Sujet Précédent Sujet Suivant

[Virus] stealthSWs114.h!dll

Fermé
@lex51 Messages postés 21 Date d'inscription lundi 8 mai 2006 Statut Membre Dernière intervention 15 juillet 2007 - 8 mai 2006 à 22:01
@lex51 Messages postés 21 Date d'inscription lundi 8 mai 2006 Statut Membre Dernière intervention 15 juillet 2007 - 11 mai 2006 à 14:32
Salut à tous

Je suis apparemment infecté par le virus ou spyware stealthSWs114.h!dll et je n'arrive pas à l'enlever

Pourriez-vous m'aider à régler ce problème s'il vous plait!!

En espérant que quelqu'un puisse m'aider. Merci d'avance

6 réponses

Réponse 1 / 6
Utilisateur anonyme
8 mai 2006 à 22:01
Salut,

télécharges hijackthis:
Téléchargement de HijackThis

Installe le dans son propre dossier:
-cliques droit sur le bureau, nouveau dossier, installes-le dedans.
Lance le, cliques sur "do a system scan and save logfile"
Puis copies et colles le rapport ici.
0
@lex51 Messages postés 21 Date d'inscription lundi 8 mai 2006 Statut Membre Dernière intervention 15 juillet 2007
10 mai 2006 à 12:59
merci de pouvoir m'aider
voici le rapport:

Logfile of HijackThis v1.99.1
Scan saved at 12:36:11, on 10/05/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\cisvc.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Norman\Bin\Zanda.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Norman\bin\NJEEVES.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\atmclk.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Norman\bin\ZLH.EXE
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\devldr32.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Norman\Nvc\BIN\NIP.EXE
C:\Norman\Nvc\bin\nvcoas.exe
C:\Norman\Nvc\BIN\NVCSCHED.EXE
C:\Norman\Nvc\BIN\nipsvc.exe
C:\Norman\Nvc\bin\cclaw.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\DOSSAN~1\LOCALS~1\Temp\Répertoire temporaire 5 pour hijackthis.zip\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://searchbar.findthewebsiteyouneed.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://searchbar.findthewebsiteyouneed.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?cc=de&toHttps=1&redig=42E8C090C5164F069F1CB417402A2689
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/de-de
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL (file missing)
O1 - Hosts: 69.50.166.13 google.com
O1 - Hosts: 69.50.166.13 google.co.uk
O1 - Hosts: 69.50.166.13 google.ca
O1 - Hosts: 69.50.166.13 google.es
O1 - Hosts: 69.50.166.13 google.de
O1 - Hosts: 69.50.166.13 google.fr
O1 - Hosts: 69.50.166.13 google.com.au
O1 - Hosts: 69.50.166.12 yahoo.com
O2 - BHO: Nothing - {b0398eca-0bcd-4645-8261-5e9dc70248d0} - C:\WINDOWS\system32\hp452F.tmp
O3 - Toolbar: (no name) - {86227D9C-0EFE-4f8a-AA55-30386A3F5686} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [Norman ZANDA] C:\Norman\bin\ZLH.EXE /LOAD /SPLASH
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\PROGRA~1\MESSEN~1\msmsgs.exe" /background
O4 - Global Startup: Kaspersky Anti-Hacker.lnk = C:\Program Files\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\ADOBE\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{BDDA8434-CB8E-4549-92CB-C0539A86444D}: NameServer = 86.64.145.140 84.103.237.140
O18 - Protocol: bw+0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: Norman API-hooking helper (NipSvc) - Unknown owner - C:\Norman\Nvc\BIN\nipsvc.exe
O23 - Service: Norman NJeeves - Unknown owner - C:\Norman\bin\NJEEVES.EXE
O23 - Service: Norman ZANDA - Unknown owner - C:\Norman\Bin\Zanda.exe
O23 - Service: Norman Virus Control on-access component (nvcoas) - Norman ASA - C:\Norman\Nvc\bin\nvcoas.exe
O23 - Service: Norman Virus Control Scheduler (NVCScheduler) - Norman Data Defense Systems - C:\Norman\Nvc\BIN\NVCSCHED.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
0
Réponse 2 / 6
@lex51 Messages postés 21 Date d'inscription lundi 8 mai 2006 Statut Membre Dernière intervention 15 juillet 2007
10 mai 2006 à 12:37
merci bcp de m'aider
voilci le rapport hijackthis:

