Listing hijackthis et bitfender

julia -  
^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   -
Bonjour et bonne année
mon pc rame complétement, après bitfender j'ai vu infection par trojan. Sur ce site j'ai vu des discussions sur le cheval de troie, du coup j'ai essayé spybot mais je rame toujours. puis j'ai utilisé hijackthis, mais évidemment, j'y comprend rien
Logfile of HijackThis v1.99.1
Scan saved at 07:26:48, on 02/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\windows\system\hpsysdrv.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\InterVideo\SchSvr\SchSvr.exe
C:\Program Files\InterVideo\Common\Bin\WinRemote.exe
C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\QuickTime\qttask.exe
C:\pc\updater.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SPACE INTERNATIONAL\CDSpace 5\LCDPlyer.exe
C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\SPACE INTERNATIONAL\CDSpace 5\CDSLicenseMng.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\FSGK32.EXE
C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fssm32.exe
C:\Program Files\Securitoo\av_fw\fswsclds.exe
C:\Program Files\Captel\Netiris\agent.exe
C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\BackWeb-1044199.exe
c:\pc\update.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
C:\Program Files\Securitoo\av_fw\Common\FSMB32.EXE
C:\Program Files\Securitoo\av_fw\Common\FCH32.EXE
C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsav32.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\Rar$EX02.969\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Home Theater SchSvr] "C:\Program Files\Fichiers communs\InterVideo\SchSvr\SchSvr.exe"
O4 - HKLM\..\Run: [WINREMOTE] "C:\Program Files\InterVideo\Common\Bin\WinRemote.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [updater] c:\pc\updater.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: LCDPlayer.lnk = ?
O4 - Global Startup: Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O18 - Protocol: bw+0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Securitoo AntiVirus Firewall (BackWeb Client - 1044199) - Unknown owner - C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Authentication Agent (FSAA) - Unknown owner - C:\Program Files\Securitoo\av_fw\Common\FSAA.EXE (file missing)
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
O23 - Service: F-Secure Distributed Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Netiris Agent (Netiris) - Captel - C:\Program Files\Captel\Netiris\agent.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

je vais essayer de coller le rapport de bitfender

BitDefender Online Scanner
Rapport d'analyse généré à: Sun, Dec 31, 2006 - 16:20:45

Voie d'analyse: C:\;D:\;E:\;F:\;G:\;H:\;I:\;J:\;

Statistiques
Temps 01:04:56
Fichiers 444206
Directoires 6459
Secteurs de boot 3
Archives 16840
Paquets programmes 42624
Résultats
Virus identifiés 2
Fichiers infectés 3
Fichiers suspects 0
Avertissements 0
Désinfectés 0
Fichiers effacés 2
Info sur les moteurs
Définition virus 363526
Version des moteurs AVCORE v1.0 (build 2371) (i386) (Dec 13 2006 11:16:42)
Analyse des plugins 14
Archive des plugins 38
Unpack des plugins 6
E-mail plugins 6
Système plugins 1
Paramètres d'analyse
Première action Désinfecté
Seconde Action Supprimé
Heuristique Oui
Acceptez les avertissements Oui
Extensions analysées *;
Excludez les extensions
Analyse d'emails Oui
Analyse des Archives Oui
Analyser paquets programmes Oui
Analyse des fichiers Oui
Analyse de boot Oui
Fichier analysé Statut
C:\pc\updater.exe Infecté par: Trojan.Downloader.Agent.ACL
C:\pc\updater.exe Echec de la désinfection
C:\pc\updater.exe Echec de la suppression
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP267\A0096778.exe Infecté par: Trojan.Agent.RR
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP267\A0096778.exe Echec de la désinfection
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP267\A0096778.exe Supprimé
C:\win\fk.exe Infecté par: Trojan.Agent.RR
C:\win\fk.exe Echec de la désinfection
C:\win\fk.exe Supprimé

si vous pouviez m'aidez......... merci, merci beaucoup
Configuration: Windows XP
Internet Explorer 7.0

9 réponses

  1. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Salut

    1°/ - Télécharge le logiciel SmitfraudFix ((crée par S!Ri J)
    http://siri.urz.free.fr/Fix/SmitfraudFix.zip et décompresse le.

