Sujet Précédent Sujet Suivant

Virus win32agent 078...

Résolu/Fermé
gazouz Messages postés 17 Date d'inscription vendredi 12 mai 2006 Statut Membre Dernière intervention 13 avril 2008 - 12 mai 2006 à 17:18
 Utilisateur anonyme - 12 mai 2006 à 21:44
bonjour
j ai besoin de votre aide car avast est en alerte toutes les 5 minutes.Pouvez vous m'aider svp?

j ai installé hijackthis et voici le rapport :


Logfile of HijackThis v1.99.1
Scan saved at 16:58:55, on 12/05/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\PHILIP~1\VProperty.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Druide\Antidote\Antidote\Gestionnaire Antidote.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Opera\Opera.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Documents and Settings\gazouz\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.diffuz.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: localhost 127.0.0.1
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [nTrayFw] C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [ToUcamVProperty] C:\PROGRA~1\PHILIP~1\VProperty.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [dmuls.exe] C:\WINDOWS\system32\dmuls.exe
O4 - HKLM\..\Run: [hgqhp.exe] C:\WINDOWS\system32\hgqhp.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] C:\Program Files\Druide\Antidote\Antidote\Gestionnaire Antidote.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [FreeRAM XP] "C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe" -win
O4 - Global Startup: Excentrix.lnk = C:\WINDOWS\Excentrix\Excentrix.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O16 - DPF: fdjeux - https://www.fdjeux.net/classes/fdjeux.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/telecharger.php?id=2&version=
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.girafoto.fr/uploaders/ImageUploader3.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{10B4768E-3854-4732-9A15-FDE61F482608}: NameServer = 85.255.115.93,85.255.112.14
O17 - HKLM\System\CCS\Services\Tcpip\..\{19CBFCA6-2345-4D69-B328-79930DE45C9A}: NameServer = 85.255.115.93,85.255.112.14
O17 - HKLM\System\CCS\Services\Tcpip\..\{6CE65BC1-00DA-40CD-A3AB-8E6196D8B9B6}: NameServer = 85.255.115.93,85.255.112.14
O17 - HKLM\System\CCS\Services\Tcpip\..\{E175A818-80D8-4938-B075-4A61E0E27E04}: NameServer = 85.255.115.93,85.255.112.14
O17 - HKLM\System\CCS\Services\Tcpip\..\{E976CA71-FD05-42A8-9B69-25788CAFCB18}: NameServer = 85.255.115.93,85.255.112.14
O17 - HKLM\System\CS1\Services\Tcpip\..\{10B4768E-3854-4732-9A15-FDE61F482608}: NameServer = 85.255.115.93,85.255.112.14
O17 - HKLM\System\CS2\Services\Tcpip\..\{10B4768E-3854-4732-9A15-FDE61F482608}: NameServer = 85.255.115.93,85.255.112.14
O18 - Protocol: bw+0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: app_filter - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe" -k runservice (file missing)
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
A voir également:

7 réponses

Réponse 1 / 7
Utilisateur anonyme
12 mai 2006 à 17:29
Salut,

Relance HijackThis, choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked"