Logfile of HijackThis v1.99.1
Scan saved at 12:36:11, on 10/05/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\cisvc.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Norman\Bin\Zanda.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Norman\bin\NJEEVES.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\atmclk.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Norman\bin\ZLH.EXE
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\devldr32.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Norman\Nvc\BIN\NIP.EXE
C:\Norman\Nvc\bin\nvcoas.exe
C:\Norman\Nvc\BIN\NVCSCHED.EXE
C:\Norman\Nvc\BIN\nipsvc.exe
C:\Norman\Nvc\bin\cclaw.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\DOSSAN~1\LOCALS~1\Temp\Répertoire temporaire 5 pour hijackthis.zip\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://searchbar.findthewebsiteyouneed.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://searchbar.findthewebsiteyouneed.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?cc=de&toHttps=1&redig=42E8C090C5164F069F1CB417402A2689
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/de-de
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL (file missing)
O1 - Hosts: 69.50.166.13 google.com
O1 - Hosts: 69.50.166.13 google.co.uk
O1 - Hosts: 69.50.166.13 google.ca
O1 - Hosts: 69.50.166.13 google.es
O1 - Hosts: 69.50.166.13 google.de
O1 - Hosts: 69.50.166.13 google.fr
O1 - Hosts: 69.50.166.13 google.com.au
O1 - Hosts: 69.50.166.12 yahoo.com
O2 - BHO: Nothing - {b0398eca-0bcd-4645-8261-5e9dc70248d0} - C:\WINDOWS\system32\hp452F.tmp
O3 - Toolbar: (no name) - {86227D9C-0EFE-4f8a-AA55-30386A3F5686} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [Norman ZANDA] C:\Norman\bin\ZLH.EXE /LOAD /SPLASH
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\PROGRA~1\MESSEN~1\msmsgs.exe" /background
O4 - Global Startup: Kaspersky Anti-Hacker.lnk = C:\Program Files\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\ADOBE\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{BDDA8434-CB8E-4549-92CB-C0539A86444D}: NameServer = 86.64.145.140 84.103.237.140
O18 - Protocol: bw+0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: Norman API-hooking helper (NipSvc) - Unknown owner - C:\Norman\Nvc\BIN\nipsvc.exe
O23 - Service: Norman NJeeves - Unknown owner - C:\Norman\bin\NJEEVES.EXE
O23 - Service: Norman ZANDA - Unknown owner - C:\Norman\Bin\Zanda.exe
O23 - Service: Norman Virus Control on-access component (nvcoas) - Norman ASA - C:\Norman\Nvc\bin\nvcoas.exe
O23 - Service: Norman Virus Control Scheduler (NVCScheduler) - Norman Data Defense Systems - C:\Norman\Nvc\BIN\NVCSCHED.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
0
Utilisateur anonyme
10 mai 2006 à 12:44
Relance HijackThis, choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked"

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://searchbar.findthewebsiteyouneed.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://searchbar.findthewebsiteyouneed.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL (file missing)
O1 - Hosts: 69.50.166.13 google.com
O1 - Hosts: 69.50.166.13 google.co.uk
O1 - Hosts: 69.50.166.13 google.ca
O1 - Hosts: 69.50.166.13 google.es
O1 - Hosts: 69.50.166.13 google.de
O1 - Hosts: 69.50.166.13 google.fr
O1 - Hosts: 69.50.166.13 google.com.au
O1 - Hosts: 69.50.166.12 yahoo.com
O2 - BHO: Nothing - {b0398eca-0bcd-4645-8261-5e9dc70248d0} - C:\WINDOWS\system32\hp452F.tmp
O3 - Toolbar: (no name) - {86227D9C-0EFE-4f8a-AA55-30386A3F5686} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\PROGRA~1\MESSEN~1\msmsgs.exe" /background
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\ADOBE\Acrobat 7.0\Reader\reader_sl.exe
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: bw+0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll


Clique sur demarrer, poste de travail, C:, program files, cherche et supprime ce dossier:

MyWebSearch


Clique sur demarrer, rechercher, cherche et supprime ce fichier:

hp452F.tmp

si un fichier persiste lors de la suppression fais ceci:
-Redemarres ton pc, dès l'allumage de celui ci tapotes la touche f8, à l'ecran qui va apparaitre choisis "mode sans echec" attends un peu.. puis vas supprimer les fichiers/dossiers, vides ta corbeille et redemarres normalement


Fait ce nettoyage:

¤Telecharges et installes ceci, dans la colonne de gauche cliques sur "erreurs" coches toutes les cases, puis cliques en bas sur "chercher des erreurs" une fois finit, cliques sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs

CCleaner:
Ccleaner

¤Relance Ccleaner ,vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis cliques sur "lancer le nettoyage"


Puis:

Fait ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X, pour le faire fonctionner,
une fois qu'il a terminé colle le rapport ici stp

https://www.bitdefender.com/toolbox/
0
Réponse 3 / 6
^^Marie^^ Messages postés 113929 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 274
10 mai 2006 à 12:50
Salut,

Je te donne les lignes à fixer que je connais, mais j'ai l'impression qu'il y en a d'autres mais attend l'avis d'un pro ...

En attendant :

Relance HijackThis, choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked"

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://searchbar.findthewebsiteyouneed.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://searchbar.findthewebsiteyouneed.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com

O1 - Hosts: 69.50.166.13 google.com
O1 - Hosts: 69.50.166.13 google.co.uk
O1 - Hosts: 69.50.166.13 google.ca
O1 - Hosts: 69.50.166.13 google.es
O1 - Hosts: 69.50.166.13 google.de
O1 - Hosts: 69.50.166.13 google.fr
O1 - Hosts: 69.50.166.13 google.com.au
O1 - Hosts: 69.50.166.12 yahoo.com

O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: bw+0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {DB6C3701-EC88-4388-95E9-5FBE1EFE610D} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll


Refais un HT

A suivre............
0
Réponse 4 / 6
^^Marie^^ Messages postés 113929 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 274
10 mai 2006 à 12:51
Hé !! Hé!!!!!
0
Utilisateur anonyme
10 mai 2006 à 13:09
lol :O ... tu sera bientot le maillon fort :$
0
@lex51 Messages postés 21 Date d'inscription lundi 8 mai 2006 Statut Membre Dernière intervention 15 juillet 2007 > Utilisateur anonyme
10 mai 2006 à 17:46
voici le rapport de bitdefender:
BitDefender Online Scanner



Scan report generated at: Wed, May 10, 2006 - 16:44:42





Scan path: A:\;C:\;D:\;E:\;F:\;G:\;







Statistics

Time
02:44:50

Files
348724

Folders
4733

Boot Sectors
2

Archives
7676

Packed Files
53476




Results

Identified Viruses
7

Infected Files
10

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
8




Engines Info

Virus Definitions
374256

Engine build
AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)

Scan plugins
13

Archive plugins
39

Unpack plugins
4

E-mail plugins
6

System plugins
1




Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions


Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes




Scanned File
Status

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP441\A0459173.exe
Infected with: Dropped:Trojan.Puper.IQ

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP441\A0459173.exe
Disinfection failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP441\A0459173.exe
Delete failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459212.exe
Infected with: Trojan.Downloader.VB.LT

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459212.exe
Disinfection failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459212.exe
Deleted

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459214.exe
Infected with: Trojan.Downloader.VB.LX

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459214.exe
Disinfection failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459214.exe
Deleted

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459216.exe
Infected with: Trojan.Downloader.VB.LX

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459216.exe
Disinfection failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459216.exe
Deleted

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459217.exe
Infected with: Trojan.Downloader.VB.LX

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459217.exe
Disinfection failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459217.exe
Deleted

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459221.dll
Infected with: Trojan.FakeAlert.CH

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459221.dll
Disinfection failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459221.dll
Deleted

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459222.exe
Infected with: Trojan.Downloader.VB.LX