    En image :
    http://siri.urz.free.fr/Fix/SmitfraudFix.php

    tu le décompresses tu doubles cliques sur smitfraudfix.cmd et tu choisi l option 1
    cela vas générer un rapport.
    Copie/colle le rapport
    0
  2. julia1 Messages postés 1 Statut Membre
     
    merci beaucoup Marie, j'ai essayé de faire ce que tu me demandais

    SmitFraudFix v2.132

    Rapport fait à 13:25:43,01, 02/01/2007
    Executé à partir de C:\Documents and Settings\HP_Propri‚taire\Mes documents\Mes fichiers re‡us\SmitfraudFix
    OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
    Le type du système de fichiers est NTFS
    Fix executé en mode normal

    »»»»»»»»»»»»»»»»»»»»»»»» C:\

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

    »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\HP_Propri‚taire

    »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\HP_Propri‚taire\Application Data

    »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

    »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\HP_PRO~1\Favoris

    »»»»»»»»»»»»»»»»»»»»»»»» Bureau

    »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

    »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues

    »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
    "Source"="About:Home"
    "SubscribedURL"="About:Home"
    "FriendlyName"="Ma page d'accueil"

    »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    SrchSTS.exe by S!Ri
    Search SharedTaskScheduler's .dll

    »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLs"=""

    »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
    "System"=""

    »»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32

    »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll

    »»»»»»»»»»»»»»»»»»»»»»»» Fin
    0
  3. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Re,

    Redémarres le PC en mode sans échec : tu tapotes sur la touche F8 de ton clavier (ou F5 ) et tu choisis le mode sans échec)

    - Ouvre le dossier "SmitfraudFix" et double clic sur "Smitfraudfix.cmd", choisit l’option 2 et tu réponds oui à tout.

    Copie/colle le rapport sur le forum stp.

    Refais un hitjackthis


    A++
    0
    1. julia
       
      bonjour Marie je me dépèche car ca fait 3 fois que j'essaie de t'envoyer ca
      le rapport de smifrandix est le 2 eme, le 1 er je le trouve plus merci beaucoup

      Logfile of HijackThis v1.99.1
      Scan saved at 07:28:37, on 03/01/2007
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v7.00 (7.00.5730.0011)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\explorer.exe
      C:\WINDOWS\NOTEPAD.EXE
      c:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
      C:\WINDOWS\system32\LVComsX.exe
      C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
      O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
      O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
      O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
      O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
      O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
      O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe
      O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
      O4 - HKLM\..\Run: [Home Theater SchSvr] "C:\Program Files\Fichiers communs\InterVideo\SchSvr\SchSvr.exe"
      O4 - HKLM\..\Run: [WINREMOTE] "C:\Program Files\InterVideo\Common\Bin\WinRemote.exe"
      O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
      O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
      O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
      O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash
      O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL
      O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [zirsnkmqxu] c:\windows\system32\zirsnkmqxu.exe zirsnkmqxu
      O4 - HKLM\..\Run: [updater] c:\pc\updater.exe
      O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
      O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
      O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
      O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O4 - Global Startup: LCDPlayer.lnk = ?
      O4 - Global Startup: Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = ?
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
      O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
      O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
      O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
      O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O11 - Options group: [INTERNATIONAL] International*
      O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
      O18 - Protocol: bw+0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw+0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw-0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw-0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw00 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw00s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw10 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw10s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw20 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw20s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw30 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw30s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw40 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw40s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw50 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw50s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw60 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw60s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw70 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw70s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw80 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw80s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw90 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw90s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwa0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwa0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwb0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwb0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwc0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwc0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwd0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwd0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwe0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwe0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwf0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwf0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
      O18 - Protocol: bwg0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwg0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwh0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwh0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwi0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwi0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwj0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwj0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwk0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwk0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwl0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwl0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwm0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwm0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwn0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwn0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwo0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwo0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwp0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwp0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwq0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwq0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwr0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwr0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bws0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bws0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwt0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwt0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwu0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwu0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwv0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwv0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bww0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bww0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwx0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwx0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwy0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwy0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwz0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwz0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
      O18 - Protocol: offline-8876480 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
      O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      O23 - Service: Securitoo AntiVirus Firewall (BackWeb Client - 1044199) - Unknown owner - C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
      O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
      O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
      O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
      O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
      O23 - Service: F-Secure Authentication Agent (FSAA) - Unknown owner - C:\Program Files\Securitoo\av_fw\Common\FSAA.EXE (file missing)
      O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
      O23 - Service: F-Secure Distributed Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
      O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
      O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
      O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: Netiris Agent (Netiris) - Captel - C:\Program Files\Captel\Netiris\agent.exe
      O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe




      SmitFraudFix v2.132

      Rapport fait à 7:15:26,76, 03/01/2007
      Executé à partir de C:\Documents and Settings\HP_Propri‚taire\Mes documents\Mes fichiers re‡us\SmitfraudFix
      OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
      Le type du système de fichiers est NTFS
      Fix executé en mode sans echec

