Pub intempestive

Résolu
magicien10024 Messages postés 3317 Statut Membre -  
 Utilisateur anonyme -
Bonjour,


après avoir effectué toutes les procédures suggéré , je n' arrive pas a supprimer ses pub


même dans --> option internet --> contenu --> éditeurs

je supprime les adresses --> electronic group mais elles revienent


merci de bien vouloir me suggérer la marche à suivre


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:42:46, on 06/08/2008
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Glary Utilities\Integrator.exe
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\documents and settings\magicien\local settings\application data\uuwucgw.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\magicien\Mes documents\clin d'oeil\HiJackThis(2).exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.minet.net:81
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Burn4Free Toolbar Helper - {D187A56B-A33F-4CBE-9D77-459FC0BAE012} - C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Burn4Free_Toolbar.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: Burn4Free Toolbar - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Burn4Free_Toolbar.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [uuwucgw] c:\documents and settings\magicien\local settings\application data\uuwucgw.exe uuwucgw
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - ProtocolDefaults: '@ivt' protocol is in My Computer Zone, should be Intranet Zone
O15 - ProtocolDefaults: 'file' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'ftp' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'https' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: '@ivt' protocol is in My Computer Zone, should be Intranet Zone (HKLM)
O15 - ProtocolDefaults: 'file' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'ftp' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'https' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O18 - Protocol: bw+0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
A voir également:

43 réponses

Précédent
Réponse 21 / 43
Utilisateur anonyme
 
attention avant le pourcentage ->%programfiles%\Lopxp\Lopxp.bat" /Fixme il faut mettre un "
0
magicien10024 Messages postés 3317 Statut Membre 283
 
oui bien sur , j'ai essayé cette possibilité mais c'est pareil
0
Réponse 22 / 43
Utilisateur anonyme
 
bon laisse tomber tu est le premeir a me dire que cela ne marche pas, pas grave

prend ce lien

https://sites.google.com/site/eric71mespages/lop.sd.exe

et fait l'option 1 ensuite poste le rapport
0
Réponse 23 / 43
magicien10024 Messages postés 3317 Statut Membre 283
 
je ne comprends pas non plus


je te joints le rapport suivant




--------------------\\ Lop S&D 4.2.2-5 XP/Vista

[ Windows XP (NT 5.1) Build 2600 ]
[ USER : magicien ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 07/08/2008 | 12:19:19,59 ] [ PC : X-AEWJQHVKSXFJV ]
[ MAJ : 01-08-2008 | 01:40 ]

--------------------\\ Listing des dossiers dans APPLIC~1

[07/03/2008|15:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.zreglib
[05/06/2008|12:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Acronis
[11/02/2008|19:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[21/04/2008|21:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[07/04/2008|03:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[20/02/2008|17:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[19/12/2007|06:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[05/08/2008|16:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[23/06/2008|15:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[06/08/2008|08:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[25/12/2007|02:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
[17/06/2008|15:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[24/06/2008|13:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[04/07/2008|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia
[31/03/2008|12:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[19/12/2007|21:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[01/01/2008|21:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[19/12/2007|03:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[14/06/2008|13:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OrbNetworks
[11/01/2008|01:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[26/04/2008|18:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Raxco
[10/04/2008|16:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[11/05/2008|10:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[02/08/2008|08:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[31/12/2007|03:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[21/05/2008|15:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip

[05/08/2008|16:50] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[05/08/2008|15:31] C:\DOCUME~1\DEFAUL~1\APPLIC~1\DivX
[19/12/2007|00:07] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[13/05/2008|12:32] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[04/07/2008|16:51] C:\DOCUME~1\magicien\APPLIC~1\.k3d
[13/01/2008|20:02] C:\DOCUME~1\magicien\APPLIC~1\Adobe
[21/04/2008|21:27] C:\DOCUME~1\magicien\APPLIC~1\Apple Computer
[19/12/2007|02:18] C:\DOCUME~1\magicien\APPLIC~1\ATI
[03/05/2008|02:59] C:\DOCUME~1\magicien\APPLIC~1\Basta Computing
[19/12/2007|05:51] C:\DOCUME~1\magicien\APPLIC~1\Bitdefender
[04/04/2008|22:08] C:\DOCUME~1\magicien\APPLIC~1\CVitae
[18/12/2007|23:56] C:\DOCUME~1\magicien\APPLIC~1\desktop.ini
[10/06/2008|21:24] C:\DOCUME~1\magicien\APPLIC~1\Desktopicon
[23/12/2007|14:59] C:\DOCUME~1\magicien\APPLIC~1\DivX
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\ezpinst.exe
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\ezplay.cat
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\ezplay.sys
[13/05/2008|11:54] C:\DOCUME~1\magicien\APPLIC~1\FileMaker
[30/04/2008|02:52] C:\DOCUME~1\magicien\APPLIC~1\FileSubmit
[12/05/2008|20:16] C:\DOCUME~1\magicien\APPLIC~1\FrostWire
[08/05/2008|11:45] C:\DOCUME~1\magicien\APPLIC~1\GlarySoft
[06/08/2008|08:37] C:\DOCUME~1\magicien\APPLIC~1\Grisoft
[26/05/2008|01:26] C:\DOCUME~1\magicien\APPLIC~1\gtopala
[19/12/2007|18:44] C:\DOCUME~1\magicien\APPLIC~1\Help
[19/12/2007|00:13] C:\DOCUME~1\magicien\APPLIC~1\Identities
[25/01/2008|00:02] C:\DOCUME~1\magicien\APPLIC~1\InfraRecorder
[02/04/2008|14:30] C:\DOCUME~1\magicien\APPLIC~1\InstallShield
[04/01/2008|03:46] C:\DOCUME~1\magicien\APPLIC~1\InterVideo
[06/05/2008|12:09] C:\DOCUME~1\magicien\APPLIC~1\KillProcess
[06/08/2008|23:44] C:\DOCUME~1\magicien\APPLIC~1\LimeWire
[02/08/2008|14:12] C:\DOCUME~1\magicien\APPLIC~1\Macromedia
[04/07/2008|19:42] C:\DOCUME~1\magicien\APPLIC~1\Microsoft
[20/06/2008|12:29] C:\DOCUME~1\magicien\APPLIC~1\Mozilla
[26/05/2008|01:53] C:\DOCUME~1\magicien\APPLIC~1\MSN6
[03/04/2008|20:44] C:\DOCUME~1\magicien\APPLIC~1\ntr
[07/07/2008|12:43] C:\DOCUME~1\magicien\APPLIC~1\Participatory Culture Foundation
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\pcouffin.cat
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\pcouffin.inf
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\pcouffin.log
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\pcouffin.sys
[26/06/2008|10:53] C:\DOCUME~1\magicien\APPLIC~1\plan 01 cake
[17/04/2008|14:18] C:\DOCUME~1\magicien\APPLIC~1\Real
[27/07/2008|21:27] C:\DOCUME~1\magicien\APPLIC~1\ShredderChess
[21/12/2007|01:11] C:\DOCUME~1\magicien\APPLIC~1\Sun
[21/12/2007|19:51] C:\DOCUME~1\magicien\APPLIC~1\vlc
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\Vso
[20/02/2008|14:21] C:\DOCUME~1\magicien\APPLIC~1\VSRevoGroup
[31/05/2008|00:02] C:\DOCUME~1\magicien\APPLIC~1\WinPatrol
[23/12/2007|12:47] C:\DOCUME~1\magicien\APPLIC~1\WinRAR
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\WSMJHKZP.inf
[07/03/2008|17:21] C:\DOCUME~1\magicien\APPLIC~1\WSMJHKZP.ini
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\WSMJHKZP.log

[13/05/2008|12:32] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[07/08/2008 12:00][--ah-----] C:\WINDOWS\tasks\AB98D61A91BF4BD2.job
[07/08/2008 09:39][--a------] C:\WINDOWS\tasks\GlaryInitialize.job
[25/07/2008 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[07/08/2008 09:37][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

