Aide pour nettoyage PC
Askatuna
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,
Je reviens dans ce forum parce vous m'avez bien aide!!! :-)
J'essai de nettoyer l'ordinateur d'un ami.
1.-Son ordinateur rame
2.- L'Outlook express ne marché plus, alors je l'ai installé thunderbird, maintenant il reçoit des messages mais il peut pas envoyer. Ahhh oui sur Explorer si on veut utiliser le courrier hotmail il marche pas non plus, on mets le login et mot de passe, enter ... et il reviens a la même page mais vide. Pour voir les messages sur Orange ne marche pas non plus il dit tjs je crois que ce pas le mot de passe, mais c'est bien écrit. Pour la page de Free on peut envoyer messages (il n'avait jamais utilisé sur son ordinateur)
3.- La pub porno intempestive s'ouvre...
Après un Ccleaner il n'as plus des erreurs ni temps. Bitdefender a effacé pas mal des choses J'ai refait un point de restauration après le ménage, mais la pub continue la, hotmail marche pas ni le courrier d'orange (ancien wanadoo cable).
4.- Aussi je pas reussi a mettre un message au forum parce "il faut permettre les cookies" j'ai pas retrouvé ;-(
Son rapport HIJACKTHIS est le suivante:
Logfile of HijackThis v1.99.1
Scan saved at 14:09:17, on 13/11/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\Wanadoo\autempspasse\Telecharger\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
https://www.sfr.fr/offres-numericable.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet
Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -
C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program
Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -
c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} -
C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program
files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition
Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash
/minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe"
/background
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter � la Liste � Imprimer -
res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program
Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program
Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Pr�visualiser - res://C:\Program
Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O16 - DPF: fdjeux - https://www.fdjeux.net/classes/fdjeux.cab
O16 - DPF: PackageHtmlCab - http://acces.blonde.com/package/PackageHtmlCab.CAB
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) -
http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {093F9CF8-0DE1-491C-95D5-5EC257BD4CA3} -
https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) -
http://download.ewido.net/ewidoOnlineScan.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) -
http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) -
http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {7DBFDA8E-D33B-11D4-9269-00600868E56E} -
http://www.alloticket.com/MicroPaiement/kit/WebInstall.dll
O16 - DPF: {8B3B8135-9DAA-40E7-8941-962795F9C1CB} -
https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {92ABACFE-EF6E-42C7-A824-D50A914B5B70} -
http://dx.mastacash.com/loader.cab
O16 - DPF: {B2B0AEDF-7CDF-4792-BB67-7654AD1E1B13} -
https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) -
http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {D62B5127-8D03-4175-BA71-E0041595DA4B} -
http://03.sharedsource.org/html/TriacomUD_1.0.0.1ie.cab?
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) -
http://messenger.zone.msn.com/binary/Chess.cab31267.cab
O16 - DPF: {E855A2D4-987E-4F3B-A51C-64D10A7E2479} (EPSImageControl Class) -
http://tools.ebayimg.com/eps/activex/EPSControl_v1-0-3-0.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) -
http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: bw+0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} -
C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} -
"C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} -
C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) -
Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA
GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - Unknown owner -
C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. -
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software -
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) -
Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program
Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
Stp aide moi à faire le ménage!!!
J'ai installé Kerio pour éviter la rentrée des indesirables... mais ils sont déjà dedans!!!
Merci,
Askatuna
Je reviens dans ce forum parce vous m'avez bien aide!!! :-)
J'essai de nettoyer l'ordinateur d'un ami.
1.-Son ordinateur rame
2.- L'Outlook express ne marché plus, alors je l'ai installé thunderbird, maintenant il reçoit des messages mais il peut pas envoyer. Ahhh oui sur Explorer si on veut utiliser le courrier hotmail il marche pas non plus, on mets le login et mot de passe, enter ... et il reviens a la même page mais vide. Pour voir les messages sur Orange ne marche pas non plus il dit tjs je crois que ce pas le mot de passe, mais c'est bien écrit. Pour la page de Free on peut envoyer messages (il n'avait jamais utilisé sur son ordinateur)
3.- La pub porno intempestive s'ouvre...
Après un Ccleaner il n'as plus des erreurs ni temps. Bitdefender a effacé pas mal des choses J'ai refait un point de restauration après le ménage, mais la pub continue la, hotmail marche pas ni le courrier d'orange (ancien wanadoo cable).
