Sujet Précédent Sujet Suivant

Scan hijackThis.......quel bilan ?

Fermé
pointup - 13 janv. 2007 à 20:19
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 - 14 janv. 2007 à 17:21
re bonjour,
mes deux posts précédents n'ont pas eu de réponse.....heureusement j'ai pu faire un scan avec hijackThis.
Je pense que certains d'entre vous pourront m'apporter enfin des réponses . Merci de votre collaboration.
Logfile of HijackThis v1.99.1
Scan saved at 20:08:06, on 13/01/2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
C:\Program Files\Intel\Intel(R) Active Monitor\imontray.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb05.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\EasyPHP1-7\easyphp.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Borland\IntrBase\BIN\ibserver.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\System32\ctfmon.exe
C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\POP Peeper\POPPeeper.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Norton CleanSweep\csinsmnt.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\ATnotes\ATnotes.exe
C:\WINDOWS\system32\crypserv.exe
C:\WINDOWS\system32\pctspk.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\PROGRA~1\EASYPH~1\MySql\bin\mysqld.exe
C:\Program Files\Intel\Intel(R) Active Monitor\imonnt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\_\Bureau\Téléchargement\HijackThis\HijackThis.exe
C:\Program Files\PeDevice\PeDev.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://websearch.shopnav.com/sidesearch.cgi?uid=11028446&id=1.20031
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://websearch.shopnav.com/sidesearch.cgi?uid=11028446&id=1.20031
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lookfor.cc?pin=28129
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://lookfor.cc/sp.php?pin=28129
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://websearch.shopnav.com/sidesearch.cgi?uid=11028446&id=1.20031
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://websearch.shopnav.com/sidesearch.cgi?uid=11028446&id=1.20031
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://lookfor.cc?pin=28129
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://websearch.shopnav.com/sidesearch.cgi?uid=11028446&id=1.20031
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://websearch.shopnav.com/sidesearch.cgi?uid=11028446&id=1.20031
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = websearch.shopnav.com/q.cgi?q=
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - C:\PROGRA~1\COPERN~1\COPERN~1.DLL
O2 - BHO: Band Class - {00027925-0017-4faf-9539-90E4AC0B9EC5} - C:\WINDOWS\eltt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: PEDEV_IEListener Class - {E1412445-4FF8-410e-8D24-F2CF86B171A4} - C:\Program Files\PeDevice\PeDev.dll
O2 - BHO: WebBar Class - {EE392A64-F30B-47C8-A363-CDA1CEC7DC1B} - C:\PROGRA~1\APPLIE~1\Bar.dll
O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\PROGRA~1\COPERN~1\COPERN~1.DLL
O3 - Toolbar: (no name) - {2CDE1A7D-A478-4291-BF31-E1B4C16F92EB} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
O4 - HKLM\..\Run: [DrvListnr] C:\Program Files\Analog Devices\SoundMAX\DrvListnr.exe
O4 - HKLM\..\Run: [IMONTRAY] C:\Program Files\Intel\Intel(R) Active Monitor\imontray.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb05.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Prein] C:\DOCUME~1\_\LOCALS~1\Temp\app147.tmp
O4 - HKLM\..\Run: [b3866f0c720b] C:\WINDOWS\System32\browselc.exe
O4 - HKLM\..\Run: [EasyPHP] "C:\Program Files\EasyPHP1-7\easyphp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [e47409fa4a1c] C:\WINDOWS\System32\camocx06.exe
O4 - HKLM\..\Run: [PDF Converter Registry Controller] "C:\Program Files\ScanSoft\PDF Converter\RegistryController.exe"
O4 - HKLM\..\Run: [SSC_UserPrompt] C:\Program Files\Fichiers communs\Symantec Shared\Security Center\UsrPrmpt.exe
O4 - HKLM\..\Run: [InterBase Server] "C:\Program Files\Borland\IntrBase\BIN\ibserver.exe"
O4 - HKLM\..\Run: [smanp] C:\DOCUME~1\_\LOCALS~1\Temp\app4.tmp
O4 - HKLM\..\Run: [TopSearch] C:\Program Files\TopSearch\TopSearch.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PopUpStopperFreeEdition] "C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe"
O4 - HKCU\..\Run: [Foxmail] "C:\Program Files\Foxmail.exe" -min
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [POP Peeper] "C:\Program Files\POP Peeper\POPPeeper.exe" -min
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: ATnotes.lnk = C:\Program Files\ATnotes\ATnotes.exe
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: CleanSweep Smart Sweep-Internet Sweep.LNK = C:\Program Files\Norton CleanSweep\csinsmnt.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: ZoneAlarm.lnk = C:\Program Files\Zone Labs\ZoneAlarm\zonealarm.exe
O8 - Extra context menu item: Chercher avec Copernic Agent - res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXT
O8 - Extra context menu item: Open PDF in Word - res://C:\Program Files\ScanSoft\PDF Converter\IEShellExt.dll /100
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE
O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE
O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE (file missing)
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE (file missing)
O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)
O15 - Trusted Zone: *.05p.com
O15 - Trusted Zone: *.clickspring.net
O15 - Trusted Zone: *.mt-download.com
O15 - Trusted Zone: *.my-internet.info
O15 - Trusted Zone: *.scoobidoo.com
O15 - Trusted Zone: *.searchmiracle.com
O15 - Trusted Zone: *.05p.com (HKLM)
O15 - Trusted Zone: *.clickspring.net (HKLM)
O15 - Trusted Zone: *.mt-download.com (HKLM)
O15 - Trusted Zone: *.my-internet.info (HKLM)
O15 - Trusted Zone: *.scoobidoo.com (HKLM)
O15 - Trusted Zone: *.searchmiracle.com (HKLM)
O15 - Trusted IP range: 206.161.125.149
O15 - Trusted IP range: 206.161.124.130 (HKLM)
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O16 - DPF: Interface Chat Voila - http://chat1.voila.fr/version5/Applet/vchatsign.cab
O16 - DPF: Interface Chat Wanadoo - http://chat9.x-echo.com/version3/Applet/wchatsign.cab
O16 - DPF: {3B02AAA2-327C-40ED-A849-4BE819AE5385} (ImgSizer Control) - file://C:\Documents and Settings\_\Local Settings\Temp\~DlfnTmp0\imgSizer.ocx
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{DC3E8D76-2E6E-43A7-BBA5-C7164C29237C}: NameServer = 212.27.32.176,212.27.32.177
O18 - Protocol: bw+0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {143532EB-8580-49EF-B5B3-E1E2B9FF37FA} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: Intel(R) Active Monitor (imonNT) - Intel Corp. - C:\Program Files\Intel\Intel(R) Active Monitor\imonnt.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - C:\WINDOWS\system32\pctspk.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: SymWMI Service (SymWSC) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe (file missing)
A voir également:

4 réponses

Réponse 1 / 4
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275
13 janv. 2007 à 20:50
Salut

Il fonctionne ton anti-virus ??
Et le pare-feu ??


mes deux posts précédents n'ont pas eu de réponse.

Evite de poster partout

pointup




0
pointup
14 janv. 2007 à 10:00
Bonjour Marie,
Tout d'abord un grand merci de s'interreser à mon problème.....on se sent si démuni . Mon attaque s'en est pris à avast et zone alarm en leur ôtant leur fichier .ex . Impossible de réinstaller, ces fichiers disparaissent aussitôt . Donc je n'ai plus de protection . De plus, de temps en temps une page web de zone labs (zone alarm) s'affiche en anglais et me bloque ma connexion . Ainsi je n'ai pas pu effectuer de scan en ligne . Je n'arrive pas à la faire disparaître .
Des idées? ......elles seront les bienvenues .
0
Réponse 2 / 4
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275
14 janv. 2007 à 10:22
Slt

Bon on va essayer quand mm

Ouvre ce lien (merci a S!RI pour ce programme)
http://siri.urz.free.fr/Fix/SmitfraudFix.php
et télécharge SmitfraudFix.exe.

Regarde le tuto

Exécute le en choisissant l’option 1,
il va générer un rapport
Copie/colle le sur le poste stp.
0
Réponse 3 / 4
pointup
14 janv. 2007 à 15:37
Ok.....j'ai fait un scan avec "eScan Antivirus Toolkit", voila le résultat:

File C:\WINDOWS\eltt.dll tagged as not-a-virus:AdWare.Win32.ImiBar.g. No Action Taken.
File C:\DOCUME~1\_\LOCALS~1\Temp\app4.tmp infected by "Trojan-Downloader.Win32.Delmed.a" Virus. Action Taken: File Deleted.
File C:\WINDOWS\eltt.dll tagged as not-a-virus:AdWare.Win32.ImiBar.g. No Action Taken.
File C:\WINDOWS\NDNuninstall4_50.exe tagged as not-a-virus:AdWare.Win32.NewDotNet. No Action Taken.
File C:\WINDOWS\NDNuninstall4_88.exe tagged as not-a-virus:AdWare.Win32.NewDotNet. No Action Taken.
File C:\WINDOWS\NDNuninstall4_94.exe tagged as not-a-virus:AdWare.Win32.NewDotNet. No Action Taken.
File C:\WINDOWS\NDNuninstall5_20.exe tagged as not-a-virus:AdWare.Win32.NewDotNet. No Action Taken.
File C:\WINDOWS\NDNuninstall5_40.exe tagged as not-a-virus:AdWare.Win32.NewDotNet. No Action Taken.
File C:\WINDOWS\NDNuninstall5_48.exe tagged as not-a-virus:AdWare.Win32.NewDotNet. No Action Taken.
File C:\WINDOWS\unist2.exe tagged as not-a-virus:AdWare.Win32.ShopNav.l. No Action Taken.
File C:\WINDOWS\System32\ASFV2518.exe tagged as not-a-virus:AdWare.Win32.UrlSpy.a. No Action Taken.
File C:\WINDOWS\System32\browselc.exe tagged as not-a-virus:AdWare.Win32.IEDriver.a. No Action Taken.
File C:\WINDOWS\System32\clbcatex.exe tagged as not-a-virus:AdWare.Win32.UrlSpy.b. No Action Taken.
File C:\Documents and Settings\All Users\Application Data\wsxs\patchme.exe tagged as not-a-virus:AdWare.Win32.DelphinMediaViewer.f. No Action Taken.
File C:\Documents and Settings\_\Local Settings\Temp\~10.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~11.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~12.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~13.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~14.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~15.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~16.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~17.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~18.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~19.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~1A.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~1B.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~1C.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~1D.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~1E.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~1F.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~2.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~20.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~21.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~22.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~23.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~24.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~25.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~26.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~27.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~28.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~29.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~2A.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~2B.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~2C.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~2D.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~2E.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~2F.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~3.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~30.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~31.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~32.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~33.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~34.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~35.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~36.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~37.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~38.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~39.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~3A.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~3B.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~3C.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~3D.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~3E.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~3F.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~4.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~40.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~41.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~42.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~43.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~44.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~45.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~46.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~47.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~5.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~50.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~51.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~6.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~7.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~8.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~9.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~A.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~B.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~C.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~D.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~E.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\_\Local Settings\Temp\~F.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\Program Files\Alwil SoftwareVirus\Avast4\ashPopWz.exe infected by "BkCln.Unknown" Virus. Action Taken: File Renamed.
File C:\Program Files\Alwil SoftwareVirus\Avast4\ashSkPck.exe infected by "BkCln.Unknown" Virus. Action Taken: File Renamed.
File C:\Program Files\Alwil SoftwareVirus\Avast4\sched.exe infected by "BkCln.Unknown" Virus. Action Taken: File Renamed.
File C:\Program Files\Fichiers communs\Symantec Shared\NMAIN.EXE infected by "BkCln.Unknown" Virus. Action Taken: File Renamed.
File C:\Program Files\hbinst\Hbinst.exe tagged as not-a-virus:AdWare.Win32.Hotbar.af. No Action Taken.
File C:\Program Files\Kazaa\TopSearch.dll tagged as not-a-virus:AdWare.Win32.Altnet.o. No Action Taken.
File C:\Program Files\MSN\MSNCoreFiles\update.exe infected by "BkCln.Unknown" Virus. Action Taken: File Renamed.
File C:\Program Files\Shareaza\Downloads\!!!!!!!! photos sur cd et dvd magix flash mx macromedia 2004.zip infected by "Trojan-Downloader.Win32.IstBar.no" Virus. Action Taken: File Deleted.
File C:\Program Files\Shareaza\Downloads\OCB pdf converter .zip infected by "Trojan-Downloader.Win32.IstBar.no" Virus. Action Taken: File Deleted.