( AB98D61A91BF4BD2.job )=( c:\docume~1\magicien\applic~1\plan01~1\lessstupidactive.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[23/07/2008|12:59] C:\Program Files\Adobe
[25/04/2008|20:46] C:\Program Files\AGEIA Technologies
[02/08/2008|12:28] C:\Program Files\AIDA32 - Personal System Information
[11/01/2008|01:55] C:\Program Files\Apple Software Update
[12/05/2008|20:16] C:\Program Files\AskSBar
[16/01/2008|00:21] C:\Program Files\ATI Technologies
[26/06/2008|10:38] C:\Program Files\BitDownload
[08/03/2008|11:35] C:\Program Files\Burn4Free Toolbar
[01/07/2008|14:13] C:\Program Files\burnatonce
[03/06/2008|16:26] C:\Program Files\Cain
[22/12/2007|21:06] C:\Program Files\CCleaner
[05/08/2008|18:48] C:\Program Files\CleanUp!
[05/08/2008|18:11] C:\Program Files\C-Media 3D Audio
[24/06/2008|15:09] C:\Program Files\CodeStuff
[19/12/2007|00:04] C:\Program Files\ComPlus Applications
[09/04/2008|22:52] C:\Program Files\Conduit
[04/01/2008|03:37] C:\Program Files\Creative
[09/06/2008|09:45] C:\Program Files\CursorXP
[30/06/2008|12:02] C:\Program Files\directx
[24/06/2008|12:27] C:\Program Files\DynGate
[13/05/2008|12:45] C:\Program Files\Electronic Arts
[02/08/2008|08:56] C:\Program Files\epson
[04/07/2008|19:41] C:\Program Files\Fichiers communs
[09/05/2008|23:32] C:\Program Files\Free Create-Burn ISO Image
[08/05/2008|11:44] C:\Program Files\Glary Utilities
[06/08/2008|08:37] C:\Program Files\Grisoft
[02/08/2008|08:57] C:\Program Files\InstallShield Installation Information
[04/01/2008|03:37] C:\Program Files\InterActual
[20/06/2008|08:12] C:\Program Files\Internet Explorer
[04/01/2008|03:57] C:\Program Files\InterVideo
[10/06/2008|17:50] C:\Program Files\Java
[05/08/2008|19:32] C:\Program Files\Lavasoft
[01/07/2008|14:10] C:\Program Files\LimeWire
[21/12/2007|14:01] C:\Program Files\Logitech
[05/08/2008|18:54] C:\Program Files\ma-config.com
[05/08/2008|16:57] C:\Program Files\Messenger
[02/04/2008|15:51] C:\Program Files\Messenger Plus! Live
[16/06/2008|20:37] C:\Program Files\MessengerDiscovery
[19/12/2007|00:08] C:\Program Files\microsoft frontpage
[19/12/2007|02:24] C:\Program Files\Microsoft.NET
[19/12/2007|00:06] C:\Program Files\Movie Maker
[07/08/2008|12:03] C:\Program Files\Mozilla Firefox
[05/08/2008|19:08] C:\Program Files\Mozilla Firefox 3 Beta 5
[05/08/2008|18:54] C:\Program Files\Mozilla Firefox(2)
[19/12/2007|03:37] C:\Program Files\MSN
[19/12/2007|00:04] C:\Program Files\MSN Gaming Zone
[15/06/2008|23:22] C:\Program Files\MSN Messenger
[03/06/2008|15:58] C:\Program Files\mst software
[06/08/2008|15:51] C:\Program Files\Navilog1
[19/12/2007|00:05] C:\Program Files\NetMeeting
[23/02/2008|12:18] C:\Program Files\Optimisation Windows
[02/04/2008|13:42] C:\Program Files\Orange
[19/12/2007|00:05] C:\Program Files\Outlook Express
[07/07/2008|12:42] C:\Program Files\Participatory Culture Foundation
[11/01/2008|01:55] C:\Program Files\QuickTime
[31/03/2008|12:08] C:\Program Files\Runtime Software
[02/04/2008|14:31] C:\Program Files\SAGEM
[02/04/2008|14:30] C:\Program Files\Securitoo
[19/12/2007|00:04] C:\Program Files\Services en ligne
[19/12/2007|05:50] C:\Program Files\Softwin
[10/04/2008|16:13] C:\Program Files\Spybot - Search & Destroy
[29/04/2008|02:05] C:\Program Files\Trust
[15/01/2008|15:21] C:\Program Files\Universal
[19/12/2007|01:51] C:\Program Files\VIA
[20/02/2008|14:16] C:\Program Files\VS Revo Group
[18/06/2008|16:43] C:\Program Files\Winamp Remote
[07/04/2008|17:18] C:\Program Files\windirstat
[21/12/2007|13:33] C:\Program Files\Windows Live
[03/04/2008|12:18] C:\Program Files\Windows Live Safety Center
[05/08/2008|17:02] C:\Program Files\Windows Media Player
[19/12/2007|00:04] C:\Program Files\Windows NT
[05/08/2008|17:12] C:\Program Files\WindowsUpdate
[18/06/2008|13:49] C:\Program Files\WinRAR
[19/12/2007|00:08] C:\Program Files\xerox
[22/06/2008|23:19] C:\Program Files\ZNsoft Corporation

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[11/02/2008|19:24] C:\Program Files\Fichiers communs\Adobe
[19/12/2007|02:24] C:\Program Files\Fichiers communs\DESIGNER
[19/12/2007|18:55] C:\Program Files\Fichiers communs\DirectX
[02/04/2008|13:39] C:\Program Files\Fichiers communs\France Telecom
[19/12/2007|02:02] C:\Program Files\Fichiers communs\InstallShield
[04/01/2008|03:57] C:\Program Files\Fichiers communs\InterVideo
[19/12/2007|06:20] C:\Program Files\Fichiers communs\Java
[22/12/2007|21:03] C:\Program Files\Fichiers communs\Logitech
[04/07/2008|19:45] C:\Program Files\Fichiers communs\Macromedia
[15/02/2008|12:27] C:\Program Files\Fichiers communs\Microsoft Shared
[19/12/2007|00:05] C:\Program Files\Fichiers communs\MSSoap
[18/12/2007|23:57] C:\Program Files\Fichiers communs\ODBC
[17/04/2008|14:19] C:\Program Files\Fichiers communs\Real
[19/12/2007|00:05] C:\Program Files\Fichiers communs\Services
[19/12/2007|05:50] C:\Program Files\Fichiers communs\Softwin
[18/12/2007|23:57] C:\Program Files\Fichiers communs\SpeechEngines
[27/05/2008|12:59] C:\Program Files\Fichiers communs\SWF Studio
[19/12/2007|02:24] C:\Program Files\Fichiers communs\System
[05/08/2008|19:31] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 26 Processus )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\magicien\APPLIC~1\plan01~1
C:\Program Files\BitDownload
C:\Program Files\BitDownload\BitDownload Setup Components
C:\DOCUME~1\magicien\Cookies\magicien@adopt.euroclick[2].txt
C:\WINDOWS\Tasks\AB98D61A91BF4BD2.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-07 12:21:56
Windows 5.1.2600 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 20

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:3][D:1]-> C:\DOCUME~1\magicien\LOCALS~1\Temp
[F:19][D:0]-> C:\DOCUME~1\magicien\Cookies
[F:419][D:4]-> C:\DOCUME~1\magicien\LOCALS~1\TEMPOR~1\content.IE5

