_buddy/cab/installer_MARKETING32.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwebproducts/ei-2/SmileyCentralFWBInitialSetup1.0.0.8-2.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,90/mcinsctl.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {8C875948-9C60-4381-9248-0DF180542D53} (HbtInstObj) - http://installs.hotbar.com/installs/hbtools/programs/hbtools.cab
O16 - DPF: {AF087E66-838E-4A97-8A0B-0DDDA5DEA239} (OTAutoInstall Class) - https://streaming.endeavors.com/microsoft/encarta_rl/clientdownloads/OTAI.CAB
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
O16 - DPF: {B80F9FCE-DFDD-4A2A-8AA9-E05C6B7D4ED3} (SWToolBar Class) - http://www.smileyworld.com/toolbar/SmileyWorld.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,23/mcgdmgr.cab
O18 - Protocol: bw+0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: McAfee.com McShield (McShield) - Unknown owner - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee.com VirusScan Online Realtime Engine (MCVSRte) - McAfee, Inc - c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\WINDOWS\wlancfg.exe

7 réponses

  1. bxflash
     
    Salut

    S'il vous plaît les amis

    si vous avez le temps, pourriez-vous jeter un oeil sur le log d'abigail74

    C'est moi qui lui ait dit de poster sur le forum, malheureusement, je ne sais pas encore analyser les log
    hitjack this...

    Merci.

    doit-elle le faire le log en session normal ou en session sans echec?

    bxflash
    0
    1. abigail74 Messages postés 14 Statut Membre
       
      coucou Bxflash!!
      Juste un petit mot pour te dire que je n'ai toujours pas reçu de réponse pour mon analyse. Je suis patiente donc ca va je me prends pas la tête.
      Je tenais juste à te donner des nouvelles, je trouves ca normal.
      A +
      Ciao
      Abigail
      0
  2. balltrap34 Messages postés 16241 Statut Contributeur sécurité 332
     
    salut abigail74

    desinstal deja ceci MyWebSearch
    ensuite fait ceci
    tous da bord telecharge ces programmes si tu les a pas et met les a jour
    et verifie que tu as les bonnes version c est imperatif

    ad-aware (1)version 1.06

    (ici) http://www.florensac-chasse-trap.com/ section virus
    voir demo
    http://pageperso.aol.fr/balltrap34/adwseflash.zip
    0
    1. abigail74 Messages postés 14 Statut Membre
       
      coucou,
      merci de tenter de m'aider c'est sympa de ta part.
      J'ai mis un peu de temps, mais j'ai fais tous ce que tu m'avais conseillé de faire.
      Voici le rapport d'hijackthis.
      Tiens moi au courant si y a encore des choses à virer.
      Ciao
      Abigail'hLogfile of HijackThis v1.99.1
      Scan saved at 22:42:20, on 20/07/2005
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\spoolsv.exe
      C:\WINDOWS\system32\drivers\CDAC11BA.EXE
      c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
      C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
      C:\WINDOWS\System32\nvsvc32.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\svchost.exe
      c:\PROGRA~1\mcafee.com\vso\mcshield.exe
      C:\WINDOWS\SOUNDMAN.EXE
      C:\WINDOWS\system32\RUNDLL32.EXE
      C:\PROGRA~1\mcafee.com\vso\mcvsshld.exe
      C:\PROGRA~1\mcafee.com\agent\mcagent.exe
      c:\progra~1\mcafee.com\vso\mcvsescn.exe
      C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
      C:\Program Files\Logitech\iTouch\iTouch.exe
      C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
      C:\Program Files\QuickTime\qttask.exe
      C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe
      C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\Yahoo!\Messenger\ypager.exe
      C:\Program Files\a2\a2guard.exe
      C:\Program Files\MSI\3D!Turbo Experience\3D!Turbo.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
      C:\Program Files\Logitech\MouseWare\system\em_exec.exe
      C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
      C:\PROGRA~1\INCRED~1\bin\IMApp.exe
      C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
      c:\progra~1\mcafee.com\vso\mcvsftsn.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
      C:\WINDOWS\System32\HPZipm12.exe
      C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
      C:\WINDOWS\wlancfg.exe
      C:\Program Files\eMule\emule.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Program Files\FlashGet\flashget.exe
      C:\Program Files\WinRAR\WinRAR.exe
      C:\DOCUME~1\NENNO\LOCALS~1\Temp\Rar$EX01.344\HijackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customize/ycomp/defaults/sb/*http://www.yahoo.com/search/ie.html
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ie/defaults/sb/ymsgr6/fr/*http://www.yahoo.com/ext/search/search.html
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com/?.home=msgr
      R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/ycomp/defaults/su/*http://www.yahoo.com
      R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.cegetel.net/
      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      R3 - Default URLSearchHook is missing
      O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
      O2 - BHO: XNetIEObj Class - {1808648B-3102-4293-8AD3-06AF71D3321B} - C:\Program Files\Endeavors\AppExpress\bho_2_5_5_17070\bho.dll
      O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
      O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
      O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FlashGet\jccatch.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
      O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll
      O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
      O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
      O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
      O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
      O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
      O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
      O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
      O4 - HKLM\..\Run: [NVCLOCK] Rundll32 nvclock.dll,fnNvclock
      O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask
      O4 - HKLM\..\Run: [VirusScan Online] "c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe"
      O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
      O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
      O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
      O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
      O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe"
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
      O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
      O4 - HKLM\..\Run: [McAfee Guardian] "C:\Program Files\McAfee\McAfee Shared Components\Guardian\CMGrdian.exe" /SU
      O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
      O4 - HKLM\..\Run: [mmtask] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
      O4 - HKCU\..\Run: [LDM] \Program\
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
      O4 - HKCU\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe
      O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
      O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet
      O4 - HKCU\..\Run: [a-squared] "C:\Program Files\a2\a2guard.exe"
      O4 - Global Startup: 3D!Turbo Experience.lnk = C:\Program Files\MSI\3D!Turbo Experience\3D!Turbo.exe
      O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
      O4 - Global Startup: hp psc 1000 series.lnk = ?
      O4 - Global Startup: hpoddt01.exe.lnk = ?
      O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
      O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
      O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
      O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
      O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
      O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
      O8 - Extra context menu item: Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
      O8 - Extra context menu item: Télécharger tout avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
      O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
      O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmesfr.dll
      O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmesfr.dll
      O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL
      O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
      O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
      O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
      O16 - DPF: {00000000-0000-0000-0000-000020030000} - http://www.advnt01.com/dialer/fra_med_due.exe
      O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
      O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
      O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,90/mcinsctl.cab
      O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
      O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cab
      O16 - DPF: {AF087E66-838E-4A97-8A0B-0DDDA5DEA239} (OTAutoInstall Class) - https://streaming.endeavors.com/microsoft/encarta_rl/clientdownloads/OTAI.CAB
      O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
      O16 - DPF: {B80F9FCE-DFDD-4A2A-8AA9-E05C6B7D4ED3} - http://www.smileyworld.com/toolbar/SmileyWorld.cab
      O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,23/mcgdmgr.cab
      O18 - Protocol: bw+0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw+0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw-0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw-0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw00 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw00s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw10 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw10s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw20 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw20s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw30 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw30s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw40 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw40s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw50 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw50s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw60 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw60s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw70 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw70s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw80 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw80s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw90 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw90s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwa0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwa0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwb0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwb0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwc0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwc0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwd0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwd0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwe0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwe0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwf0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwf0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
      O18 - Protocol: bwg0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwg0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwh0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwh0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwi0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwi0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwj0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwj0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwk0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwk0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwl0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwl0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwm0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwm0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwn0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwn0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwo0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwo0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwp0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwp0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwq0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwq0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwr0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwr0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bws0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bws0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwt0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwt0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwu0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwu0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwv0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwv0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bww0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bww0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwx0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwx0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwy0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwy0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwz0 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwz0s - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: offline-8876480 - {9E03A6A1-210F-4355-B6AC-4A0DC15B085E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
      O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
      O23 - Service: McAfee.com McShield (McShield) - Unknown owner - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
      O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
      O23 - Service: McAfee.com VirusScan Online Realtime Engine (MCVSRte) - McAfee, Inc - c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
      O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
      O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
      O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
      O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\WINDOWS\wlancfg.exe
      0
  3. balltrap34 Messages postés 16241 Statut Contributeur sécurité 332
     
    il y a pas grand chose
    relance hijack coche et fix
    R3 - Default URLSearchHook is missing
    O16 - DPF: {00000000-0000-0000-0000-000020030000} - http://www.advnt01.com/dialer/fra_med_due.exe
    O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,90/mcinsctl.cab
    O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
    O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cab
    O16 - DPF: {AF087E66-838E-4A97-8A0B-0DDDA5DEA239} (OTAutoInstall Class) - https://streaming.endeavors.com/microsoft/encarta_rl/clientdownloads/OTAI.CAB
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
    O16 - DPF: {B80F9FCE-DFDD-4A2A-8AA9-E05C6B7D4ED3} - http://www.smileyworld.com/toolbar/SmileyWorld.cab
    O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,23/mcgdmgr.cab

    0
    1. abigail74 Messages postés 14 Statut Membre
       
      Ca y est c'est fait.
      Peux tu me dire un peu ce qu'il y avait et ce que j'ai fais? (avec des mots simples please!!)
      est ce que les pitites véroles que j'avais peuvent être la cause de mes lettres qui manquent?
      Ciao
      abigail
      0
  4. balltrap34 Messages postés 16241 Statut Contributeur sécurité 332
     
    je t est fait simplement suppr des active x
    ne me demande pas de detail stp

    tes sosucis de lettre tu les a toujour je suppose
    0
    1. abigail74 Messages postés 14 Statut Membre
       
      ok ok promis je ferais pas ma chiante, je me passerais des détails!!!
      yes, j'ai toujours mes problèmes de lettres.
      Qu'est ce qu'il faut que je fasses?
      Abigail
      0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. balltrap34 Messages postés 16241 Statut Contributeur sécurité 332
     
    la je vois pas
    0
    1. abigail74 Messages postés 14 Statut Membre
       
      coucou,
      Désolé de répondre si tard.
      Bon, tant pis, si tu ne vois pas, c'est pas grave!!
      Merci d'avoir essayé de m'aider.
      Ciao
      Abigail
      0
  7. balltrap34 Messages postés 16241 Statut Contributeur sécurité 332
     
    coucou lol
    fait un scan ici
    Scan bit defender
    http://www.bitdefender.fr
    clik sur scan on line a gauche et suis la procedure
    0
    1. abigail74 Messages postés 14 Statut Membre
       
      coucou,
      j'ai mis le temps mais j'ai fais ce que tu m'as dit
      je t'envoies le rapport d'analyse
      bon courage
      ciao
      abigailBitDefender Online Scanner



      Rapport d'analyse généré à: Mon, Jul 25, 2005 - 22:02:10





      Voie d'analyse: A:\;C:\;D:\;







      Statistiques

      Temps
      01:07:41

      Fichiers
      268436

      Directoires
      11170

      Secteurs de boot
      2

      Archives
      2663

      Paquets programmes
      38232




      Résultats

      Virus identifiés
      4

      Fichiers infectés
      35

      Fichiers suspects
      0

      Avertissements
      0

      Désinfectés
      0

      Fichiers effacés
      35




      Info sur les moteurs

      Définition virus
      196664

      Version des moteurs
      AVCORE v1.0 (build 2292) (i386) (Mar 3 2005 11:57:29)

      Analyse des plugins
      13

      Archive des plugins
      39

      Unpack des plugins
      4

      E-mail plugins
      6

      Système plugins
      1




      Paramètres d'analyse

      Première action
      Désinfecté

      Seconde Action
      Supprimé

      Heuristique
      Oui

      Acceptez les avertissements
      Oui

      Extensions analysées
      exe;com;dll;ocx;scr;bin;dat;386;vxd;sys;wdm;cla;class;ovl;ole;hlp;doc;dot;xls;ppt;wbk;wiz;pot;ppa;xla;xlt;vbs;vbe;mdb;rtf;htm;hta;html;xml;xtp;php;asp;js;shs;chm;lnk;pif;prc;url;smm;pfd;msi;ini;csc;cmd;bas;

      Excludez les extensions


      Analyse d'emails
      Oui

      Analyse des Archives
      Oui

      Analyser paquets programmes
      Oui

      Analyse des fichiers
      Oui

      Analyse de boot
      Oui




      Fichier analysé
      Statut

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP126\A0057197.scr
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP126\A0057197.scr
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP126\A0057197.scr
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP126\A0057203.SCR
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP126\A0057203.SCR
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP126\A0057203.SCR
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP126\A0057226.DLL
      Infecté par: Trojan.Downloader.FunWeb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP126\A0057226.DLL
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP126\A0057226.DLL
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP137\A0072418.exe
      Détecté avec: Adware.Hotbar.R

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP137\A0072418.exe
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP137\A0072418.exe
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077812.scr
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077812.scr
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077812.scr
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077817.SCR
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077817.SCR
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077817.SCR
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077830.EXE
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077830.EXE
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077830.EXE
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077881.scr
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077881.scr
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077881.scr
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077886.EXE
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077886.EXE
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077886.EXE
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077894.SCR
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077894.SCR
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP145\A0077894.SCR
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0077966.scr
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0077966.scr
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0077966.scr
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0077973.SCR
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0077973.SCR
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0077973.SCR
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0077984.EXE
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0077984.EXE
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0077984.EXE
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0078845.EXE
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0078845.EXE
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0078845.EXE
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0078895.DLL
      Infecté par: Trojan.Downloader.FunWeb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0078895.DLL
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0078895.DLL
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0078896.DLL
      Infecté par: Trojan.Downloader.FunWeb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0078896.DLL
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0078896.DLL
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0079960.scr
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0079960.scr
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0079960.scr
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0079965.SCR
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0079965.SCR
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0079965.SCR
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0080041.DLL
      Infecté par: Trojan.Downloader.FunWeb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0080041.DLL
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP146\A0080041.DLL
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080111.scr
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080111.scr
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080111.scr
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080116.SCR
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080116.SCR
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080116.SCR
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080130.EXE
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080130.EXE
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080130.EXE
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080196.DLL
      Infecté par: Trojan.Downloader.FunWeb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080196.DLL
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080196.DLL
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080197.DLL
      Infecté par: Trojan.Downloader.FunWeb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080197.DLL
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP147\A0080197.DLL
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086658.scr
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086658.scr
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086658.scr
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086661.DLL
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086661.DLL
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086661.DLL
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086662.SCR
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086662.SCR
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086662.SCR
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086666.DLL
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086666.DLL
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086666.DLL
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086673.EXE
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086673.EXE
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086673.EXE
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086681.EXE
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086681.EXE
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086681.EXE
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086700.EXE
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086700.EXE
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP155\A0086700.EXE
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP156\A0086729.DLL
      Infecté par: Trojan.Downloader.FunWeb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP156\A0086729.DLL
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP156\A0086729.DLL
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP156\A0086730.scr
      Détecté avec: Application.Adware.Funweb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP156\A0086730.scr
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP156\A0086730.scr
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP69\A0008805.exe
      Infecté par: Trojan.Multidropper.NB

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP69\A0008805.exe
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP69\A0008805.exe
      Supprimé

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP92\A0013776.DLL
      Infecté par: Trojan.Downloader.FunWeb.A

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP92\A0013776.DLL
      Echec de la désinfection

      C:\System Volume Information\_restore{389F7C1F-A760-4067-BCFC-D804B07C84E3}\RP92\A0013776.DLL
      Supprimé
      0
  8. balltrap34 Messages postés 16241 Statut Contributeur sécurité 332
     
    apparament defender les a virer
    quel soucis il te reste
    0
    1. abigail74 Messages postés 14 Statut Membre
       
      coucou,
      ben, en fait, apparemment, tout ce que j'ai fais m'a permis de virer toutes les merdes de mon ordi. Le seul problème qu'il me reste c'est mes pitites lettres qui sont parties.
      Ca m'empêche pas de bosser mais certaines pas sont un peu chiantes à lire et quelques unes (mais c'est relativement rare) sont bloquées. C'est tout j'ai pas d'autres problèmes.
      ca me prend un peu la tête quelquefois mais ca va, d'après ce que j'ai lu y a pire que moi.
      En fait ca m'énerve de pas comprendre pourquoi mes lettres, elles sont plus là.
      En attendant de poser des avis de recherches pour les retrouver, je te remercies.
      CIAO
      Abigail
      0