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [dmuls.exe] C:\WINDOWS\system32\dmuls.exe
O4 - HKLM\..\Run: [hgqhp.exe] C:\WINDOWS\system32\hgqhp.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O16 - DPF: fdjeux - https://www.fdjeux.net/classes/fdjeux.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/telecharger.php?id=2&version=
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.girafoto.fr/uploaders/ImageUploader3.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{10B4768E-3854-4732-9A15-FDE61F482608}: NameServer = 85.255.115.93,85.255.112.14
O17 - HKLM\System\CCS\Services\Tcpip\..\{19CBFCA6-2345-4D69-B328-79930DE45C9A}: NameServer = 85.255.115.93,85.255.112.14
O17 - HKLM\System\CCS\Services\Tcpip\..\{6CE65BC1-00DA-40CD-A3AB-8E6196D8B9B6}: NameServer = 85.255.115.93,85.255.112.14
O17 - HKLM\System\CCS\Services\Tcpip\..\{E175A818-80D8-4938-B075-4A61E0E27E04}: NameServer = 85.255.115.93,85.255.112.14
O17 - HKLM\System\CCS\Services\Tcpip\..\{E976CA71-FD05-42A8-9B69-25788CAFCB18}: NameServer = 85.255.115.93,85.255.112.14
O17 - HKLM\System\CS1\Services\Tcpip\..\{10B4768E-3854-4732-9A15-FDE61F482608}: NameServer = 85.255.115.93,85.255.112.14
O17 - HKLM\System\CS2\Services\Tcpip\..\{10B4768E-3854-4732-9A15-FDE61F482608}: NameServer = 85.255.115.93,85.255.112.14
O18 - Protocol: bw+0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {404FEC12-2932-4A6F-964D-3E084151A771} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll


Clique sur demarrer, rechercher, cherche et supprime ces fichiers:

dmuls.exe
hgqhp.exe

si un fichier persiste lors de la suppression fais ceci:
-Redemarres ton pc, dès l'allumage de celui ci tapotes la touche f8, à l'ecran qui va apparaitre choisis "mode sans echec" attends un peu.. puis vas supprimer les fichiers/dossiers, vides ta corbeille et redemarres normalement



fait ce nettoyage:

¤Telecharges et installes ceci, dans la colonne de gauche cliques sur "erreurs" coches toutes les cases, puis cliques en bas sur "chercher des erreurs" une fois finit, cliques sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs

CCleaner:
Ccleaner

¤Relance Ccleaner ,vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis cliques sur "lancer le nettoyage"


Installe ce pare-feu pour te proteger des ataques du net:(gratuit je precise)

Kerio:
Pare-feu Kerio
-tutoriel: pour configurer et comprendre Kerio
https://www.vulgarisation-informatique.com/kerio.php


Puis fait ça:

Telecharge, installe puis mets à jour ce logiciel, une fois que c'est fait, fais un scan complet de ton systeme et colle le rapport ici avec un nouveau rapport hijackthis
Ewido:
Ewido Security Suite
0
gazouz Messages postés 17 Date d'inscription vendredi 12 mai 2006 Statut Membre Dernière intervention 13 avril 2008
12 mai 2006 à 17:34
j appique tes conseil et je vous recontacte....merci
0
Réponse 2 / 7
gazouz Messages postés 17 Date d'inscription vendredi 12 mai 2006 Statut Membre Dernière intervention 13 avril 2008
12 mai 2006 à 17:51
Logfile of HijackThis v1.99.1
Scan saved at 17:50:00, on 12/05/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\PHILIP~1\VProperty.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Druide\Antidote\Antidote\Gestionnaire Antidote.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\gazouz\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.diffuz.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: localhost 127.0.0.1
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [nTrayFw] C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [ToUcamVProperty] C:\PROGRA~1\PHILIP~1\VProperty.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [hgqhp.exe] C:\WINDOWS\system32\hgqhp.exe
O4 - HKLM\..\Run: [dmuls.exe] C:\WINDOWS\system32\dmuls.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] C:\Program Files\Druide\Antidote\Antidote\Gestionnaire Antidote.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [FreeRAM XP] "C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe" -win
O4 - Global Startup: Excentrix.lnk = C:\WINDOWS\Excentrix\Excentrix.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O23 - Service: app_filter - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe" -k runservice (file missing)
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
0
Utilisateur anonyme
12 mai 2006 à 17:55
je vois pas Ewido n'y sont rapport