--------------------\\ Fin du rapport a 12:22:51,79
0
Réponse 24 / 43
Utilisateur anonyme
 
ok

relance lopsp et fair option 2 stp
0
magicien10024 Messages postés 3317 Statut Membre 283
 
compte rendu option 2



--------------------\\ Lop S&D 4.2.2-5 XP/Vista

[ Windows XP (NT 5.1) Build 2600 ]
[ USER : magicien ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 07/08/2008 | 12:27:55,87 ] [ PC : X-AEWJQHVKSXFJV ]
[ MAJ : 01-08-2008 | 01:40 ]


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprime! - C:\Program Files\BitDownload\BitDownload Setup Components
Supprime! - C:\DOCUME~1\magicien\Cookies\magicien@adopt.euroclick[2].txt
Supprime! - C:\WINDOWS\Tasks\AB98D61A91BF4BD2.job
Supprime! - C:\DOCUME~1\magicien\APPLIC~1\plan01~1
Supprime! - C:\Program Files\BitDownload

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[07/03/2008|15:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.zreglib
[05/06/2008|12:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Acronis
[11/02/2008|19:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[21/04/2008|21:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[07/04/2008|03:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[20/02/2008|17:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[19/12/2007|06:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[05/08/2008|16:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[23/06/2008|15:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[06/08/2008|08:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[25/12/2007|02:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
[17/06/2008|15:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[24/06/2008|13:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[04/07/2008|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia
[31/03/2008|12:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[19/12/2007|21:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[01/01/2008|21:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[19/12/2007|03:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[14/06/2008|13:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OrbNetworks
[11/01/2008|01:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[26/04/2008|18:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Raxco
[10/04/2008|16:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[11/05/2008|10:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[02/08/2008|08:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[31/12/2007|03:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[21/05/2008|15:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip

[05/08/2008|16:50] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[05/08/2008|15:31] C:\DOCUME~1\DEFAUL~1\APPLIC~1\DivX
[19/12/2007|00:07] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[13/05/2008|12:32] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[04/07/2008|16:51] C:\DOCUME~1\magicien\APPLIC~1\.k3d
[13/01/2008|20:02] C:\DOCUME~1\magicien\APPLIC~1\Adobe
[21/04/2008|21:27] C:\DOCUME~1\magicien\APPLIC~1\Apple Computer
[19/12/2007|02:18] C:\DOCUME~1\magicien\APPLIC~1\ATI
[03/05/2008|02:59] C:\DOCUME~1\magicien\APPLIC~1\Basta Computing
[19/12/2007|05:51] C:\DOCUME~1\magicien\APPLIC~1\Bitdefender
[04/04/2008|22:08] C:\DOCUME~1\magicien\APPLIC~1\CVitae
[18/12/2007|23:56] C:\DOCUME~1\magicien\APPLIC~1\desktop.ini
[10/06/2008|21:24] C:\DOCUME~1\magicien\APPLIC~1\Desktopicon
[23/12/2007|14:59] C:\DOCUME~1\magicien\APPLIC~1\DivX
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\ezpinst.exe
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\ezplay.cat
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\ezplay.sys
[13/05/2008|11:54] C:\DOCUME~1\magicien\APPLIC~1\FileMaker
[30/04/2008|02:52] C:\DOCUME~1\magicien\APPLIC~1\FileSubmit
[12/05/2008|20:16] C:\DOCUME~1\magicien\APPLIC~1\FrostWire
[08/05/2008|11:45] C:\DOCUME~1\magicien\APPLIC~1\GlarySoft
[06/08/2008|08:37] C:\DOCUME~1\magicien\APPLIC~1\Grisoft
[26/05/2008|01:26] C:\DOCUME~1\magicien\APPLIC~1\gtopala
[19/12/2007|18:44] C:\DOCUME~1\magicien\APPLIC~1\Help
[19/12/2007|00:13] C:\DOCUME~1\magicien\APPLIC~1\Identities
[25/01/2008|00:02] C:\DOCUME~1\magicien\APPLIC~1\InfraRecorder
[02/04/2008|14:30] C:\DOCUME~1\magicien\APPLIC~1\InstallShield
[04/01/2008|03:46] C:\DOCUME~1\magicien\APPLIC~1\InterVideo
[06/05/2008|12:09] C:\DOCUME~1\magicien\APPLIC~1\KillProcess
[06/08/2008|23:44] C:\DOCUME~1\magicien\APPLIC~1\LimeWire
[02/08/2008|14:12] C:\DOCUME~1\magicien\APPLIC~1\Macromedia
[04/07/2008|19:42] C:\DOCUME~1\magicien\APPLIC~1\Microsoft
[20/06/2008|12:29] C:\DOCUME~1\magicien\APPLIC~1\Mozilla
[26/05/2008|01:53] C:\DOCUME~1\magicien\APPLIC~1\MSN6
[03/04/2008|20:44] C:\DOCUME~1\magicien\APPLIC~1\ntr
[07/07/2008|12:43] C:\DOCUME~1\magicien\APPLIC~1\Participatory Culture Foundation
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\pcouffin.cat
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\pcouffin.inf
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\pcouffin.log
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\pcouffin.sys
[17/04/2008|14:18] C:\DOCUME~1\magicien\APPLIC~1\Real
[27/07/2008|21:27] C:\DOCUME~1\magicien\APPLIC~1\ShredderChess
[21/12/2007|01:11] C:\DOCUME~1\magicien\APPLIC~1\Sun
[21/12/2007|19:51] C:\DOCUME~1\magicien\APPLIC~1\vlc
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\Vso
[20/02/2008|14:21] C:\DOCUME~1\magicien\APPLIC~1\VSRevoGroup
[31/05/2008|00:02] C:\DOCUME~1\magicien\APPLIC~1\WinPatrol
[23/12/2007|12:47] C:\DOCUME~1\magicien\APPLIC~1\WinRAR
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\WSMJHKZP.inf
[07/03/2008|17:21] C:\DOCUME~1\magicien\APPLIC~1\WSMJHKZP.ini
[07/03/2008|17:26] C:\DOCUME~1\magicien\APPLIC~1\WSMJHKZP.log