File C:\Program Files\Shareaza\Downloads\_uncensored_ photos sur cd et dvd 3.0 de luxe .zip infected by "Trojan-Downloader.Win32.IstBar.no" Virus. Action Taken: File Deleted.
File C:\Program Files\Symantec\LiveUpdate\AUPDATE.EXE infected by "BkCln.Unknown" Virus. Action Taken: File Renamed.
File C:\Program Files\Symantec\LiveUpdate\Luupdate.exe infected by "BkCln.Unknown" Virus. Action Taken: File Renamed.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061448.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061472.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061496.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061666.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061677.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061772.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061785.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061799.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061800.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061801.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061802.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061803.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061804.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061805.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061806.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061807.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061808.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061809.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061810.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061811.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061812.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061814.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061872.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061887.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061899.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061910.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0061927.exe infected by "Trojan-Downloader.Win32.Bagle.be" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0062330.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0062343.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0062359.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0062392.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP223\A0062403.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{75D5921B-0E89-4389-AFD4-127A04E8F9C3}\RP224\A0062422.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\Downloaded Program Files\CONFLICT.1\HDPlugin1019.dll tagged as not-a-virus:AdWare.Win32.Gator.1019. No Action Taken.
File C:\WINDOWS\Downloaded Program Files\CONFLICT.2\HDPlugin1019.dll tagged as not-a-virus:AdWare.Win32.Gator.1019. No Action Taken.
File C:\WINDOWS\Downloaded Program Files\CONFLICT.3\HDPlugin1019.dll tagged as not-a-virus:AdWare.Win32.Gator.1019. No Action Taken.
File C:\WINDOWS\Downloaded Program Files\HDPlugin1019.dll tagged as not-a-virus:AdWare.Win32.Gator.1019. No Action Taken.
File C:\WINDOWS\eltt.dll tagged as not-a-virus:AdWare.Win32.ImiBar.g. No Action Taken.
File C:\WINDOWS\exefld\329671.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\356453.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\358859.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\360265.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\367187.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\381125.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\394328.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\397921.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\410406.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\415046.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\416562.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\421156.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\427875.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\430203.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\433453.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\443578.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\451250.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\499671.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\510781.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\522265.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\525359.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\exefld\536921.exe infected by "Email-Worm.Win32.Bagle.hg" Virus. Action Taken: File Deleted.
File C:\WINDOWS\NDNuninstall4_50.exe tagged as not-a-virus:AdWare.Win32.NewDotNet. No Action Taken.
File C:\WINDOWS\NDNuninstall4_88.exe tagged as not-a-virus:AdWare.Win32.NewDotNet. No Action Taken.
File C:\WINDOWS\NDNuninstall4_94.exe tagged as not-a-virus:AdWare.Win32.NewDotNet. No Action Taken.
File C:\WINDOWS\NDNuninstall5_20.exe tagged as not-a-virus:AdWare.Win32.NewDotNet. No Action Taken.
File C:\WINDOWS\NDNuninstall5_40.exe tagged as not-a-virus:AdWare.Win32.NewDotNet. No Action Taken.
File C:\WINDOWS\NDNuninstall5_48.exe tagged as not-a-virus:AdWare.Win32.NewDotNet. No Action Taken.
File C:\WINDOWS\system32\ASFV2518.exe tagged as not-a-virus:AdWare.Win32.UrlSpy.a. No Action Taken.
File C:\WINDOWS\system32\browselc.exe tagged as not-a-virus:AdWare.Win32.IEDriver.a. No Action Taken.
File C:\WINDOWS\system32\clbcatex.exe tagged as not-a-virus:AdWare.Win32.UrlSpy.b. No Action Taken.
File C:\WINDOWS\system32\nsvsvc\nsv.ocx tagged as not-a-virus:AdWare.Win32.DelphinMediaViewer.c. No Action Taken.
File C:\WINDOWS\system32\vmss\vmss.exe tagged as not-a-virus:AdWare.Win32.DelphinMediaViewer.c. No Action Taken.
File C:\WINDOWS\Temp\Adware\DelFinMediaViewer29j.exe tagged as not-a-virus:AdWare.Win32.DelphinMediaViewer.d. No Action Taken.
File C:\WINDOWS\Temp\Adware\SaveNowInst.exe tagged as not-a-virus:AdWare.Win32.SaveNow.ar. No Action Taken.
File C:\WINDOWS\Temp\Brilliant\b3d3200package.cab tagged as not-a-virus:AdWare.Win32.BrilliantDigital.1007. No Action Taken.
File C:\WINDOWS\Temp\Brilliant\b3dsetup.exe tagged as not-a-virus:AdWare.Win32.BrilliantDigital.1100. No Action Taken.
File C:\WINDOWS\Temp\Brilliant\bdedownloader.dll tagged as not-a-virus:AdWare.Win32.BrilliantDigital.3039. No Action Taken.
File C:\WINDOWS\Temp\Brilliant\bdefdi.dll tagged as not-a-virus:AdWare.Win32.Altnet.k. No Action Taken.
File C:\WINDOWS\Temp\Brilliant\bdeinsta25.dll tagged as not-a-virus:AdWare.Win32.Altnet.a. No Action Taken.
File C:\WINDOWS\Temp\setup4.exe tagged as not-a-virus:AdWare.Win32.IEDriver.a. No Action Taken.
File C:\WINDOWS\unist2.exe tagged as not-a-virus:AdWare.Win32.ShopNav.l. No Action Taken.