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459222.exe
Disinfection failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459222.exe
Deleted

C:\WINDOWS\system32\1024\ld7065.tmp
Infected with: Dropped:Trojan.FakeAlert.CH

C:\WINDOWS\system32\1024\ld7065.tmp
Disinfection failed

C:\WINDOWS\system32\1024\ld7065.tmp
Deleted

C:\WINDOWS\system32\atmclk.exe
Infected with: Trojan.Downloader.Zlob.KF

C:\WINDOWS\system32\atmclk.exe
Disinfection failed

C:\WINDOWS\system32\atmclk.exe
Delete failed

C:\WINDOWS\system32\ldB0ED.tmp
Infected with: Trojan.Downloader.Zlob.NL

C:\WINDOWS\system32\ldB0ED.tmp
Disinfection failed

C:\WINDOWS\system32\ldB0ED.tmp
Deleted
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 6
@lex51 Messages postés 21 Date d'inscription lundi 8 mai 2006 Statut Membre Dernière intervention 15 juillet 2007
10 mai 2006 à 17:42
voici le rapport de bitdefender:
BitDefender Online Scanner



Scan report generated at: Wed, May 10, 2006 - 16:44:42





Scan path: A:\;C:\;D:\;E:\;F:\;G:\;







Statistics

Time
02:44:50

Files
348724

Folders
4733

Boot Sectors
2

Archives
7676

Packed Files
53476




Results

Identified Viruses
7

Infected Files
10

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
8




Engines Info

Virus Definitions
374256

Engine build
AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)

Scan plugins
13

Archive plugins
39

Unpack plugins
4

E-mail plugins
6

System plugins
1




Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions


Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes




Scanned File
Status

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP441\A0459173.exe
Infected with: Dropped:Trojan.Puper.IQ

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP441\A0459173.exe
Disinfection failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP441\A0459173.exe
Delete failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459212.exe
Infected with: Trojan.Downloader.VB.LT

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459212.exe
Disinfection failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459212.exe
Deleted

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459214.exe
Infected with: Trojan.Downloader.VB.LX

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459214.exe
Disinfection failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459214.exe
Deleted

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459216.exe
Infected with: Trojan.Downloader.VB.LX

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459216.exe
Disinfection failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459216.exe
Deleted

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459217.exe
Infected with: Trojan.Downloader.VB.LX

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459217.exe
Disinfection failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459217.exe
Deleted

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459221.dll
Infected with: Trojan.FakeAlert.CH

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459221.dll
Disinfection failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459221.dll
Deleted

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459222.exe
Infected with: Trojan.Downloader.VB.LX

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459222.exe
Disinfection failed

C:\System Volume Information\_restore{6F57FCE7-7437-4141-9EB8-3282FFB07DB9}\RP442\A0459222.exe
Deleted

C:\WINDOWS\system32\1024\ld7065.tmp
Infected with: Dropped:Trojan.FakeAlert.CH

C:\WINDOWS\system32\1024\ld7065.tmp
Disinfection failed

C:\WINDOWS\system32\1024\ld7065.tmp
Deleted

C:\WINDOWS\system32\atmclk.exe
Infected with: Trojan.Downloader.Zlob.KF

C:\WINDOWS\system32\atmclk.exe
Disinfection failed

C:\WINDOWS\system32\atmclk.exe
Delete failed

C:\WINDOWS\system32\ldB0ED.tmp
Infected with: Trojan.Downloader.Zlob.NL

C:\WINDOWS\system32\ldB0ED.tmp
Disinfection failed

C:\WINDOWS\system32\ldB0ED.tmp
Deleted
0
Utilisateur anonyme
10 mai 2006 à 18:21
Alors ceci C:\System Volume Information\_restore indique que ta restauration du systeme est infecté.Nous allons Tout supprimer et créer un point propre.

Cliques sur demarrer, cliques droit sur poste de travail, propriétés, onglet "restauration du systeme"
-coches la case, puis cliques sur "appliquer"
-decoches la case et cliques sur "appliquer" puis "ok".

