Infecté par virus trojan-dowloader.win32

Résolu
edom Messages postés 228 Statut Membre -  
green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   -
Bonsoir à vous,j'ai fais un scan en ligne avec Kaspersky et mon pc a 2 virus trojan,comment m'en debarrassé,merci à vous d'avance @+ de vous relire.
Configuration: Windows XP
Firefox 2.0.0.1

6 réponses

  1. edom Messages postés 228 Statut Membre 6
     
    voici mon hijack
    Logfile of HijackThis v1.99.1
    Scan saved at 00:37:16, on 19/02/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\csrss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
    c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
    c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe
    C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
    c:\APPS\HIDSERVICE\HIDSERVICE.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\Program Files\Spyware Doctor\sdhelp.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\wdfmgr.exe
    c:\APPS\Powercinema\Kernel\TV\CLSched.exe
    C:\WINDOWS\System32\alg.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\wscntfy.exe
    C:\PROGRA~1\GOTOSO~1\VADERE~1\Vaderetro_oe.exe
    C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Fichiers communs\Ahead\Lib\NMFirstStart.exe
    C:\Program Files\Fichiers communs\Ahead\lib\NMIndexStoreSvr.exe
    C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Program Files\Wanadoo\EspaceWanadoo.exe
    C:\Program Files\Wanadoo\ComComp.exe
    C:\Program Files\Wanadoo\Watch.exe
    C:\PROGRA~1\MOZILL~2\FIREFOX.EXE
    C:\Program Files\Mozilla Thunderbird\thunderbird.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    D:\DOCUME~1\ERIC11~1.000\LOCALS~1\Temp\Répertoire temporaire 3 pour hijackthis.zip\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://format.packardbell.com/cgi-bin/redirect/?country=FR&range=AD&phase=6&key=SEARCH
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = file://C:\APPS\IE\offline\fr.htm
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
    O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
    O3 - Toolbar: Barre d'outils MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.2607.0\fr\msntb.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [Vade Retro Outlook Express] "C:\PROGRA~1\GOTOSO~1\VADERE~1\Vaderetro_oe.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
    O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
    O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
    O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
    O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
    O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm
    O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
    O17 - HKLM\System\CCS\Services\Tcpip\..\{38163BBF-591D-4371-AFA6-F7DA51130550}: NameServer = 80.10.246.5 80.10.246.136
    O17 - HKLM\System\CS1\Services\Tcpip\..\{38163BBF-591D-4371-AFA6-F7DA51130550}: NameServer = 80.10.246.5 80.10.246.136
    O18 - Protocol: bw+0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O18 - Protocol: offline-8876480 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
    O23 - Service: CyberLink Media Library Service - Cyberlink - c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe
    O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
    O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
    O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
    0
    1. edom Messages postés 228 Statut Membre 6
       
      Et voici ,le resultat du scan en ligne:
      KASPERSKY ON-LINE SCANNER REPORT
      Monday, February 19, 2007 3:20:19 AM
      Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
      Kaspersky On-line Scanner version : 5.0.83.0
      Dernière mise à jour de la base antivirus Kaspersky : 19/02/2007
      Enregistrements dans la base antivirus Kaspersky : 254164
      Paramètres d'analyse
      Analyser avec la base antivirus suivante standard
      Analyser les archives vrai
      Analyser les bases de messagerie vrai
      Cible de l'analyse Poste de travail
      C:\
      D:\
      E:\
      F:\
      Statistiques de l'analyse
      Total d'objets analysés 58854
      Nombre de virus trouvés 2
      Nombre d'objets infectés 3 / 0
      Nombre d'objets suspects 0
      Durée de l'analyse 01:35:49

      Nom de l'objet infecté Nom du virus Dernière action
      C:\APPS\Powercinema\Kernel\CLML_NTService\CLML_MAIN\CLML.db L'objet est verrouillé ignoré
      C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP137\A0028128.exe Infecté : Backdoor.Win32.VB.rg ignoré
      C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP137\A0028129.exe Infecté : Backdoor.Win32.VB.rg ignoré
      C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP137\A0028130.exe Infecté : Trojan-Downloader.Win32.VB.fi ignoré
      C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP138\change.log L'objet est verrouillé ignoré
      C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
      C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
      C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
      C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré
      C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
      C:\WINDOWS\system32\config\DEFAULT L'objet est verrouillé ignoré
      C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
      C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
      C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
      C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
      C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
      C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
      C:\WINDOWS\system32\config\SOFTWARE L'objet est verrouillé ignoré
      C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
      C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
      C:\WINDOWS\system32\config\SYSTEM L'objet est verrouillé ignoré
      C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
      C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré
      C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
      C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
      C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
      C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
      C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
      C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
      C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
      C:\WINDOWS\Temp\CLML_AGENT_LOG1.txt L'objet est verrouillé ignoré
      C:\WINDOWS\Temp\sqlite_nI6dRDsfkbTo9y7 L'objet est verrouillé ignoré
      C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré
      C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré
      C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré
      D:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré
      D:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré
      D:\Documents and Settings\ERIC.111583040304.000\Cookies\index.dat L'objet est verrouillé ignoré
      D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Application Data\Ahead\Nero Home\bl.db L'objet est verrouillé ignoré
      D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Application Data\Ahead\Nero Home\bl.db-journal L'objet est verrouillé ignoré
      D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Application Data\Ahead\Nero Home\indexstore.db L'objet est verrouillé ignoré
      D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Application Data\Ahead\Nero Home\indexstore.db-journal L'objet est verrouillé ignoré
      D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
      D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
      D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
      D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Temp\sqlite_qTffceqrHWu2iNH L'objet est verrouillé ignoré
      D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
      D:\Documents and Settings\ERIC.111583040304.000\NTUSER.DAT L'objet est verrouillé ignoré
      D:\Documents and Settings\ERIC.111583040304.000\ntuser.dat.LOG L'objet est verrouillé ignoré
      D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
      D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
      D:\Documents and Settings\LocalService.AUTORITE NT.001\NTUSER.DAT L'objet est verrouillé ignoré
      D:\Documents and Settings\LocalService.AUTORITE NT.001\ntuser.dat.LOG L'objet est verrouillé ignoré
      D:\Documents and Settings\NetworkService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
      D:\Documents and Settings\NetworkService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
      D:\Documents and Settings\NetworkService.AUTORITE NT.001\NTUSER.DAT L'objet est verrouillé ignoré
      D:\Documents and Settings\NetworkService.AUTORITE NT.001\ntuser.dat.LOG L'objet est verrouillé ignoré
      D:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
      D:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP138\change.log L'objet est verrouillé ignoré
      Analyse terminée.
      0
      1. edom Messages postés 228 Statut Membre 6 > edom Messages postés 228 Statut Membre
         
        Salut,personne pour m'aidé svp@+
        0
  2. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    # Télécharge ceci: (merci a S!RI pour ce petit programme).

    http://siri.urz.free.fr/Fix/SmitfraudFix.zip

    Exécute le, Double click sur Smitfraudfix.cmd choisit l’option 1,
    voila a quoi cela ressemble : http://siri.urz.free.fr/Fix/SmitfraudFix.php
    il va générer un rapport : copie/colle le sur le poste stp.

    ++
    0
    1. edom Messages postés 228 Statut Membre 6
       
      Voila:
      SmitFraudFix v2.142

      Rapport fait à 13:47:52,91, 19/02/2007
      Executé à partir de D:\Documents and Settings\ERIC.111583040304.000\Bureau\SmitfraudFix\SmitfraudFix
      OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
      Le type du système de fichiers est NTFS
      Fix executé en mode normal

      »»»»»»»»»»»»»»»»»»»»»»»» hosts


      »»»»»»»»»»»»»»»»»»»»»»»» D:\


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


      »»»»»»»»»»»»»»»»»»»»»»»» D:\Documents and Settings\ERIC.111583040304.000


      »»»»»»»»»»»»»»»»»»»»»»»» D:\Documents and Settings\ERIC.111583040304.000\Application Data