Que faire maintenant ? merci de votre collaboration
0
Réponse 4 / 4
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275
14 janv. 2007 à 17:21
Salut

Dans ajout/supp des programmes supprime ==> New Do Net

*Vous devez télécharger et installer un antispyware ! A titre d'exemple, je vous propose Spybot Search & Destroy car il supprime très bien ce malware !

=============
B - spybot version 1.4
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo d utilisation
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
=============

*Une fois le logiciel installé, mettez-le à jour !

*Démarrez en mode sans échec
(au redémarrage de l'ordinateur, une fois le chargement du BIOS terminé, il y a un écran noir qui apparaît rapidement, appuyer sur la touche [F8] ou [F5] jusqu'à l'affichage du menu des options avancées de Windows. Sélectionner "Mode sans échec" et appuyer sur [Entrée].)

*scannez votre système avec Spybot !

Il devrait sans problème supprimer le dossier néfaste C:\PROGRA~1\NEWDOT~1!
Dans le cas où il n'aurait pas supprimé la dll en cours d'utilisation, Spybot vous proposera un nouveau scan au prochain démarrage du système, juste avant le lancement du bureau de windows, acceptez cette demande.



Au cas où tu perdrais ta connexion

télécharge ceci, éventuellement d un autre pc

http://babin.nelly.free.fr/WinsockFix.zip

Installe le et exécute le, ça va rétablir ta connexion

0

Discussions similaires

comment lire des bd gratuitement en ligne sur internet ?
theodu13480 -
Ereka -

2 réponses
Problème lecture Scan manga
léa -
nagisa_hl -

14 réponses
scan comics
daraen -
dsyren -

1 réponse
a qu'el tome s'arette l'animé de nana
mira13015 -
nina -

7 réponses
Amazon (dhl) Suivre le colis
mrbanne -
piquesous -

3 réponses