pas de Kerio

tu en es ou ?
0
Réponse 3 / 7
gazouz Messages postés 17 Date d'inscription vendredi 12 mai 2006 Statut Membre Dernière intervention 13 avril 2008
12 mai 2006 à 18:04
je men occupe
0
Réponse 4 / 7
gazouz Messages postés 17 Date d'inscription vendredi 12 mai 2006 Statut Membre Dernière intervention 13 avril 2008
12 mai 2006 à 18:38
Logfile of HijackThis v1.99.1
Scan saved at 18:37:53, on 12/05/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\PHILIP~1\VProperty.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Druide\Antidote\Antidote\Gestionnaire Antidote.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe
C:\WINDOWS\Excentrix\Excentrix.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\gazouz\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.diffuz.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: localhost 127.0.0.1
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [nTrayFw] C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [ToUcamVProperty] C:\PROGRA~1\PHILIP~1\VProperty.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [hgqhp.exe] C:\WINDOWS\system32\hgqhp.exe
O4 - HKLM\..\Run: [dmuls.exe] C:\WINDOWS\system32\dmuls.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] C:\Program Files\Druide\Antidote\Antidote\Gestionnaire Antidote.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [FreeRAM XP] "C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe" -win
O4 - Global Startup: Excentrix.lnk = C:\WINDOWS\Excentrix\Excentrix.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
O23 - Service: app_filter - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe" -k runservice (file missing)
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall 4\kpf4ss.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 7
gazouz Messages postés 17 Date d'inscription vendredi 12 mai 2006 Statut Membre Dernière intervention 13 avril 2008
12 mai 2006 à 18:44
impossible de mettre a jour ewido ,le scan avec ewido me donne un rapport vierge
0
Utilisateur anonyme
12 mai 2006 à 18:56
Fait ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X, pour le faire fonctionner,
une fois qu'il a terminé colle le rapport ici stp

https://www.bitdefender.com/toolbox/
0
Réponse 6 / 7
gazouz Messages postés 17 Date d'inscription vendredi 12 mai 2006 Statut Membre Dernière intervention 13 avril 2008
12 mai 2006 à 20:17
BitDefender Online Scanner





Scan report generated at: Fri, May 12, 2006 - 20:14:33







Scan path: A:\;C:\;D:\;E:\;F:\;G:\;H:\;











Statistics

Time

00:57:28

Files

558972

Folders

4743

Boot Sectors

6

Archives

7234

Packed Files

60426





Results

Identified Viruses

4

Infected Files

14

Suspect Files

0

Warnings

0

Disinfected

0

Deleted Files

14





Engines Info

Virus Definitions

374521

Engine build

AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)

Scan plugins

13

Archive plugins

40

Unpack plugins

4

E-mail plugins

6

System plugins

1





Scan Settings

First Action

Disinfect

Second Action

Delete

Heuristics

Yes

Enable Warnings

Yes

Scanned Extensions

*;

Exclude Extensions



Scan Emails

Yes

Scan Archives

Yes

Scan Packed

Yes

Scan Files

Yes

Scan Boot

Yes






Scanned File

Status

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0013311.exe

Infected with: Trojan.DNSChanger.R

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0013311.exe

Disinfection failed

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0013311.exe

Deleted

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0013338.exe

Infected with: Trojan.DNSChanger.R

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0013338.exe

Disinfection failed

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0013338.exe

Deleted

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0013347.exe

Infected with: Trojan.Downloader.Small.AOR

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0013347.exe

Disinfection failed

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0013347.exe

Deleted

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0013373.exe

Infected with: Trojan.DNSChanger.R

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0013373.exe

Disinfection failed

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0013373.exe

Deleted

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0014376.exe

Infected with: Trojan.DNSChanger.R

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0014376.exe

Disinfection failed

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0014376.exe

Deleted

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0014416.exe

Infected with: Trojan.DNSChanger.R

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0014416.exe

Disinfection failed

C:\System Volume Information\_restore{C224CCA1-567C-4587-BCFE-5CA23A78C5FD}\RP108\A0014416.exe