      »»»»»»»»»»»»»»»»»»»»»»»» Avant SmitFraudFix
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      SrchSTS.exe by S!Ri
      Search SharedTaskScheduler's .dll

      »»»»»»»»»»»»»»»»»»»»»»»» Arret des processus


      »»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

      GenericRenosFix by S!Ri


      »»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés
      0
  4. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Salut

    Le 1er rapport tu l'as mis déjà--lol
    Refais le log Hitjakthis en MODE NORMAL
    stp
    merci
    0
    1. julia
       
      Comme ca alors?
      merci
      Logfile of HijackThis v1.99.1
      Scan saved at 10:48:27, on 03/01/2007
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v7.00 (7.00.5730.0011)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\spoolsv.exe
      C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
      C:\WINDOWS\system32\drivers\CDAC11BA.EXE
      C:\Program Files\ewido anti-malware\ewidoctrl.exe
      C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
      C:\Program Files\Securitoo\av_fw\Anti-Virus\FSGK32.EXE
      C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
      C:\Program Files\Securitoo\av_fw\fswsclds.exe
      C:\Program Files\Securitoo\av_fw\Anti-Virus\fssm32.exe
      C:\Program Files\Captel\Netiris\agent.exe
      C:\windows\system\hpsysdrv.exe
      C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\BackWeb-1044199.exe
      C:\HP\KBD\KBD.EXE
      C:\Program Files\Fichiers communs\InterVideo\SchSvr\SchSvr.exe
      C:\Program Files\InterVideo\Common\Bin\WinRemote.exe
      C:\WINDOWS\system32\nvsvc32.exe
      C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE
      C:\WINDOWS\system32\LVCOMSX.EXE
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\QuickTime\qttask.exe
      C:\pc\updater.exe
      C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
      C:\Program Files\MSN Messenger\msnmsgr.exe
      C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
      C:\Program Files\Securitoo\av_fw\Common\FSMB32.EXE
      C:\Program Files\Securitoo\av_fw\Common\FCH32.EXE
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\SPACE INTERNATIONAL\CDSpace 5\LCDPlyer.exe
      C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
      C:\Program Files\SPACE INTERNATIONAL\CDSpace 5\CDSLicenseMng.exe
      c:\pc\update.exe
      C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
      c:\Program Files\Microsoft Works\WkDStore.exe
      c:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
      c:\Program Files\Microsoft Works\wkswp.exe
      c:\Program Files\Microsoft Works\wkgdcach.exe
      C:\Program Files\Securitoo\av_fw\Anti-Virus\fsav32.exe
      C:\Program Files\Internet Explorer\IEXPLORE.EXE
      C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
      O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
      O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
      O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
      O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
      O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
      O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe
      O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
      O4 - HKLM\..\Run: [Home Theater SchSvr] "C:\Program Files\Fichiers communs\InterVideo\SchSvr\SchSvr.exe"
      O4 - HKLM\..\Run: [WINREMOTE] "C:\Program Files\InterVideo\Common\Bin\WinRemote.exe"
      O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
      O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
      O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
      O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash
      O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL
      O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [updater] c:\pc\updater.exe
      O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
      O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
      O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
      O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
      O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
      O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
      O4 - Global Startup: LCDPlayer.lnk = ?
      O4 - Global Startup: Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = ?
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
      O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
      O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
      O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
      O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O11 - Options group: [INTERNATIONAL] International*
      O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
      O18 - Protocol: bw+0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw+0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw-0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw-0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw00 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw00s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw10 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw10s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw20 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw20s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw30 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw30s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw40 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw40s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw50 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw50s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw60 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw60s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw70 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw70s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw80 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw80s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw90 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw90s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwa0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwa0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwb0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwb0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwc0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwc0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwd0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwd0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwe0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwe0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwf0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwf0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
      O18 - Protocol: bwg0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwg0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwh0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwh0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwi0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwi0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwj0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwj0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwk0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwk0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwl0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwl0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwm0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwm0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwn0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwn0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwo0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwo0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwp0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwp0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwq0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwq0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwr0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwr0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bws0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bws0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwt0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwt0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwu0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwu0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwv0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwv0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bww0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bww0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwx0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwx0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwy0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwy0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwz0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwz0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
      O18 - Protocol: offline-8876480 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
      O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      O23 - Service: Securitoo AntiVirus Firewall (BackWeb Client - 1044199) - Unknown owner - C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
      O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
      O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
      O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
      O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
      O23 - Service: F-Secure Authentication Agent (FSAA) - Unknown owner - C:\Program Files\Securitoo\av_fw\Common\FSAA.EXE (file missing)
      O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
      O23 - Service: F-Secure Distributed Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
      O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
      O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
      O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: Netiris Agent (Netiris) - Captel - C:\Program Files\Captel\Netiris\agent.exe
      O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
      0
      1. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280 > julia
         