Maintenant, que l'ont à effacés les point infectés, nous allons créer un point propre:

Cliques sur demarrer, tout les programmes, accessoires, outils systemes, restauration du systeme, choisis "creer un point de restauration" nommes le " ccm" par exemple, cliques sur "creer" puis "ok".


Puis remet un rapport hijackthis
0
@lex51 Messages postés 21 Date d'inscription lundi 8 mai 2006 Statut Membre Dernière intervention 15 juillet 2007 > Utilisateur anonyme
10 mai 2006 à 20:05
voici le rapport hijackthis:
Logfile of HijackThis v1.99.1
Scan saved at 20:04:23, on 10/05/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\cisvc.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Norman\Bin\Zanda.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Norman\bin\NJEEVES.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\atmclk.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Norman\bin\ZLH.EXE
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\devldr32.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Norman\Nvc\BIN\NIP.EXE
C:\Norman\Nvc\bin\nvcoas.exe
C:\Norman\Nvc\BIN\NVCSCHED.EXE
C:\Norman\Nvc\BIN\nipsvc.exe
C:\Norman\Nvc\bin\cclaw.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\DOCUME~1\DOSSAN~1\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?cc=de&toHttps=1&redig=42E8C090C5164F069F1CB417402A2689
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/de-de
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [Norman ZANDA] C:\Norman\bin\ZLH.EXE /LOAD /SPLASH
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Kaspersky Anti-Hacker.lnk = C:\Program Files\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{BDDA8434-CB8E-4549-92CB-C0539A86444D}: NameServer = 86.64.145.140 84.103.237.140
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: Norman API-hooking helper (NipSvc) - Unknown owner - C:\Norman\Nvc\BIN\nipsvc.exe
O23 - Service: Norman NJeeves - Unknown owner - C:\Norman\bin\NJEEVES.EXE
O23 - Service: Norman ZANDA - Unknown owner - C:\Norman\Bin\Zanda.exe
O23 - Service: Norman Virus Control on-access component (nvcoas) - Norman ASA - C:\Norman\Nvc\bin\nvcoas.exe
O23 - Service: Norman Virus Control Scheduler (NVCScheduler) - Norman Data Defense Systems - C:\Norman\Nvc\BIN\NVCSCHED.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
0
Utilisateur anonyme > @lex51 Messages postés 21 Date d'inscription lundi 8 mai 2006 Statut Membre Dernière intervention 15 juillet 2007
11 mai 2006 à 03:10
ça me semble propre mais..

Telecharge puis mets à jour ce logiciel, et fait un scan complet de ton systeme, puis mets tous les fichiers qu'il te trouvera en quarantaine en utilisant "change action"

spycatcher express free
http://download.tenebril.com/pub/bin/spycatcher-express.exe
0
@lex51 Messages postés 21 Date d'inscription lundi 8 mai 2006 Statut Membre Dernière intervention 15 juillet 2007 > Utilisateur anonyme
11 mai 2006 à 06:49
re; merci de m'avoir aider, mais il me reste un petit soucis a reglé encore.
lorsque je me connecte a i,ternet un triangle jaune avec un point d'exclamation s'ouvre en bas a coté de l'heure avec un message dissant : urgent system message: virus!" et il ouvre plein de page internet de la pub pour des antivirus . si vous pourriez m'aidez.merci par avance
0
Utilisateur anonyme > @lex51 Messages postés 21 Date d'inscription lundi 8 mai 2006 Statut Membre Dernière intervention 15 juillet 2007
11 mai 2006 à 07:07
fait ça:

- Ouvre HijackThis
Clique sur Do a scan and save log file.
Ouvre le log avec le Bloc-Note
Colle le rapport ici (edition / copier sur le bloc-note puis Clic droit / Edition / coller dans ton message ici)*


puis ça:

télécharge lopxp;
http://pageperso.aol.fr/balltrap34/lopxp.zip

dézippe-le sur ton bureau puis double-clique sur le fichier lopxp.bat
quand il a terminé, un rapport s'ouvre : poste-le
0
Réponse 6 / 6
@lex51 Messages postés 21 Date d'inscription lundi 8 mai 2006 Statut Membre Dernière intervention 15 juillet 2007
11 mai 2006 à 14:32
voici le rapport lopxp:

apport fait à 14:31:15,88 le 11/05/2006

Le volume dans le lecteur C s'appelle HDD
Le num‚ro de s‚rie du volume est B8EE-31B2