Deleted

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip=>BlackBox.class

Infected with: Java.Trojan.Exploit.Bytverify

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip=>BlackBox.class

Disinfection failed

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip=>BlackBox.class

Deleted

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip

Updated

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip=>VerifierBug.class

Infected with: Java.Trojan.Exploit.Bytverify.C

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip=>VerifierBug.class

Disinfection failed

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip=>VerifierBug.class

Deleted

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip

Updated

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip=>Dummy.class

Infected with: Java.Trojan.Exploit.Bytverify

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip=>Dummy.class

Disinfection failed

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip=>Dummy.class

Deleted

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip

Updated

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip=>Beyond.class

Infected with: Java.Trojan.Exploit.Bytverify.C

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip=>Beyond.class

Disinfection failed

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip=>Beyond.class

Deleted

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-2b7a6c44-3ee886e1.zip

Updated

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip=>BlackBox.class

Infected with: Java.Trojan.Exploit.Bytverify

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip=>BlackBox.class

Disinfection failed

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip=>BlackBox.class

Deleted

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip

Updated

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip=>VerifierBug.class

Infected with: Java.Trojan.Exploit.Bytverify.C

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip=>VerifierBug.class

Disinfection failed

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip=>VerifierBug.class

Deleted

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip

Updated

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip=>Dummy.class

Infected with: Java.Trojan.Exploit.Bytverify

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip=>Dummy.class

Disinfection failed

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip=>Dummy.class

Deleted

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip

Updated

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip=>Beyond.class

Infected with: Java.Trojan.Exploit.Bytverify.C

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip=>Beyond.class

Disinfection failed

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip=>Beyond.class

Deleted

F:\Documents and Settings\gazouz\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-568d769d-60ec3f9f.zip

Updated

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/default.htm=>(JAVASCRIPT 5)

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/external_win32.htm

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/external_win32.htm=>(JAVASCRIPT 2)

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/external_win32.htm=>(JAVASCRIPT 3)

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/external_win32.htm=>(JAVASCRIPT 4)

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/external_win32.htm=>(JAVASCRIPT 5)

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/external_win32.htm=>(JAVASCRIPT 6)

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/attribute.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/behavior.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/c++.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/collection.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/com.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/desktop.ico

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/dhtml.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/earglobe.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/event.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/face01.ico

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/globe.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/icons/author.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/icons/components.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/icons/workshop.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/jupglobe.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/marglobe.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/merglobe.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/method.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/mydocs.ico

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/nepglobe.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/pluglobe.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/prop_ro.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/prop_rw.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/satglobe.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/uraglobe.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/venglobe.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/workshop/graphics/xml-sm.gif

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/#WINDOWS

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/#IVB

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/$WWKeywordLinks/Property

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/$WWAssociativeLinks/BTree

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/$WWAssociativeLinks/Data

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/$WWAssociativeLinks/Map

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/$WWAssociativeLinks/Property

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/$OBJINST

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/#IDXHDR

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/#TOPICS

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/#URLTBL

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/#URLSTR

Clean

G:\OFFICE\ZC561402.CAB=>HTMLREF.CHM_1033=>/#STRINGS

Clean

G:\OFFICE\ZD561402.CAB

Clean

G:\OFFICE\ZD561402.CAB=>MSOLAP80.DLL

Clean

G:\OFFICE\ZD561402.CAB=>MSDMINE.RLL_1033

Clean

G:\OFFICE\ZD561402.CAB=>MSDMENG.DLL

Clean

G:\OFFICE\ZD561402.CAB=>MSDMINE.DLL

Clean

G:\OFFICE\ZD561402.CAB=>MSOLAP80.RLL_1033

Clean

G:\OFFICE\ZD561402.CAB=>OLAPUIR.RLL_1033

Clean

G:\OFFICE\ZD561402.CAB=>MSMDUN80.DLL

Clean

G:\OFFICE\ZD561402.CAB=>MSMDCB80.DLL_0001

Clean

G:\OFFICE\ZD561402.CAB=>MSMDGD80.DLL_0001

Clean

G:\OFFICE\ZD561402.CAB=>MSOLUI80.DLL_0001

Clean

G:\OFFICE\ZE561406.CAB

Clean

G:\OFFICE\ZE561406.CAB=>LSTVIEWS.INI_1033

Clean

G:\OFFICE\ZE561406.CAB=>LSTVIEWS.INI_1033=>(JAVASCRIPT 2)