        Bonjour,

        Méthode à suivre dans l'ordre...
        ----------------------------------------------------------------------------
        Télécharger ces logiciels (sauf si tu les as)
        A utiliser plus tard

        A - ad-aware version 1.06
        (ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
        voir demo
        http://pageperso.aol.fr/balltrap34/adwseflash.zip

        B - spybot version 1.4
        (ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
        voir demo d utilisation
        http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm

        C - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
        Télécharge ici :
        https://www.ccleaner.com/ccleaner/download
        Tutorial ici:
        https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php

        D - Ewido
        https://www.malekal.com/tutorial-et-guide-ewido-v4/
        ----------------------------------------------------------------------------
        ¤Affiche tous les fichiers et dossiers :
        Clique sur démarrer/panneau de configuration/outil/option des dossiers/affichage

        Coche « afficher les fichiers et dossiers cachés »

        Décoche la case "Masquer les fichiers protégés du système d'exploitation (recommandé)"

        Décoche « masquer les extensions dont le type est connu »
        Puis fais «Ok» pour valider les changements.

        Et appliquer !
        =================================
        Relance HijackThis, choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked"
        O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
        O4 - HKLM\..\Run: [Home Theater SchSvr] "C:\Program Files\Fichiers communs\InterVideo\SchSvr\SchSvr.exe"
        O4 - HKLM\..\Run: [WINREMOTE] "C:\Program Files\InterVideo\Common\Bin\WinRemote.exe"
        O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
        O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
        O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" –atboottime
        O4 - HKLM\..\Run: [updater] c:\pc\updater.exe
        O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
        O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
        O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" –tray
        O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
        O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
        O4 - Global Startup: LCDPlayer.lnk = ?
        04 - Global Startup: Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = ?
        O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
        O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
        O18 - Protocol: bw+0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw+0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw-0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw-0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw00 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw00s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw10 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw10s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw20 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw20s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw30 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw30s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw40 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw40s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw50 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw50s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw60 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw60s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw70 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw70s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw80 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw80s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw90 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw90s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwa0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwa0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwb0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwb0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwc0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwc0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwd0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwd0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwe0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwe0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwf0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwf0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
        O18 - Protocol: bwg0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwg0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwh0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwh0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwi0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwi0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwj0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwj0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwk0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwk0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwl0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwl0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwm0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwm0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwn0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwn0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwo0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwo0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwp0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwp0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwq0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwq0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwr0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwr0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bws0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bws0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwt0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwt0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwu0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwu0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwv0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwv0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bww0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bww0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwx0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwx0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwy0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwy0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwz0 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwz0s - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: offline-8876480 - {9DF8E83F-F3DA-486B-8363-CC6FDAB844CC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll


        Désinstalle ces programmes
        [LSBWatcher]
        Logitech\Desktop Messenger

        ============ ============================
        ¤Démarre en mode sans échec :
        Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
        Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
        Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
        (Si F8 ne marche pas utilise la touche F5).
        ----------------------------------------------------------------------------
        ¤Vide tes fichiers temps et temporary internet file:

        Maintenant tu lances
        A/ Ad-Aware supprime quarantaine
        B/ Spybot Supprime quarantaine
        C/ Ccleaner Ewido Copier/coller le rapport
        D/
        ----------------------------------------------------------------------------
        ¤ Vide ta Corbeille.
        ----------------------------------------------------------------------------
        ¤ Redémarre en mode normal, relance Hijackthis et copie/colle un nouveau rapport sur le forum.

        Tiens nous au courant
        0
      2. julia > ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention  
         
        ---------------------------------------------------------
        bonjour marie
        j'ai essayé de faire ce que tu me disais pas sans mal, je te l'avoue car en plus, j'ai perdu la ligne internet depuis hier, donc je n'ai pas pu actualiser mes nettoyeurs ad-aware, spybot, ccleaner et ewido que j'avais déjà. D'ailleurs, toi tu me parles de c cleaner ewido et moi, j'avais 2 logiciels séparés, Ccleaner et ewido, j'espère que c'est bien la même chose......




        ewido anti-malware - Rapport de scan
        ---------------------------------------------------------

        + Créé le: 08:34:38, 04/01/2007
        + Somme de contrôle: 96205B44

        + Résultats du scan:

        Pas de fichiers infectés trouvés!