4.- Aussi je pas reussi a mettre un message au forum parce "il faut permettre les cookies" j'ai pas retrouvé ;-(
Son rapport HIJACKTHIS est le suivante:
Logfile of HijackThis v1.99.1
Scan saved at 14:09:17, on 13/11/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\Wanadoo\autempspasse\Telecharger\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
https://www.sfr.fr/offres-numericable.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet
Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -
C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program
Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -
c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} -
C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program
files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition
Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash
/minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe"
/background
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter � la Liste � Imprimer -
res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program
Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program
Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Pr�visualiser - res://C:\Program
Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O16 - DPF: fdjeux - https://www.fdjeux.net/classes/fdjeux.cab
O16 - DPF: PackageHtmlCab - http://acces.blonde.com/package/PackageHtmlCab.CAB
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) -
http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {093F9CF8-0DE1-491C-95D5-5EC257BD4CA3} -
https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) -
http://download.ewido.net/ewidoOnlineScan.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) -
http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) -
http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {7DBFDA8E-D33B-11D4-9269-00600868E56E} -
http://www.alloticket.com/MicroPaiement/kit/WebInstall.dll
O16 - DPF: {8B3B8135-9DAA-40E7-8941-962795F9C1CB} -
https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {92ABACFE-EF6E-42C7-A824-D50A914B5B70} -
http://dx.mastacash.com/loader.cab
O16 - DPF: {B2B0AEDF-7CDF-4792-BB67-7654AD1E1B13} -
https://www.afternic.com/domains/downloadv3.com
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) -
http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {D62B5127-8D03-4175-BA71-E0041595DA4B} -
http://03.sharedsource.org/html/TriacomUD_1.0.0.1ie.cab?
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) -
http://messenger.zone.msn.com/binary/Chess.cab31267.cab
O16 - DPF: {E855A2D4-987E-4F3B-A51C-64D10A7E2479} (EPSImageControl Class) -
http://tools.ebayimg.com/eps/activex/EPSControl_v1-0-3-0.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) -
http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: bw+0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} -
C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} - C:\Program
Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} -
"C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {B43DDB9A-9B91-4C1C-BB46-9BA88BD7019A} -
C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) -
Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA
GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - Unknown owner -
C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. -
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software -
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) -
Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program
Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
Stp aide moi à faire le ménage!!!
J'ai installé Kerio pour éviter la rentrée des indesirables... mais ils sont déjà dedans!!!
Merci,
Askatuna
A voir également:
- Aide pour nettoyage PC
- Nettoyage pc lent - Guide
- Nettoyage mac - Guide
- Zuma pour pc - Télécharger - Jeux vidéo
- Telecharger downloader pour pc - Télécharger - Téléchargement & Transfert
- Nettoyage de disque - Guide
5 réponses
Bonjour,
On ne doit pas aider aux amis que ne connaissent rien sur les ordinateurs? ;-(
Aucun reponse...
On ne doit pas aider aux amis que ne connaissent rien sur les ordinateurs? ;-(
Aucun reponse...
Ben moi c'est pareil, j'essaie de trouver de l'aide ici pour mon ordi... pas celui d'un ami... mais je n'arrive pas à avoir de réponses... C'est triste car je me sens totalement inutile face à mon ordi qui me mène par le bout du nez... Bon courage
Bonjour Boulepate62,
Merci pour ton conseil... des que je pase chez lui je poste le report.
Bonne journee,
Askatuna
Merci pour ton conseil... des que je pase chez lui je poste le report.
Bonne journee,
Askatuna
Bonjour boulepate62,
Voila le rapport de Blleta: c'est ça?