[13/05/2008|12:32] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[07/08/2008 09:39][--a------] C:\WINDOWS\tasks\GlaryInitialize.job
[25/07/2008 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[07/08/2008 09:37][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[23/07/2008|12:59] C:\Program Files\Adobe
[25/04/2008|20:46] C:\Program Files\AGEIA Technologies
[02/08/2008|12:28] C:\Program Files\AIDA32 - Personal System Information
[11/01/2008|01:55] C:\Program Files\Apple Software Update
[12/05/2008|20:16] C:\Program Files\AskSBar
[16/01/2008|00:21] C:\Program Files\ATI Technologies
[08/03/2008|11:35] C:\Program Files\Burn4Free Toolbar
[01/07/2008|14:13] C:\Program Files\burnatonce
[03/06/2008|16:26] C:\Program Files\Cain
[22/12/2007|21:06] C:\Program Files\CCleaner
[05/08/2008|18:48] C:\Program Files\CleanUp!
[05/08/2008|18:11] C:\Program Files\C-Media 3D Audio
[24/06/2008|15:09] C:\Program Files\CodeStuff
[19/12/2007|00:04] C:\Program Files\ComPlus Applications
[09/04/2008|22:52] C:\Program Files\Conduit
[04/01/2008|03:37] C:\Program Files\Creative
[09/06/2008|09:45] C:\Program Files\CursorXP
[30/06/2008|12:02] C:\Program Files\directx
[24/06/2008|12:27] C:\Program Files\DynGate
[13/05/2008|12:45] C:\Program Files\Electronic Arts
[02/08/2008|08:56] C:\Program Files\epson
[04/07/2008|19:41] C:\Program Files\Fichiers communs
[09/05/2008|23:32] C:\Program Files\Free Create-Burn ISO Image
[08/05/2008|11:44] C:\Program Files\Glary Utilities
[06/08/2008|08:37] C:\Program Files\Grisoft
[02/08/2008|08:57] C:\Program Files\InstallShield Installation Information
[04/01/2008|03:37] C:\Program Files\InterActual
[20/06/2008|08:12] C:\Program Files\Internet Explorer
[04/01/2008|03:57] C:\Program Files\InterVideo
[10/06/2008|17:50] C:\Program Files\Java
[05/08/2008|19:32] C:\Program Files\Lavasoft
[01/07/2008|14:10] C:\Program Files\LimeWire
[21/12/2007|14:01] C:\Program Files\Logitech
[05/08/2008|18:54] C:\Program Files\ma-config.com
[05/08/2008|16:57] C:\Program Files\Messenger
[02/04/2008|15:51] C:\Program Files\Messenger Plus! Live
[16/06/2008|20:37] C:\Program Files\MessengerDiscovery
[19/12/2007|00:08] C:\Program Files\microsoft frontpage
[19/12/2007|02:24] C:\Program Files\Microsoft.NET
[19/12/2007|00:06] C:\Program Files\Movie Maker
[07/08/2008|12:03] C:\Program Files\Mozilla Firefox
[05/08/2008|19:08] C:\Program Files\Mozilla Firefox 3 Beta 5
[05/08/2008|18:54] C:\Program Files\Mozilla Firefox(2)
[19/12/2007|03:37] C:\Program Files\MSN
[19/12/2007|00:04] C:\Program Files\MSN Gaming Zone
[15/06/2008|23:22] C:\Program Files\MSN Messenger
[03/06/2008|15:58] C:\Program Files\mst software
[06/08/2008|15:51] C:\Program Files\Navilog1
[19/12/2007|00:05] C:\Program Files\NetMeeting
[23/02/2008|12:18] C:\Program Files\Optimisation Windows
[02/04/2008|13:42] C:\Program Files\Orange
[19/12/2007|00:05] C:\Program Files\Outlook Express
[07/07/2008|12:42] C:\Program Files\Participatory Culture Foundation
[11/01/2008|01:55] C:\Program Files\QuickTime
[31/03/2008|12:08] C:\Program Files\Runtime Software
[02/04/2008|14:31] C:\Program Files\SAGEM
[02/04/2008|14:30] C:\Program Files\Securitoo
[19/12/2007|00:04] C:\Program Files\Services en ligne
[19/12/2007|05:50] C:\Program Files\Softwin
[10/04/2008|16:13] C:\Program Files\Spybot - Search & Destroy
[29/04/2008|02:05] C:\Program Files\Trust
[15/01/2008|15:21] C:\Program Files\Universal
[19/12/2007|01:51] C:\Program Files\VIA
[20/02/2008|14:16] C:\Program Files\VS Revo Group
[18/06/2008|16:43] C:\Program Files\Winamp Remote
[07/04/2008|17:18] C:\Program Files\windirstat
[21/12/2007|13:33] C:\Program Files\Windows Live
[03/04/2008|12:18] C:\Program Files\Windows Live Safety Center
[05/08/2008|17:02] C:\Program Files\Windows Media Player
[19/12/2007|00:04] C:\Program Files\Windows NT
[05/08/2008|17:12] C:\Program Files\WindowsUpdate
[18/06/2008|13:49] C:\Program Files\WinRAR
[19/12/2007|00:08] C:\Program Files\xerox
[22/06/2008|23:19] C:\Program Files\ZNsoft Corporation