        ::Fin du rapport

        Logfile of HijackThis v1.99.1
        Scan saved at 09:23:14, on 04/01/2007
        Platform: Windows XP SP2 (WinNT 5.01.2600)
        MSIE: Internet Explorer v7.00 (7.00.5730.0011)

        Running processes:
        C:\WINDOWS\System32\smss.exe
        C:\WINDOWS\system32\winlogon.exe
        C:\WINDOWS\system32\services.exe
        C:\WINDOWS\system32\lsass.exe
        C:\WINDOWS\system32\svchost.exe
        C:\WINDOWS\System32\svchost.exe
        C:\WINDOWS\Explorer.EXE
        C:\WINDOWS\system32\spoolsv.exe
        C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
        C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
        C:\WINDOWS\system32\drivers\CDAC11BA.EXE
        C:\Program Files\ewido anti-malware\ewidoctrl.exe
        C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
        C:\Program Files\Securitoo\av_fw\Anti-Virus\FSGK32.EXE
        C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
        C:\Program Files\Securitoo\av_fw\fswsclds.exe
        C:\Program Files\Securitoo\av_fw\Anti-Virus\fssm32.exe
        C:\Program Files\Captel\Netiris\agent.exe
        C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\BackWeb-1044199.exe
        C:\windows\system\hpsysdrv.exe
        C:\WINDOWS\system32\nvsvc32.exe
        C:\WINDOWS\system32\svchost.exe
        C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
        C:\WINDOWS\system32\ps2.exe
        C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE
        C:\Program Files\Securitoo\av_fw\Common\FSMB32.EXE
        C:\Program Files\Securitoo\av_fw\Common\FCH32.EXE
        C:\Program Files\Securitoo\av_fw\Common\FAMEH32.EXE
        C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
        C:\WINDOWS\system32\ctfmon.exe
        C:\Program Files\Securitoo\av_fw\Anti-Virus\fsav32.exe
        C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
        C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
        C:\WINDOWS\system32\wuauclt.exe
        C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

        R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
        R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
        R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
        O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
        O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
        O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
        O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
        O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
        O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
        O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe
        O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
        O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
        O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash
        O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL
        O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
        O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
        O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
        O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
        O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
        O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
        O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
        O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
        O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
        O11 - Options group: [INTERNATIONAL] International*
        O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
        O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
        O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
        O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
        O23 - Service: Securitoo AntiVirus Firewall (BackWeb Client - 1044199) - Unknown owner - C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
        O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
        O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
        O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
        O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
        O23 - Service: F-Secure Authentication Agent (FSAA) - Unknown owner - C:\Program Files\Securitoo\av_fw\Common\FSAA.EXE (file missing)
        O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
        O23 - Service: F-Secure Distributed Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
        O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
        O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
        O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
        O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
        O23 - Service: Netiris Agent (Netiris) - Captel - C:\Program Files\Captel\Netiris\agent.exe
        O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
        0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Oui, c'est la mm chose..lol

    Tu rames toujours ??
    0
    1. julia
       
      moins, dirait-on... comme j'ai récupéré internet, comment savoir si je suis toujours infecté par un cheval de troie? Oui car pour les courses sur internet ca craint vraiment, ce "binzzzzzze" je suis protégé par securitoo, ca ne suffit donc pas, faut dire que parfois, je le retrouve désactivé ....
      Que dois-je faire, Marie?
      Merci
      0
  7. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Je ne connais pas "securito", je demande à un helpers

    A+
    0
    1. julia
       
      Est-ce que je refais ce que tu m'as dis de faire la dernière fois avec les nettoyeurs remis au goût du jour? ou peut-être devrais-je refaire bitfender pour savoir si j'ai toujours trojan? Qu'en dis-tu?
      0
  8. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Si tu veux

    par la même occase, faudrait que tu regardes l'espace sur ton disque
    et faire une défragmentation
    https://www.commentcamarche.net/telecharger/utilitaires/7441-disk-defrag-free/

    A++

    L'homme sage ne joue pas à "saute-mouton" avec une licorne... ...
    0
    1. julia
       
      Voilà, entre temps, il m'est arrivé des tas de trucs, j'ai voulu prendre bit defender v10 et j'ai planté l'ordi pendant au moins 1 jour sans pouvoir supprimer cet antivirus, ouf en restaurant l'ordi juste avant ce foutu téléchargement; j'ai récupéré les anciennes données




      ANALYSE COMPLETE - (0,359 secs)
      ------------------------------------------------------------------------------------------
      10,2MB ont été supprimé. (Taille approximative)
      ------------------------------------------------------------------------------------------