11/15/06 16:32:45 [Info]: BlackLight Engine 1.0.47 initialized
11/15/06 16:32:45 [Info]: OS: 5.1 build 2600 (Service Pack 2)
11/15/06 16:32:45 [Note]: 7019 4
11/15/06 16:32:45 [Note]: 7005 0
11/15/06 16:32:52 [Note]: 7006 0
11/15/06 16:32:52 [Note]: 7011 1272
11/15/06 16:32:52 [Note]: 7026 0
11/15/06 16:32:52 [Note]: 7026 0
11/15/06 16:32:52 [Note]: 7024 3
11/15/06 16:32:52 [Info]: Hidden process: C:\windows\system32\rieasybkh.exe
11/15/06 16:32:52 [Note]: FSRAW library version 1.7.1020
11/15/06 16:34:33 [Info]: Hidden file: c:\WINDOWS\Prefetch\RIEASYBKH.EXE-33E6B7EB.pf
11/15/06 16:34:33 [Note]: 10002 1
11/15/06 16:34:50 [Info]: Hidden file: c:\WINDOWS\system32\msclock32.dll
11/15/06 16:34:50 [Note]: 10002 1
11/15/06 16:34:55 [Info]: Hidden file: c:\WINDOWS\system32\msplock32.dll
11/15/06 16:34:55 [Note]: 10002 1
11/15/06 16:35:00 [Info]: Hidden file: c:\WINDOWS\system32\rieasybkh.dat
11/15/06 16:35:00 [Note]: 10002 1
11/15/06 16:35:01 [Info]: Hidden file: C:\windows\system32\rieasybkh.exe
11/15/06 16:35:01 [Note]: 10002 1
11/15/06 16:35:01 [Info]: Hidden file: c:\WINDOWS\system32\rieasybkh_nav.dat
11/15/06 16:35:01 [Note]: 10002 1
11/15/06 16:35:01 [Info]: Hidden file: c:\WINDOWS\system32\rieasybkh_navps.dat
11/15/06 16:35:01 [Note]: 10002 1
11/15/06 16:35:02 [Info]: Hidden file: c:\WINDOWS\system32\runonce.exe
11/15/06 16:35:02 [Note]: 10002 2
11/15/06 16:35:15 [Note]: 7006 0
11/15/06 16:35:15 [Note]: 7011 1272
11/15/06 16:35:16 [Note]: 7026 0
11/15/06 16:35:16 [Note]: 7026 0
11/15/06 16:35:16 [Note]: 7024 3
11/15/06 16:35:16 [Info]: Hidden process: C:\windows\system32\rieasybkh.exe
11/15/06 16:35:16 [Note]: FSRAW library version 1.7.1020
11/15/06 16:36:46 [Info]: Hidden file: c:\WINDOWS\Prefetch\RIEASYBKH.EXE-33E6B7EB.pf
11/15/06 16:36:46 [Note]: 10002 1
11/15/06 16:37:03 [Info]: Hidden file: c:\WINDOWS\system32\msclock32.dll
11/15/06 16:37:03 [Note]: 10002 1
11/15/06 16:37:08 [Info]: Hidden file: c:\WINDOWS\system32\msplock32.dll
11/15/06 16:37:08 [Note]: 10002 1
11/15/06 16:37:13 [Info]: Hidden file: c:\WINDOWS\system32\rieasybkh.dat
11/15/06 16:37:13 [Note]: 10002 1
11/15/06 16:37:14 [Info]: Hidden file: C:\windows\system32\rieasybkh.exe
11/15/06 16:37:14 [Note]: 10002 1
11/15/06 16:37:14 [Info]: Hidden file: c:\WINDOWS\system32\rieasybkh_nav.dat
11/15/06 16:37:14 [Note]: 10002 1
11/15/06 16:37:14 [Info]: Hidden file: c:\WINDOWS\system32\rieasybkh_navps.dat
11/15/06 16:37:14 [Note]: 10002 1
11/15/06 16:37:15 [Info]: Hidden file: c:\WINDOWS\system32\runonce.exe
11/15/06 16:37:15 [Note]: 10002 2
11/15/06 16:39:02 [Note]: 7007 0
J'ai vue un message dans l'ordinateur:
"Nouvelle mesage de securité a été detecté : le virus Serwab. Nous vous conseillons de télécharger une solution de securite pour eviter une autre infection."
Merci,
Askatuna
Voila le rapport de Blleta: c'est ça?
11/15/06 16:32:45 [Info]: BlackLight Engine 1.0.47 initialized
11/15/06 16:32:45 [Info]: OS: 5.1 build 2600 (Service Pack 2)
11/15/06 16:32:45 [Note]: 7019 4
11/15/06 16:32:45 [Note]: 7005 0
11/15/06 16:32:52 [Note]: 7006 0
11/15/06 16:32:52 [Note]: 7011 1272
11/15/06 16:32:52 [Note]: 7026 0
11/15/06 16:32:52 [Note]: 7026 0
11/15/06 16:32:52 [Note]: 7024 3
11/15/06 16:32:52 [Info]: Hidden process: C:\windows\system32\rieasybkh.exe
11/15/06 16:32:52 [Note]: FSRAW library version 1.7.1020
11/15/06 16:34:33 [Info]: Hidden file: c:\WINDOWS\Prefetch\RIEASYBKH.EXE-33E6B7EB.pf
11/15/06 16:34:33 [Note]: 10002 1
11/15/06 16:34:50 [Info]: Hidden file: c:\WINDOWS\system32\msclock32.dll
11/15/06 16:34:50 [Note]: 10002 1
11/15/06 16:34:55 [Info]: Hidden file: c:\WINDOWS\system32\msplock32.dll
11/15/06 16:34:55 [Note]: 10002 1
11/15/06 16:35:00 [Info]: Hidden file: c:\WINDOWS\system32\rieasybkh.dat
11/15/06 16:35:00 [Note]: 10002 1
11/15/06 16:35:01 [Info]: Hidden file: C:\windows\system32\rieasybkh.exe
11/15/06 16:35:01 [Note]: 10002 1
11/15/06 16:35:01 [Info]: Hidden file: c:\WINDOWS\system32\rieasybkh_nav.dat
11/15/06 16:35:01 [Note]: 10002 1
11/15/06 16:35:01 [Info]: Hidden file: c:\WINDOWS\system32\rieasybkh_navps.dat
11/15/06 16:35:01 [Note]: 10002 1
11/15/06 16:35:02 [Info]: Hidden file: c:\WINDOWS\system32\runonce.exe
11/15/06 16:35:02 [Note]: 10002 2
11/15/06 16:35:15 [Note]: 7006 0
11/15/06 16:35:15 [Note]: 7011 1272
11/15/06 16:35:16 [Note]: 7026 0
11/15/06 16:35:16 [Note]: 7026 0
11/15/06 16:35:16 [Note]: 7024 3
11/15/06 16:35:16 [Info]: Hidden process: C:\windows\system32\rieasybkh.exe
11/15/06 16:35:16 [Note]: FSRAW library version 1.7.1020
11/15/06 16:36:46 [Info]: Hidden file: c:\WINDOWS\Prefetch\RIEASYBKH.EXE-33E6B7EB.pf
11/15/06 16:36:46 [Note]: 10002 1
11/15/06 16:37:03 [Info]: Hidden file: c:\WINDOWS\system32\msclock32.dll
11/15/06 16:37:03 [Note]: 10002 1
11/15/06 16:37:08 [Info]: Hidden file: c:\WINDOWS\system32\msplock32.dll
11/15/06 16:37:08 [Note]: 10002 1
11/15/06 16:37:13 [Info]: Hidden file: c:\WINDOWS\system32\rieasybkh.dat
11/15/06 16:37:13 [Note]: 10002 1
11/15/06 16:37:14 [Info]: Hidden file: C:\windows\system32\rieasybkh.exe
11/15/06 16:37:14 [Note]: 10002 1
11/15/06 16:37:14 [Info]: Hidden file: c:\WINDOWS\system32\rieasybkh_nav.dat
11/15/06 16:37:14 [Note]: 10002 1
11/15/06 16:37:14 [Info]: Hidden file: c:\WINDOWS\system32\rieasybkh_navps.dat
11/15/06 16:37:14 [Note]: 10002 1
11/15/06 16:37:15 [Info]: Hidden file: c:\WINDOWS\system32\runonce.exe
11/15/06 16:37:15 [Note]: 10002 2
11/15/06 16:39:02 [Note]: 7007 0
J'ai vue un message dans l'ordinateur:
"Nouvelle mesage de securité a été detecté : le virus Serwab. Nous vous conseillons de télécharger une solution de securite pour eviter une autre infection."
Merci,
Askatuna
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Salut ;
Télécharge BruteForce Uninstaller ici:
http://www.merijn.org/files/bfu.zip
Créé un nouveau dossier sur le bureau par exemple, nomme le CCM, dezippe le fichier telechargé à l'interieur
Ensuite, télécharge EGDACCESS :
Fais un clic droit ici:
http://metallica.geekstogo.com/EGDACCESS.bfu et choisis "fichier" , "enregistrer sous" enregistre le sur le "bureau" puis mets le dans le dossier CCM que tu as créer, tu aura donc les deux fichiers BFU.exe et EGDACCESS.bfu à l'interieur de ce dossier CCM
----------
Lance "BruteForce Uninstaller" en cliquant sur BFU.exe
Clic sur le petit dossier jaune, et clique sur : EGDACCESS.bfu
Coches la case "Show log" after script ends
Clique sur Execute pour que le fix fasse son boulot
Attends que le message Complete script execution apparaîsse et clique sur OK.
Un rapport va s'afficher dans la fenetre du programme, copie et colle dans le bloc-notes, puis sauvegardes le.
Clique Exit pour fermer le programme BFU.
Ensuite, lance Blacklight en double cliquant sur blbeta.exe et accepte la licence.
Clique sur Scan pour lancer l'analyse.
Une fois fait, selectionnes chaques fichiers trouvés et clic sur "RENAME"
Puis valide.
Réponds oui aux messages d'avertissements et te demandant si tu autorises le reboot du pc.
Dès que le PC aura redémarrer, clique sur démarrer, rechercher, choisis "tous les fichiers et dossiers" dans les deux barres vide tu entre ceci: .ren
Puis lance la recherche il devrait te trouves des fichiers supprime les tous
Dès que c'est fait remet un rapport Blacklight stp
Télécharge SmitfraudFix (enregistre le sur le "bureau")
http://siri.urz.free.fr/Fix/SmitfraudFix.zip
Redémarres le PC en mode sans échec : tu tapotes sur la touche F8 de ton clavier (ou F5 ) et tu choisis le mode sans échec)
décompresse SmitfraudFix
Ouvre le dossier "SmitfraudFix" et double clic sur "Smitfraudfix.cmd", choisit l 'option 2 et tu réponds oui à tout.
Enregistre le rapport puis Copie/colle le rapport sur le forum stp
Prècise nous les logiciels qu'il a
A++
Télécharge BruteForce Uninstaller ici:
http://www.merijn.org/files/bfu.zip
Créé un nouveau dossier sur le bureau par exemple, nomme le CCM, dezippe le fichier telechargé à l'interieur
Ensuite, télécharge EGDACCESS :
Fais un clic droit ici:
http://metallica.geekstogo.com/EGDACCESS.bfu et choisis "fichier" , "enregistrer sous" enregistre le sur le "bureau" puis mets le dans le dossier CCM que tu as créer, tu aura donc les deux fichiers BFU.exe et EGDACCESS.bfu à l'interieur de ce dossier CCM
----------
Lance "BruteForce Uninstaller" en cliquant sur BFU.exe
Clic sur le petit dossier jaune, et clique sur : EGDACCESS.bfu
Coches la case "Show log" after script ends
Clique sur Execute pour que le fix fasse son boulot
Attends que le message Complete script execution apparaîsse et clique sur OK.
Un rapport va s'afficher dans la fenetre du programme, copie et colle dans le bloc-notes, puis sauvegardes le.
Clique Exit pour fermer le programme BFU.
Ensuite, lance Blacklight en double cliquant sur blbeta.exe et accepte la licence.
Clique sur Scan pour lancer l'analyse.
Une fois fait, selectionnes chaques fichiers trouvés et clic sur "RENAME"
Puis valide.
Réponds oui aux messages d'avertissements et te demandant si tu autorises le reboot du pc.
Dès que le PC aura redémarrer, clique sur démarrer, rechercher, choisis "tous les fichiers et dossiers" dans les deux barres vide tu entre ceci: .ren
Puis lance la recherche il devrait te trouves des fichiers supprime les tous
Dès que c'est fait remet un rapport Blacklight stp
Télécharge SmitfraudFix (enregistre le sur le "bureau")
http://siri.urz.free.fr/Fix/SmitfraudFix.zip
Redémarres le PC en mode sans échec : tu tapotes sur la touche F8 de ton clavier (ou F5 ) et tu choisis le mode sans échec)
décompresse SmitfraudFix
Ouvre le dossier "SmitfraudFix" et double clic sur "Smitfraudfix.cmd", choisit l 'option 2 et tu réponds oui à tout.
Enregistre le rapport puis Copie/colle le rapport sur le forum stp
Prècise nous les logiciels qu'il a
A++
Télécharges Blacklight et sauvegarde le sur ton bureau.
https://www.f-secure.com/en
Double cliques sur " blbeta.exe " et acceptes la licence; clic sur "Scan" puis "Next"
Un rapport, va se créer sur ton bureau "fslb-....."
Copies et colles le contenu de ce rapport ici.
Ne touche à rien d'autre!
et dis nous quels logiciels anti-spywares tu as
A++