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[11/02/2008|19:24] C:\Program Files\Fichiers communs\Adobe
[19/12/2007|02:24] C:\Program Files\Fichiers communs\DESIGNER
[19/12/2007|18:55] C:\Program Files\Fichiers communs\DirectX
[02/04/2008|13:39] C:\Program Files\Fichiers communs\France Telecom
[19/12/2007|02:02] C:\Program Files\Fichiers communs\InstallShield
[04/01/2008|03:57] C:\Program Files\Fichiers communs\InterVideo
[19/12/2007|06:20] C:\Program Files\Fichiers communs\Java
[22/12/2007|21:03] C:\Program Files\Fichiers communs\Logitech
[04/07/2008|19:45] C:\Program Files\Fichiers communs\Macromedia
[15/02/2008|12:27] C:\Program Files\Fichiers communs\Microsoft Shared
[19/12/2007|00:05] C:\Program Files\Fichiers communs\MSSoap
[18/12/2007|23:57] C:\Program Files\Fichiers communs\ODBC
[17/04/2008|14:19] C:\Program Files\Fichiers communs\Real
[19/12/2007|00:05] C:\Program Files\Fichiers communs\Services
[19/12/2007|05:50] C:\Program Files\Fichiers communs\Softwin
[18/12/2007|23:57] C:\Program Files\Fichiers communs\SpeechEngines
[27/05/2008|12:59] C:\Program Files\Fichiers communs\SWF Studio
[19/12/2007|02:24] C:\Program Files\Fichiers communs\System
[05/08/2008|19:31] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 27 Processus )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-07 12:30:10
Windows 5.1.2600 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 20

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:3][D:1]-> C:\DOCUME~1\magicien\LOCALS~1\Temp
[F:18][D:0]-> C:\DOCUME~1\magicien\Cookies
[F:419][D:4]-> C:\DOCUME~1\magicien\LOCALS~1\TEMPOR~1\content.IE5

--------------------\\ Fin du rapport a 12:31:17,67
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 43
Utilisateur anonyme
 
bon deja cela de fait

poste un log hijackthis stp

et dit moi comment va ton pc
0
magicien10024 Messages postés 3317 Statut Membre 283
 
tu sais je maitrise 1 peu l'info mais pas vraiment les déinfections , c'est pour cette raison que tes conseils ont été judicieux


à présent le pc a repris toutes sa vitesse et plus aucune pub OUF! lol

le compte rendu de hijackthis


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:35:42, on 07/08/2008
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Glary Utilities\Integrator.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\NOTEPAD.EXE
F:\utilitaire\logiciel deinfection\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.minet.net:81
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Burn4Free Toolbar Helper - {D187A56B-A33F-4CBE-9D77-459FC0BAE012} - C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Burn4Free_Toolbar.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: Burn4Free Toolbar - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Burn4Free_Toolbar.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - ProtocolDefaults: '@ivt' protocol is in My Computer Zone, should be Intranet Zone
O15 - ProtocolDefaults: 'file' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'ftp' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'https' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: '@ivt' protocol is in My Computer Zone, should be Intranet Zone (HKLM)
O15 - ProtocolDefaults: 'file' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'ftp' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'https' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - https://www.f-secure.com/en/home/support
O18 - Protocol: bw+0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
0
Réponse 26 / 43
Utilisateur anonyme
 
O15 - ProtocolDefaults: '@ivt' protocol is in My Computer Zone, should be Intranet Zone
O15 - ProtocolDefaults: 'file' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'ftp' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'https' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: '@ivt' protocol is in My Computer Zone, should be Intranet Zone (HKLM)
O15 - ProtocolDefaults: 'file' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'ftp' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'https' protocol is in My Computer Zone, should be Internet Zone (HKLM)

Analyse : il faut vérifier et supprimer les Urls non souhaitées ! est ce que ces sites ont été ajoutés volontairement.
0
magicien10024 Messages postés 3317 Statut Membre 283
 
ben non elle correspondent a quel site


peux tu me donner la manip pour les supprimer
0
Réponse 27 / 43
Utilisateur anonyme
 
avant tu va faire ceci stp

1) Télécharge et installe Malwarebyte's Anti-Malware:

http://www.malwarebytes.org/mbam/program/mbam-setup.exe

A la fin de l'installation, veille à ce que l'option « mettre a jour Malwarebyte's Anti-Malware » soit cochée. >>> clique sur OK
Lance Malwarebyte's Anti-Malware en double-cliquant sur l'icône sur ton Bureau.