      »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


      »»»»»»»»»»»»»»»»»»»»»»»» D:\DOCUME~1\ERIC11~1.000\Favoris


      »»»»»»»»»»»»»»»»»»»»»»»» Bureau


      »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


      »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


      »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

      [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
      "Source"="About:Home"
      "SubscribedURL"="About:Home"
      "FriendlyName"="Ma page d'accueil"


      »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      SrchSTS.exe by S!Ri
      Search SharedTaskScheduler's .dll


      »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
      "AppInit_DLLs"=""


      »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
      "System"=""


      »»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32-huy32


      »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


      »»»»»»»»»»»»»»»»»»»»»»»» Fin
      0
      1. edom Messages postés 228 Statut Membre 6 > edom Messages postés 228 Statut Membre
         
        Vous en pensez quoi alors?
        0
  3. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    re

    il est clean, fais les manip de ce lien stp :

    virus methode preliminaire de desinfection version fr

    @+
    0
    1. edom Messages postés 228 Statut Membre 6
       
      Salut green day,tu dit qu'il est clean,comment cela se fair que kaspersky me trouve des bêbêtes alors?Sinon j'ai fait spybot et Ccleanner et j'ai refais un scan idem toujours infecté @+ de te relire.
      0
  4. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    re

    smitfraud, c'était pour verifier s'il y avait un certain type de bébéte, il n'y en a aucune, donc c'est plutôt une bonne chose ...

    fais les manips du lien stp, ça va nettoyer pas mal et poste les rapports stp

    ++
    0
    1. edom Messages postés 228 Statut Membre 6
       
      Salut green day bon voici le rapport d'avg:
      ---------------------------------------------------------
      AVG Anti-Spyware - Rapport d'analyse
      ---------------------------------------------------------

      + Créé à: 15:19:13 20/02/2007

      + Résultat de l'analyse:



      :mozilla.8:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
      :mozilla.104:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.65:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
      :mozilla.34:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
      :mozilla.35:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
      :mozilla.60:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Adviva : Aucune action entreprise.
      :mozilla.31:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
      :mozilla.21:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
      :mozilla.20:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Estat : Aucune action entreprise.
      :mozilla.41:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Hitbox : Aucune action entreprise.
      :mozilla.42:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Hitbox : Aucune action entreprise.
      :mozilla.43:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Hitbox : Aucune action entreprise.
      :mozilla.66:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
      :mozilla.23:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
      :mozilla.24:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
      :mozilla.25:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
      :mozilla.53:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
      :mozilla.54:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
      :mozilla.36:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
      :mozilla.37:D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.


      Fin du rapport

      je vais faire un scan en ligne et ensuite je post l'hijack,merci.
      0
      1. edom Messages postés 228 Statut Membre 6 > edom Messages postés 228 Statut Membre
         
        Resalut bon je n'ai pas pu faire un scan avec bit defender donc j'ai pris kaspersky et idem toujours infecté:
        KASPERSKY ON-LINE SCANNER REPORT
        Tuesday, February 20, 2007 5:25:20 PM
        Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
        Kaspersky On-line Scanner version : 5.0.83.0
        Dernière mise à jour de la base antivirus Kaspersky : 20/02/2007
        Enregistrements dans la base antivirus Kaspersky : 255760


        Paramètres d'analyse
        Analyser avec la base antivirus suivante standard
        Analyser les archives vrai
        Analyser les bases de messagerie vrai

        Cible de l'analyse Poste de travail
        C:\
        D:\
        E:\

        Statistiques de l'analyse
        Total d'objets analysés 58333
        Nombre de virus trouvés 2
        Nombre d'objets infectés 3 / 0
        Nombre d'objets suspects 0
        Durée de l'analyse 01:15:35