      Détails des fichiers à supprimer (Note: AUCUN fichier n'a pour l'instant été supprimé)
      ------------------------------------------------------------------------------------------
      Fichiers Temporaires d'Internet Explorer (fichiers 64) 0,79MB
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@1420.stats.misstrends[1].txt 339 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@1449.stats.misstrends[2].txt 223 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@1512.stats.misstrends[1].txt 114 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@1559.stats.misstrends[2].txt 223 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@4.adbrite[1].txt 183 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@604.stats.misstrends[1].txt 113 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@653.stats.stats[1].txt 105 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@656.stats.misstrends[1].txt 115 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@671.stats.misstrends[2].txt 219 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@680.stats.misstrends[2].txt 451 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@726.stats.misstrends[2].txt 220 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@803.stats.misstrends[1].txt 113 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@965.stats.stats[1].txt 106 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ad.wedoo[1].txt 123 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ad.yieldmanager[1].txt 400 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@adbrite[1].txt 199 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@adopt.hbmediapro[2].txt 444 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@bluestreak[1].txt 729 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@c.msn.co[1].txt 76 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@c.msn[1].txt 67 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@carasexe[1].txt 470 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@clickintext[1].txt 82 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@cookie.monster[1].txt 129 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@cookie.monster[2].txt 190 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@cybermonitor[1].txt 94 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@directivepub[2].txt 95 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@easyrencontre[2].txt 616 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@edt02[1].txt 829 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@estat[1].txt 86 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@fl01.ct2.comclick[1].txt 581 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@fr.clickintext[1].txt 90 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@google[1].txt 130 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@hotmail.msn[1].txt 71 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@i2as.idregie[2].txt 108 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@iapref.orange[1].txt 95 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@idregie[2].txt 163 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ke.voila[1].txt 89 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@live[1].txt 100 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@login.live[2].txt 177 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@mb.cinehard[1].txt 87 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@media.adrevolver[1].txt 103 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@meetic.orange[1].txt 1,23KB
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@meetic[2].txt 329 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@messenger.msn[1].txt 96 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@msn.co[2].txt 101 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@msnportal.112.2o7[1].txt 124 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@msn[1].txt 565 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@msn[3].txt 92 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@news.fr.msn[2].txt 170 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@od2[1].txt 102 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@onlinestores.metaservices.microsoft[1].txt 146 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@orange[1].txt 259 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@oxado[2].txt 95 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@prizee[1].txt 332 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@rad.msn[2].txt 690 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ringo[2].txt 167 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@search.msn[2].txt 288 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@search.sweetim[2].txt 357 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@smartmovies[1].txt 296 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@top-teens.videos-gratuites[2].txt 90 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@tp.msn[2].txt 71 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@track.effiliation[1].txt 90 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@tracker.affistats[2].txt 299 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@tracker.esecure-transaction[1].txt 125 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@tracking.publicidees[2].txt 147 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@tsw0[1].txt 880 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@vitamineh[1].txt 280 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@wanadoo[1].txt 87 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@weborama[1].txt 260 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@wedoo[2].txt 371 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.adameve.com[1].txt 82 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.bonplancul[1].txt 80 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.cibleclick[2].txt 127 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.commentcamarche[2].txt 114 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.esecure-transaction[2].txt 219 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.extraits-videos[1].txt 98 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.film-x-gratos[1].txt 97 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.les-bombasses[1].txt 97 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.lespoulpicks[1].txt 300 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.lespoulpicks[2].txt 101 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.luxurix[2].txt 69 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.plugin-x[1].txt 588 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.rabbitfinder[2].txt 184 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.ringo[2].txt 89 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.sa-cam[1].txt 231 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.sexyavenue[1].txt 89 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.smartadserver[1].txt 412 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.speedbomba[1].txt 92 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.splem[1].txt 84 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.videos-gratuites[1].txt 88 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.videos-x-booster[2].txt 85 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.videosdesexe[1].txt 75 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@xiti[1].txt 106 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@yourmedia[1].txt 99 bytes