R‚pertoire de C:\Documents and Settings\All Users\Application Data

11/05/2006 06:45 <REP> Tenebril
20/03/2006 11:10 <REP> Ulead Systems
22/12/2005 16:20 <REP> Adobe
25/04/2005 21:23 <REP> Kaspersky Lab
25/04/2005 21:18 <REP> Avg7
05/03/2005 13:30 <REP> Ciel
24/02/2005 13:20 <REP> MSN6
23/02/2005 15:20 <REP> Hewlett-Packard
23/02/2005 14:42 1604 hpzinstall.log
21/02/2005 21:54 62 desktop.ini
21/02/2005 21:54 <REP> Microsoft
21/02/2005 21:54 <REP> .
21/02/2005 21:54 <REP> ..
2 fichier(s) 1666 octets
11 R‚p(s) 3999952896 octets libres
Le volume dans le lecteur C s'appelle HDD
Le num‚ro de s‚rie du volume est B8EE-31B2

R‚pertoire de C:\Documents and Settings\Default User\Application Data

21/02/2005 21:54 62 desktop.ini
21/02/2005 21:54 <REP> ..
21/02/2005 21:54 <REP> Microsoft
21/02/2005 21:54 <REP> .
1 fichier(s) 62 octets
3 R‚p(s) 3999952384 octets libres
Le volume dans le lecteur C s'appelle HDD
Le num‚ro de s‚rie du volume est B8EE-31B2

R‚pertoire de C:\Documents and Settings\Dos Santos\Application Data

11/05/2006 07:07 <REP> Tenebril
20/03/2006 12:02 <REP> Ulead Systems
05/11/2005 14:58 <REP> Azureus
19/10/2005 17:05 11264 CDRusersDB.v12
31/07/2005 15:49 49264 GDIPFONTCACHEV1.DAT
22/07/2005 12:01 <REP> Sun
17/07/2005 17:01 <REP> Visicom Media
28/05/2005 11:52 <REP> AdobeUM
28/05/2005 11:50 <REP> Adobe
17/05/2005 20:32 <REP> .ABC 3.01
16/04/2005 19:49 <REP> Ahead
16/04/2005 16:53 <REP> .bittorrent
16/03/2005 17:37 <REP> Messenger2
12/03/2005 16:13 <REP> Real
08/03/2005 20:31 <REP> FotoWire
03/03/2005 21:05 <REP> Help
26/02/2005 14:51 <REP> Macromedia
24/02/2005 13:20 <REP> MSN6
21/02/2005 22:25 <REP> Identities
21/02/2005 22:25 62 desktop.ini
21/02/2005 22:25 <REP> ..
21/02/2005 22:25 <REP> .
21/02/2005 22:25 <REP> Microsoft
3 fichier(s) 60590 octets
20 R‚p(s) 3999950848 octets libres
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks

Le volume dans le lecteur C s'appelle HDD
Le num‚ro de s‚rie du volume est B8EE-31B2

R‚pertoire de C:\WINDOWS\Tasks

21/02/2005 22:15 6 SA.DAT
21/02/2005 22:11 65 desktop.ini
21/02/2005 22:11 <REP> ..
21/02/2005 22:11 <REP> .
2 fichier(s) 71 octets
2 R‚p(s) 3ÿ999ÿ931ÿ392 octets libres

******************************************
Recherche dans Program files

Le dossier C:\Program Files\C2Media n'existe pas

*************** Fin du rapport ****************
0

Discussions similaires

Dimensions L x l x H : comment lire ces infos ?
Miss-Curieuse -
valou -

8 réponses
Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
XINPUT1_3.dll manquant (missing)
Maxirugue -
dan -

39 réponses
msvcr110.dll manquant sous Windows 10
Salles33 -
Unmecquiabiengaleirer -

7 réponses
Windows defender: avertissement de sécurité
surfinia -
Tchoumi -

20 réponses