        Nom de l'objet infecté Nom du virus Dernière action
        C:\APPS\Powercinema\Kernel\CLML_NTService\CLML_MAIN\CLML.db L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\BWDocMap.pht L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\BWInfopakMap.pht L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\chandir.dat L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\chandir.idx L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\chn.dat L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\chn.idx L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\D0000000.FCS L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\inuse.txt L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\L0000003.FCS L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\main.log L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\prs.dat L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\prs.idx L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\prs_die.dat L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\prs_die.idx L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\prs_dnd.dat L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\prs_dnd.idx L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\prs_ext.dat L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\prs_ext.idx L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\prs_rcv.dat L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\prs_rcv.idx L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\storydb.dat L'objet est verrouillé ignoré

        C:\Program Files\Logitech\Desktop Messenger\8876480\Users\ERIC\Data\storydb.idx L'objet est verrouillé ignoré

        C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP137\A0028128.exe Infecté : Backdoor.Win32.VB.rg ignoré

        C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP137\A0028129.exe Infecté : Backdoor.Win32.VB.rg ignoré

        C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP137\A0028130.exe Infecté : Trojan-Downloader.Win32.VB.fi ignoré

        C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP140\change.log L'objet est verrouillé ignoré

        C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré

        C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré

        C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré

        C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré

        C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré

        C:\WINDOWS\system32\config\DEFAULT L'objet est verrouillé ignoré

        C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré

        C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré

        C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré

        C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré

        C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré

        C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré

        C:\WINDOWS\system32\config\SOFTWARE L'objet est verrouillé ignoré

        C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré

        C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré

        C:\WINDOWS\system32\config\SYSTEM L'objet est verrouillé ignoré

        C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré

        C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré

        C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré

        C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré

        C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré

        C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré

        C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré

        C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré

        C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré

        C:\WINDOWS\Temp\CLML_AGENT_LOG1.txt L'objet est verrouillé ignoré

        C:\WINDOWS\Temp\sqlite_dzEe2sqVgzzo5Fw L'objet est verrouillé ignoré

        C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré

        C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré

        C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré

        D:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré

        D:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\cert8.db L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\formhistory.dat L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\history.dat L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\key3.db L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\parent.lock L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\search.sqlite L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\urlclassifier2.sqlite L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Thunderbird\Profiles\zttdlbfd.default\abook.mab L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Thunderbird\Profiles\zttdlbfd.default\cert8.db L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Thunderbird\Profiles\zttdlbfd.default\key3.db L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Thunderbird\Profiles\zttdlbfd.default\Mail\Local Folders\Inbox.msf L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Thunderbird\Profiles\zttdlbfd.default\Mail\Local Folders\Templates.msf L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Thunderbird\Profiles\zttdlbfd.default\Mail\Local Folders\Trash.msf L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Thunderbird\Profiles\zttdlbfd.default\panacea.dat L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Application Data\Thunderbird\Profiles\zttdlbfd.default\parent.lock L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Cookies\index.dat L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Application Data\AOL\UserProfiles\All Users\cls\common.cls L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\Cache\_CACHE_001_ L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\Cache\_CACHE_002_ L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\Cache\_CACHE_003_ L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Application Data\Mozilla\Firefox\Profiles\260duyj7.default\Cache\_CACHE_MAP_ L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Historique\History.IE5\MSHist012007022020070221\index.dat L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\NTUSER.DAT L'objet est verrouillé ignoré

        D:\Documents and Settings\ERIC.111583040304.000\ntuser.dat.LOG L'objet est verrouillé ignoré

        D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré

        D:\Documents and Settings\LocalService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré

        D:\Documents and Settings\LocalService.AUTORITE NT.001\NTUSER.DAT L'objet est verrouillé ignoré

        D:\Documents and Settings\LocalService.AUTORITE NT.001\ntuser.dat.LOG L'objet est verrouillé ignoré

        D:\Documents and Settings\NetworkService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré

        D:\Documents and Settings\NetworkService.AUTORITE NT.001\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré

        D:\Documents and Settings\NetworkService.AUTORITE NT.001\NTUSER.DAT L'objet est verrouillé ignoré

        D:\Documents and Settings\NetworkService.AUTORITE NT.001\ntuser.dat.LOG L'objet est verrouillé ignoré

        D:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré

        D:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP140\change.log L'objet est verrouillé ignoré

        Analyse terminée.
        0
      2. edom Messages postés 228 Statut Membre 6 > edom Messages postés 228 Statut Membre
         
        Et revoici mon hitjack:
        Logfile of HijackThis v1.99.1
        Scan saved at 17:31:34, on 20/02/2007
        Platform: Windows XP SP2 (WinNT 5.01.2600)
        MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

        Running processes:
        C:\WINDOWS\System32\smss.exe
        C:\WINDOWS\system32\csrss.exe
        C:\WINDOWS\system32\winlogon.exe
        C:\WINDOWS\system32\services.exe
        C:\WINDOWS\system32\lsass.exe
        C:\WINDOWS\system32\svchost.exe
        C:\WINDOWS\system32\svchost.exe
        C:\WINDOWS\System32\svchost.exe
        C:\WINDOWS\system32\svchost.exe
        C:\WINDOWS\system32\svchost.exe
        C:\WINDOWS\system32\spoolsv.exe
        C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
        C:\WINDOWS\Explorer.EXE
        c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
        c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe
        C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
        c:\APPS\HIDSERVICE\HIDSERVICE.exe
        C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
        C:\Program Files\Spyware Doctor\sdhelp.exe
        C:\WINDOWS\system32\svchost.exe
        C:\WINDOWS\system32\wdfmgr.exe
        c:\APPS\Powercinema\Kernel\TV\CLSched.exe
        C:\PROGRA~1\GOTOSO~1\VADERE~1\Vaderetro_oe.exe
        C:\WINDOWS\system32\wscntfy.exe
        C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
        C:\WINDOWS\System32\alg.exe
        C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
        C:\PROGRA~1\Wanadoo\CnxMon.exe
        C:\WINDOWS\system32\VTTimer.exe
        C:\APPS\Powercinema\PCMService.exe
        C:\PROGRA~1\MESSAG~1\StartMessager.exe
        C:\Program Files\Logitech\MouseWare\system\em_exec.exe
        C:\Program Files\Fichiers communs\AOL\1166446469\ee\AOLSoftware.exe
        C:\WINDOWS\system32\ctfmon.exe
        C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
        C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
        C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
        C:\Program Files\Wanadoo\EspaceWanadoo.exe
        C:\Program Files\Wanadoo\ComComp.exe
        C:\Program Files\Wanadoo\Watch.exe
        C:\Program Files\Mozilla Firefox\firefox.exe
        D:\DOCUME~1\ERIC11~1.000\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe

        R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.orange.fr/portail
        R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
        R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
        R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
        R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
        O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
        O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
        O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
        O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
        O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
        O3 - Toolbar: Barre d'outils MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.2607.0\fr\msntb.dll
        O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
        O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
        O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
        O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
        O4 - HKLM\..\Run: [Vade Retro Outlook Express] "C:\PROGRA~1\GOTOSO~1\VADERE~1\Vaderetro_oe.exe"
        O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
        O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe
        O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
        O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
        O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\Wanadoo\CnxMon.exe
        O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
        O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
        O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
        O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
        O4 - HKLM\..\Run: [PCMService] "c:\APPS\Powercinema\PCMService.exe"
        O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
        O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
        O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
        O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
        O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
        O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
        O4 - HKLM\..\Run: [IS CfgWiz] C:\Program Files\Norton Internet Security\cfgwiz.exe /GUID {F073BDC9-0D67-4ff0-879E-27241C843828} /MODE CfgWiz /CMDLINE "REBOOT"
        O4 - HKLM\..\Run: [IPHSend] C:\Program Files\Fichiers communs\AOL\IPHSend\IPHSend.exe
        O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1166446469\ee\AOLSoftware.exe
        O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
        O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
        O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
        O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
        O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
        O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
        O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
        O4 - HKCU\..\Run: [Aim6] "C:\Program Files\Fichiers communs\AOL\Launch\AOLLaunch.exe" /d locale=fr-FR ee://aol/imApp
        O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
        O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
        O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
        O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
        O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
        O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
        O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
        O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm
        O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
        O17 - HKLM\System\CCS\Services\Tcpip\..\{38163BBF-591D-4371-AFA6-F7DA51130550}: NameServer = 80.10.246.5 80.10.246.136
        O17 - HKLM\System\CS1\Services\Tcpip\..\{38163BBF-591D-4371-AFA6-F7DA51130550}: NameServer = 80.10.246.5 80.10.246.136
        O18 - Protocol: bw+0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw+0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw-0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw-0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw00 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw00s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw10 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw10s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw20 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw20s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw30 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw30s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw40 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw40s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw50 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw50s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw60 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw60s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw70 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw70s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw80 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw80s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw90 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bw90s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwa0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwa0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwb0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwb0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwc0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwc0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwd0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwd0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwe0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwe0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwf0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwf0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
        O18 - Protocol: bwg0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwg0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwh0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwh0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwi0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwi0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwj0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwj0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwk0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwk0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwl0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwl0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwm0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwm0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwn0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwn0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwo0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwo0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwp0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwp0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwq0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwq0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwr0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwr0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bws0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bws0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwt0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwt0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwu0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwu0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwv0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwv0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bww0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bww0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwx0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwx0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwy0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwy0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwz0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: bwz0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
        O18 - Protocol: offline-8876480 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
        O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
        O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
        O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
        O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
        O23 - Service: CyberLink Media Library Service - Cyberlink - c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe
        O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
        O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
        O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe

        voila que doit je faire maintenant green day,@+ de te relire et merci pour ton devouement.
        0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    re

    # Désactiver la Restauration du système

    * Cliquez sur le bouton Démarrer.
    * Cliquez avec le bouton droit de la souris sur Poste de travail puis cliquez sur Propriétés.
    * Dans l'onglet Restauration du système, sélectionnez l'option Désactiver la Restauration du système ou Désactiver la Restauration du système sur tous les lecteurs

    ( tu pourras la réactivé à la fin de la manip )

    # Relance HijackThis : choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked" :

    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe

    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [PCMService] "c:\APPS\Powercinema\PCMService.exe"
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe

    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe

    O18 - Protocol: bw+0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O18 - Protocol: offline-8876480 - {27E80AB3-38AB-4937-945A-1DE46C10D28E} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

    télécharge et execute ceci ( si tu ne les as pas déjà ) :

    * CleanUp40 (qui élimine les fichiers temporaires + cookies : gratuit )
    http://pageperso.aol.fr/Balltrap34/CleanUp40.exe

    tuto : (merci à Balltrap) http://pageperso.aol.fr/balltrap34/democleanup.htm

    * Ccleaner : Telecharge et installe ceci, dans la colonne de gauche clique sur "erreurs" coche toute les cases, puis clique en bas sur "chercher des erreurs" une fois finit, clique sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs .

    *Relance Ccleaner ,vas dans l'onglet "nettoyeur" present sur la gauche, decoche la derniere case (Avancé si elle
    est cochée) puis clique sur "lancer le nettoyage"

    ccleaner

    tuto: https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php

    @+

    La sagesse, c'est d'avoir des rêves suffisamment grands pour ne pas les
    perdre de vue lorsqu'on les poursuit. (Oscar Wilde)
    0
    1. edom Messages postés 228 Statut Membre 6
       
      Voila impeccable,tout est rentré dans l'ordre ,vraiment 1000 mercis green day pour ton devouement et ton savoir faire @+
      0
  7. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    pas d'quoi :-)

    @+

    0