Clean

G:\OFFICE\ZE561406.CAB=>NAVBARS.INI_1033

Clean

G:\OFFICE\ZE561406.CAB=>BARS.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>BRACKETS.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>BULTITL.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>COMMAS.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>COMPNT.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>DOTS.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>DRPDWN.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>HISTORY.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>HORZTITL.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>MOREDOTS.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>NUMTITL.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>PLNTITL.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>REPFORM1.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>REPFORM2.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>REPFORM3.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>SLASHES.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>TABLE.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>TABULAR.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>UNDRLINE.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>_2COLCMA.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>_2COLFRM.GIF_1033

Clean

G:\OFFICE\ZE561406.CAB=>FPDTC.DLL

Clean

G:\OFFICE\ZE561406.CAB=>FPCUTL.DLL

Clean

G:\OFFICE\ZF561402.CAB

Clean

G:\OFFICE\ZF561402.CAB=>ARIALN.TTF

Clean

G:\OFFICE\ZF561402.CAB=>ARIALNB.TTF

Clean

G:\OFFICE\ZF561402.CAB=>ARIALNBI.TTF

Clean

G:\OFFICE\ZF561402.CAB=>ARIALNI.TTF

Clean

G:\OFFICE\ZF561402.CAB=>ANTQUAB.TTF

Clean

G:\OFFICE\ZF561402.CAB=>ANTQUABI.TTF

Clean

G:\OFFICE\ZF561402.CAB=>ANTQUAI.TTF

Clean

G:\OFFICE\ZF561402.CAB=>BKANT.TTF

Clean

G:\OFFICE\ZF561402.CAB=>BOOKOS.TTF

Clean

G:\OFFICE\ZF561402.CAB=>BOOKOSB.TTF

Clean

G:\OFFICE\ZF561402.CAB=>BOOKOSBI.TTF

Clean

G:\OFFICE\ZF561402.CAB=>BOOKOSI.TTF

Clean

G:\OFFICE\ZF561402.CAB=>BRADHITC.TTF

Clean

G:\OFFICE\ZF561402.CAB=>GOTHIC.TTF

Clean

G:\OFFICE\ZF561402.CAB=>GOTHICB.TTF

Clean

G:\OFFICE\ZF561402.CAB=>GOTHICBI.TTF

Clean

G:\OFFICE\ZF561402.CAB=>GOTHICI.TTF

Clean

G:\OFFICE\ZF561402.CAB=>FREESCPT.TTF

Clean

G:\OFFICE\ZF561402.CAB=>FRSCRIPT.TTF

Clean

G:\OFFICE\ZF561402.CAB=>GARA.TTF

Clean

G:\OFFICE\ZF561402.CAB=>GARABD.TTF

Clean

G:\OFFICE\ZF561402.CAB=>GARAIT.TTF

Clean

G:\OFFICE\ZF561402.CAB=>JUICE___.TTF

Clean

G:\OFFICE\ZF561402.CAB=>ITCKRIST.TTF

Clean

G:\OFFICE\ZF561402.CAB=>LHANDW.TTF

Clean

G:\OFFICE\ZF561402.CAB=>MISTRAL.TTF

Clean

G:\OFFICE\ZF561402.CAB=>MTCORSVA.TTF

Clean

G:\OFFICE\ZF561402.CAB=>PAPYRUS.TTF

Clean

G:\OFFICE\ZF561402.CAB=>PRISTINA.TTF