Au premier lancement, une fenêtre t'annonce que la version est Free >>> clique sur OK

Laisse les Mises à jour se télécharger
*** Referme le programme ***

2) Redémarre en "Mode sans échec"

Au redémarrage de l'ordinateur, une fois le chargement du BIOS terminé, il y a un écran noir qui apparaît rapidement, appuie sur la touche [F8] (ou [F5] sur certains pc) jusqu'à l'affichage du menu des options avancées de Windows.
Sélectionner "Mode sans échec" et appuie sur [Entrée]
Il faudra choisir ta session habituelle, pas le compte "Administrateur" ou une autre.
Regarde ici si besoin : https://www.malekal.com/demarrer-windows-mode-sans-echec/

Ouvre le fichier texte sauvegardé sur le Bureau afin de suivre les instructions comme il faut.

3) Scan avec Malwarebyte's Anti-Malware

Lance Malwarebyte's Anti-Malware
Onglet "Recherche" >>> coche Executer un exame complet >>> Rechercher sélectionne tes disques durs puis clique sur Lancer l’examen
A la fin du scan >>> clique sur Afficher les résultats puis sur Enregistrer le rapport
Suppression des éléments détectés >>>>
supprime ce qu'il a trouvé vide également les éléments de la quarantaine
S'il t'es demandé de redémarrer >>> clique sur "Yes"

--> Un rapport de scan s'ouvre, enregistre sur ton Bureau et poste ce rapport en réponse.

quand tu demande une analyse, demande en mode sans échec.

Pourquoi en mode sans échec:

*Car déjà l'analyse cherche plus de fichiers en mode sans échec que en mode normal.
*Et aussi en mode normal les virus ( trojans, cheval de troie, vers, spywares , malwares et autres ... sont actif) donc ne se supprimes pas donc ils faut le faire en mode sans échec .1) Imprime ces instructions car il faudra fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.

0
magicien10024 Messages postés 3317 Statut Membre 283
 
rapport de malwarebites


Malwarebytes' Anti-Malware 1.24
Version de la base de données: 1030
Windows 5.1.2600

13:12:16 07/08/2008
mbam-log-8-7-2008 (13-12-16).txt

Type de recherche: Examen rapide
Eléments examinés: 38543
Temps écoulé: 9 minute(s), 45 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
0
Réponse 28 / 43
Utilisateur anonyme
 
tres bien relance hijackthis et fixe les lignes

O15 - ProtocolDefaults: '@ivt' protocol is in My Computer Zone, should be Intranet Zone
O15 - ProtocolDefaults: 'file' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'ftp' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'https' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: '@ivt' protocol is in My Computer Zone, should be Intranet Zone (HKLM)
O15 - ProtocolDefaults: 'file' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'ftp' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'https' protocol is in My Computer Zone, should be Internet Zone (HKLM)

redemarre ton pc et refait un nouveau log stp
0
magicien10024 Messages postés 3317 Statut Membre 283
 
j'ai fait comme tu me l'a suggéré. j'ai fixé et redémarrer . appremment elles sont toujours là


je dois faire 1 mauvaise manip


je te joints toujours ce rapport


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:43:43, on 07/08/2008
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Glary Utilities\Integrator.exe
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
F:\utilitaire\logiciel deinfection\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.minet.net:81
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Burn4Free Toolbar Helper - {D187A56B-A33F-4CBE-9D77-459FC0BAE012} - C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Burn4Free_Toolbar.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: Burn4Free Toolbar - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Burn4Free_Toolbar.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - ProtocolDefaults: '@ivt' protocol is in My Computer Zone, should be Intranet Zone
O15 - ProtocolDefaults: 'file' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'ftp' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'https' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: '@ivt' protocol is in My Computer Zone, should be Intranet Zone (HKLM)
O15 - ProtocolDefaults: 'file' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'ftp' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'https' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - https://www.f-secure.com/en/home/support
O18 - Protocol: bw+0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
0
Réponse 29 / 43
Utilisateur anonyme
 
va dans panneau de configuration ensuite options internet securite site de confiance et clic sur site et supprime tout ce que trouve stp
0
magicien10024 Messages postés 3317 Statut Membre 283
 
désolé pour se retard


aucun site n'est présent sur site de confiance



par contre et par précaution , j'ai fait 1 scan en lignes avec bit defender Apparemmment je serait toujours infecté

pourtant mon antivirus bte defender v 10 à jour n'a rien détecté
0
Réponse 30 / 43
Utilisateur anonyme
 
poste la rapport stp
0
magicien10024 Messages postés 3317 Statut Membre 283
 
aucun rapport n'est precisé en lignes du moins avec bit defender

j'ai relancé mon antivirus



//-----------------------------------------------------------------
//
// ProduitBitDefender Antivirus Plus v10
// Produit10.2
//
// Créé le: 07/08/2008 22:22:03
//
//-----------------------------------------------------------------


Statistiques

Chemin cible: C:\
D:\
H:\
Dossiers : 8229
Fichiers : 36162
Processus Mémoire analysés : 26
Archives : 7
Fichiers enpaquetés : 2285
Virus trouvés : 0
Fichiers infectés : 0
Processus Mémoire infectés : 0
Fichiers suspects : 0
Alertes : 0
Fichiers désinfectés : 0
Fichiers effacés : 1
Fichiers déplacés : 0
Erreurs I/O : 28
Temps d'analyse :=00:21:09
Fichiers/seconde :28