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@zone-coquine[1].txt 178 bytes
      Marqué pour l'effacement: C:\Documents and Settings\HP_Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\index.dat
      Marqué pour l'effacement: C:\Documents and Settings\HP_Propriétaire\Cookies\index.dat
      Poubelle vidée (12 fichiers) 1,26MB
      C:\WINDOWS\TEMP\6dcg6nze.TMP 0,59MB
      C:\WINDOWS\TEMP\tmp00001bc2\tmp00000000 0 bytes
      C:\WINDOWS\TEMP\tmp00001bc2\tmp00001e84 2,61MB
      C:\WINDOWS\TEMP\tmp0000600c\tmp00000000 0 bytes
      C:\WINDOWS\TEMP\tmp000064b1\tmp00000000 0 bytes
      C:\WINDOWS\TEMP\tmp00006a23\tmp00000000 0 bytes
      C:\WINDOWS\TEMP\tmp000074d4\tmp00000000 0 bytes
      C:\WINDOWS\TEMP\tmp00007d61\tmp00000000 0 bytes
      C:\WINDOWS\TEMP\tmp00007dc2\tmp00000000 0 bytes
      C:\WINDOWS\TEMP\tmp00007dc2\tmp00000431 2,61MB
      C:\WINDOWS\TEMP\tmp00007f2d\tmp00000000 0 bytes
      C:\WINDOWS\TEMP\WGAErrLog.txt 255 bytes
      C:\WINDOWS\TEMP\WGANotify.settings 409 bytes
      C:\WINDOWS\TEMP\~DF7A64.tmp 16,00KB
      C:\WINDOWS\TEMP\~DF87A3.tmp 16,00KB
      C:\WINDOWS\TEMP\~DF942E.tmp 16,00KB
      C:\WINDOWS\TEMP\~DF9459.tmp 16,00KB
      C:\WINDOWS\TEMP\~DF9592.tmp 16,00KB
      C:\WINDOWS\TEMP\~DF9707.tmp 16,00KB
      C:\WINDOWS\TEMP\~DF9738.tmp 16,00KB
      C:\WINDOWS\TEMP\~DF97E1.tmp 16,00KB
      C:\WINDOWS\TEMP\~DF9838.tmp 16,00KB
      C:\WINDOWS\TEMP\~DFA14D.tmp 16,00KB
      C:\WINDOWS\TEMP\~DFA7CC.tmp 16,00KB
      C:\WINDOWS\TEMP\~DFAA37.tmp 16,00KB
      C:\WINDOWS\TEMP\~DFB311.tmp 16,00KB
      C:\WINDOWS\TEMP\~DFB38D.tmp 16,00KB
      C:\WINDOWS\TEMP\~DFB527.tmp 16,00KB
      C:\WINDOWS\TEMP\~DFB649.tmp 16,00KB
      C:\WINDOWS\TEMP\~DFB897.tmp 16,00KB
      C:\WINDOWS\TEMP\~DFBB03.tmp 16,00KB
      C:\WINDOWS\TEMP\~DFC039.tmp 16,00KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\binkw32.dll 0,25MB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\d2l_Install.exe 0,38MB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\IadHide5.dll 24,04KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\JETC59F.tmp 0 bytes
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\LAU48F.tmp 0 bytes
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\LAU497.tmp 0 bytes
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\LAU499.tmp 0 bytes
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\LEX4B.tmp 0 bytes
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\LVCOMSX.LOG 5,37KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\Perflib_Perfdata_16ac.dat 16,00KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\Perflib_Perfdata_568.dat 16,00KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\shellscan.tsi 9,88KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\SIntf16.dll 12,02KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\SIntf32.dll 19,55KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\SIntfIcn.ani 4,48KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\SIntfNT.dll 24,16KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\TFR379.tmp 27,13KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\TFR37A.tmp 31,45KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\TFR37B.tmp 34,74KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\TFR37D.tmp 9,99KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\TFR383.tmp 22,72KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\TFR389.tmp 22,88KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\TFR38F.tmp 20,63KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\TFR395.tmp 65,98KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\TFR3A9.tmp 53,66KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\TFR3AF.tmp 51,43KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\WERa71b.dir00\bdmcon.exe.mdmp 0 bytes
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\WERaf9b.dir00\bdmcon.exe.mdmp 0 bytes
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\WERb07f.dir00\bdmcon.exe.mdmp 0 bytes
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\WKS4C.tmp 20,50KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\~nsu.tmp\Au_.exe 79,41KB
      C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\~Qil0979.tmp 16,00KB
      C:\WINDOWS\system32\wbem\Logs\FrameWork.log 5,33KB
      C:\WINDOWS\system32\wbem\Logs\wbemcore.log 264 bytes
      C:\WINDOWS\system32\wbem\Logs\wbemess.log 23,34KB
      C:\WINDOWS\system32\wbem\Logs\wbemprox.log 202 bytes
      C:\WINDOWS\system32\wbem\Logs\wmiprov.log 1,50KB
      C:\WINDOWS\system32\wbem\Logs\wbemess.lo_ 64,09KB
      C:\WINDOWS\0.log 0 bytes
      C:\WINDOWS\setupapi.log 4,02KB
      C:\WINDOWS\ntbtlog.txt 0,74MB
      C:\Documents and Settings\HP_Propriétaire\Application Data\Macromedia\Flash Player\#SharedObjects\6VT6FJ4A\images.badoo.com\261\-\-\flash\Connect.swf\ConnectType2.sol 64 bytes
      C:\Documents and Settings\HP_Propriétaire\Application Data\Macromedia\Flash Player\#SharedObjects\6VT6FJ4A\meetic.fr\chat_flash4\tc5.swf\meetic_chat_v2.sol 55 bytes
      C:\Documents and Settings\HP_Propriétaire\Application Data\Macromedia\Flash Player\#SharedObjects\6VT6FJ4A\orange.fr\chat_flash4\tc5.swf\meetic_chat_v2.sol 55 bytes
      C:\Documents and Settings\HP_Propriétaire\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#images.badoo.com\settings.sol 86 bytes
      C:\Documents and Settings\HP_Propriétaire\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#meetic.fr\settings.sol 79 bytes
      C:\Documents and Settings\HP_Propriétaire\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#orange.fr\settings.sol 79 bytes
      C:\Documents and Settings\HP_Propriétaire\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol 408 bytes
      C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Checks.070104-1840.log 241 bytes
      C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Checks.070104-1846.txt 1,31KB
      C:\Documents and Settings\HP_Propriétaire\Application Data\Lavasoft\Ad-Aware\Logs\Ad-Aware log2007-01-04 18-34-56.txt 12,79KB
      ------------------------------------------------------------------------------------------
      ---------------------------------------------------------
      ewido anti-malware - Rapport de scan
      ---------------------------------------------------------