Clean

G:\OFFICE\ZF561402.CAB=>BSSYM7.TTF

Clean

G:\OFFICE\ZF561402.CAB=>REFSAN.TTF

Clean

G:\OFFICE\ZF561402.CAB=>REFSPCL.TTF

Clean

G:\OFFICE\ZF561402.CAB=>TEMPSITC.TTF

Clean

G:\OFFICE\ZG561401.CAB

Clean

G:\OFFICE\ZG561401.CAB=>IEAWSDC.DLL

Clean

G:\OFFICE\ZH561403.CAB

Clean

G:\OFFICE\ZH561403.CAB=>GIFIMP32.FLT_1033

Clean

G:\OFFICE\ZH561403.CAB=>MS.GIF_1033

Clean

G:\OFFICE\ZH561403.CAB=>JPEGIM32.FLT_1033

Clean

G:\OFFICE\ZH561403.CAB=>MS.JPG_1033

Clean

G:\OFFICE\ZH561403.CAB=>PICTIM32.FLT_1033

Clean

G:\OFFICE\ZH561403.CAB=>MS.PNG_1033

Clean

G:\OFFICE\ZH561403.CAB=>PNG32.FLT_1033

Clean

G:\OFFICE\ZH561403.CAB=>MS.WPG_1033

Clean

G:\OFFICE\ZH561403.CAB=>WPGIMP32.FLT_1033

Clean

G:\OFFICE\ZI561402.CAB

Clean

G:\OFFICE\ZI561402.CAB=>SMARTTAGINSTALL.EXE

Clean

G:\OFFICE\ZI561402.CAB=>IETAG.DLL

Clean

G:\OFFICE\ZI561402.CAB=>MSTAG.TLB

Clean

G:\OFFICE\ZI561402.CAB=>STINTL.DLL_1033

Clean

G:\OFFICE\ZJ561401.CAB

Clean

G:\OFFICE\ZJ561401.CAB=>MSOCF.DLL

Clean

G:\OFFICE\ZJ561401.CAB=>MSOCFU.DLL

Clean

G:\OFFICE\ZK561401.CAB

Clean
0
Utilisateur anonyme
12 mai 2006 à 20:20
quand même .. :-/

Fait ça:

Alors ceci C:\System Volume Information\_restore(voir rapport bitdefender) indique que ta restauration du systeme est infecté.Nous allons Tout supprimer et créer un point propre.

Cliques sur demarrer, cliques droit sur poste de travail, propriétés, onglet "restauration du systeme"
-coches la case, puis cliques sur "appliquer"
-decoches la case et cliques sur "appliquer" puis "ok".

Maintenant, que l'ont à effacés les point infectés, nous allons créer un point propre:

Cliques sur demarrer, tout les programmes, accessoires, outils systemes, restauration du systeme, choisis "creer un point de restauration" nommes le " ccm" par exemple, cliques sur "creer" puis "ok".


Puis fait cet autre scan en ligne pour etre sûr que c'est propre et colle le rapport ici stp

_Online Scanner
_Kaspersky Online Scanner
_My Computer

https://www.kaspersky.fr/downloads
0
gazouz Messages postés 17 Date d'inscription vendredi 12 mai 2006 Statut Membre Dernière intervention 13 avril 2008
12 mai 2006 à 21:19
kaspersky n'a rien trouver
0
Utilisateur anonyme > gazouz Messages postés 17 Date d'inscription vendredi 12 mai 2006 Statut Membre Dernière intervention 13 avril 2008
12 mai 2006 à 21:29
oki, donc c'est bon ;-)

A+++
0
Réponse 7 / 7
gazouz Messages postés 17 Date d'inscription vendredi 12 mai 2006 Statut Membre Dernière intervention 13 avril 2008
12 mai 2006 à 21:31
merci pour le service rendu.....je ferai de la pub de ce site
a+++++
0
Utilisateur anonyme
12 mai 2006 à 21:44
De rien

bonne soirée

A++
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses