Bonjour J'ai un problème similaire à celui de Yannick (message "Satané Virus" du 05/09/2005) et comme lui je n'arrive pas à m'en débarasser. J'ai depuis un bon moment des pop-up "only the best" qui s'affichent de façon incessante ? et des favoris indésirables qui polluent ma liste (banques, liens divers, sites pornos , jeux, etc ...) J'ai essayé de faire un peu de ménage en suivant les conseils de BALTRAP34. C'est légèrement mieux mais pas suffisant car cela ne tiens pas --> après 2 minutes de navigation tous ces favoris et pop-up réapparaissent ?? Je vous poste mon log Hijack, si quelqu'un peux m'aider à résoudre ce problème. Merci d'avance Logfile of HijackThis v1.99.1 Scan saved at 15:30:01, on 10/09/2005 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\addwd32.exe C:\Program Files\Norton AntiVirus\navapsvc.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\imapi.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe C:\WINDOWS\system32\javaxz.exe C:\Program Files\Microsoft AntiSpyware\gcasServ.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe C:\WINDOWS\explorer.exe C:\Documents and Settings\PATRON\Bureau\AntiSpy\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\zkutm.dll/sp.html#37049 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\psmzw.dll/sp.html#37049 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS\dzhzo.dll/sp.html#37049 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\dzhzo.dll/sp.html#37049 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\dzhzo.dll/sp.html#37049 R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\dzhzo.dll/sp.html#37049 R1 - HKCU\Software\Microsoft\Internet Explorer\Search,(Default) = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\dzhzo.dll/sp.html#37049 R1 - HKLM\Software\Microsoft\Internet Explorer\Search,(Default) = about:blank R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=SECURITOO:8080 R3 - Default URLSearchHook is missing O2 - BHO: (no name) - {40679120-E85E-36A3-1F67-C69B6C67564C} - C:\WINDOWS\msqn32.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe O4 - HKLM\..\Run: [javaxz.exe] C:\WINDOWS\system32\javaxz.exe O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: bw+0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {3F0A1ABD-A9B5-4091-B161-E946D9D77F17} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: Network Security Service (NSS) ( 11Fßä#·ºÄÖ`I) - Unknown owner - C:\WINDOWS\system32\addwd32.exe" /s (file missing) O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe

[virus] ou [malware] - Page 2

Résolu

Réponse 21 / 25

Utilisateur anonyme

salut
ou en sont tes soucis, ton hijack this est bon

a+

Réponse 22 / 25

PASCAL80 Messages postés 20 Statut Membre

Bonjour Régis

Mon soucis initial est résolu !! Merci beaucoup de ton aide car je ne m'en serai jamais sorti seul.

Il me reste un petit problème que j'ai dû créé lors des manip précédentes. Lorsque je veux éteindre ou redémarrer par le menu habituel cela ne fonctionne plus. Je suis obliger de faire : démarrer / fermer la session / changer utilisateur / arrêter l'ordinateur / arrêter / et forcer l'extinction en acceptant de fermer la session utilisateur ouverte ?

Je ne sais pas si je dois réouvrir un message ou continuer avec celui-ci. Merci d'avance.

Réponse 23 / 25

Utilisateur anonyme

salut pascal,
oui si tu pouvais ouvrir un autre poste....
des que je peux je rechercherais...

a+

PASCAL80 Messages postés 20 Statut Membre

Ok Régis

Merci encore mille fois pour ton intervention efficace !!

Réponse 24 / 25

PASCAL80 Messages postés 20 Statut Membre

Problème résolu par Régis59 par application de sa procédure de nettoyage (voir détail ci-dessus)

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 25 / 25

Utilisateur anonyme

D ACCORD

RAVI PR TOI

A+

Discussions similaires

supprimer tor.jack android

Tor.Jack.Malware

Softonic,est-ce un virus ?

je n'arrive pas a supprimer un virus sur mon téléphone

TokyVideo, est-ce un site fiable ? Vos avis

Discussions similaires

Newsletters