      + Créé le: 13:03:48, 06/01/2007
      + Somme de contrôle: 9F228A4E

      + Résultats du scan:

      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyer et sauvegarder
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
      C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder


      ::Fin du rapport





      Logfile of HijackThis v1.99.1
      Scan saved at 13:06:56, on 06/01/2007
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v7.00 (7.00.5730.0011)

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
      C:\WINDOWS\system32\drivers\CDAC11BA.EXE
      C:\Program Files\ewido anti-malware\ewidoctrl.exe
      C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
      C:\Program Files\Securitoo\av_fw\Anti-Virus\FSGK32.EXE
      C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
      C:\Program Files\Securitoo\av_fw\fswsclds.exe
      C:\Program Files\Securitoo\av_fw\Anti-Virus\fssm32.exe
      C:\Program Files\Captel\Netiris\agent.exe
      C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\BackWeb-1044199.exe
      C:\windows\system\hpsysdrv.exe
      C:\WINDOWS\system32\ps2.exe
      C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE
      C:\WINDOWS\system32\nvsvc32.exe
      C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\MSN Messenger\msnmsgr.exe
      C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
      C:\Program Files\Securitoo\av_fw\Common\FSMB32.EXE
      C:\Program Files\Securitoo\av_fw\Common\FCH32.EXE
      C:\Program Files\Securitoo\av_fw\Common\FAMEH32.EXE
      C:\Program Files\Securitoo\av_fw\Anti-Virus\fsav32.exe
      C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
      C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
      C:\WINDOWS\system32\LVComsX.exe
      C:\Program Files\Internet Explorer\IEXPLORE.EXE
      C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
      O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
      O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
      O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
      O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
      O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
      O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe
      O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
      O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
      O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash
      O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL
      O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
      O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
      O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
      O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O11 - Options group: [INTERNATIONAL] International*
      O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
      O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
      O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
      O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
      O23 - Service: Securitoo AntiVirus Firewall (BackWeb Client - 1044199) - Unknown owner - C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
      O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
      O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
      O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
      O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
      O23 - Service: F-Secure Authentication Agent (FSAA) - Unknown owner - C:\Program Files\Securitoo\av_fw\Common\FSAA.EXE (file missing)
      O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
      O23 - Service: F-Secure Distributed Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
      O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
      O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
      O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: Netiris Agent (Netiris) - Captel - C:\Program Files\Captel\Netiris\agent.exe
      O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
      0
    2. julia
       
      bonjour Marie
      Pourrais-tu me dire si mon pc est ok à présent, ou ce que je dois faire? Je n'ai pas encore fait la défragmentation.....
      Merci beaucoup
      0
  9. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Salut

    Ton log est clean pour moi.
    As-tu un soucis particulier ?

    A++
    0
    1. julia
       
      non, j'espère bien ne plus en avoir, je te remercie pour tout je fais la défragmentation?
      0
  10. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Ok,
    Bonne route

    A++

    0