Statistiques Spywares

Registres analysés : 325
Registres infectés : 0
Cookies analysés : 20
Cookies infectés : 1
Fichiers spyware infectés : 0
Menaces Spyware détectées : 1


Définitions virus : 1431952
Plugins d'analyse : 16
Plugins archives : 43
Plug-ins décompression : 7
Plug-ins messagerie : 6
Plug-ins système : 5

Options d'analyse

Détection
[X] Analyser le secteur de boot
[X] Processus mémoire
[ ] Analyser les archives
[X] Analyser les fichiers enpaquetés
[X] Analyser la messagerie

Masque fichiers
[X] Programmes
[ ] Tous les fichiers
[ ] Extensions définies par l'utilisateur:
[ ] Exclure les extensions: ;

Action

Objets infectés
[ ] Ignorer
[X] Désinfecter
[ ] Effacer
[ ] Mettre en quarantaine
[ ] Demander l'action

Seconde action
[ ] Ignorer
[ ] Effacer
[X] Mettre en quarantaine
[ ] Demander l'action

Options d'analyse
[X] Activer les alertes
[ ] Activer l'heuristique
[ ] Afficher tous les fichiers dans le journal
[X] Fichier journal: C:\Documents and Settings\All Users\Application Data\Bitdefender\Desktop\Profiles\Logs\full_scan\1218140523.log

Options d'analyse Spyware

[X] Analyse contre les risques non-viraux
[ ] Ecarter de l'analyse les dialers et les applications
[X] Clés de registres
[X] Cookies


Résumé:

<System>=>C:\Documents and Settings\magicien\Cookies\magicien@smartadserver[1].txt Détecté: Cookie.SmartAdServer
<System>=>C:\Documents and Settings\magicien\Cookies\magicien@smartadserver[1].txt Effacé
<System> Recompression des archives réussie
0
Réponse 31 / 43
Utilisateur anonyme
 
bonjour

desoler du retard

reposte un log hijackthis stp
0
magicien10024 Messages postés 3317 Statut Membre 283
 
bonjour shion- ares


dernier rapport hijackthis


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:00:58, on 08/08/2008
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Glary Utilities\Integrator.exe
C:\Program Files\Mozilla Firefox\firefox.exe
F:\utilitaire\logiciel deinfection\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.minet.net:81
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Burn4Free Toolbar Helper - {D187A56B-A33F-4CBE-9D77-459FC0BAE012} - C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Burn4Free_Toolbar.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: Burn4Free Toolbar - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Burn4Free_Toolbar.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - ProtocolDefaults: '@ivt' protocol is in My Computer Zone, should be Intranet Zone
O15 - ProtocolDefaults: 'file' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'ftp' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: 'https' protocol is in My Computer Zone, should be Internet Zone
O15 - ProtocolDefaults: '@ivt' protocol is in My Computer Zone, should be Intranet Zone (HKLM)
O15 - ProtocolDefaults: 'file' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'ftp' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O15 - ProtocolDefaults: 'https' protocol is in My Computer Zone, should be Internet Zone (HKLM)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - https://www.f-secure.com/en/home/support
O18 - Protocol: bw+0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {89238DCB-13FA-49D9-8F87-DD099B15C9C8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
0
Réponse 32 / 43
Utilisateur anonyme
 
tu peux refaire Malwarebyte's Anti-Malware

mais en mode normale et examen complet je vais regarder pour ceci

ProtocolDefaults: '@ivt' protocol is in My Computer Zone, should be Intranet Zone

car apparemment c'est un malware qui fait cela
0
magicien10024 Messages postés 3317 Statut Membre 283
 
je te joints le rapport


Malwarebytes' Anti-Malware 1.24
Version de la base de données: 1030
Windows 5.1.2600

09:30:50 08/08/2008
mbam-log-8-8-2008 (09-30-50).txt

Type de recherche: Examen rapide
Eléments examinés: 39305
Temps écoulé: 6 minute(s), 59 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)



j'ai essayé de fixer les protocoles que tu m'as suggéré mais apparemment c'est pas possible
0
Réponse 33 / 43
Utilisateur anonyme
 
Télécharge SmitfraudFix
Utilitaire de S!Ri: Moe et balltrap34
http://siri.urz.free.fr/Fix/SmitfraudFix.php
et télécharge SmitfraudFix.exe.

Regarde le tuto

Exécute le en choisissant l’option 1,
il va générer un rapport
Copie/colle le sur le poste stp.
0
magicien10024 Messages postés 3317 Statut Membre 283
 
ce lien m'a infecté !



regarde ici


http://img411.imageshack.us/img411/1295/choperviruswx8.png
0
Réponse 34 / 43
Utilisateur anonyme
 
desoler c'est de ma faute desactive ton antivirus

et clic droit sur l'archive et fait dezipper stp et relance
0
magicien10024 Messages postés 3317 Statut Membre 283
 
j'ai déactiver l'antivirus


si je lance smidfraufix la fenêtre se ferme !
0
Réponse 35 / 43
Utilisateur anonyme
 
supprime la version de smitfraufix qui est sur ton bureau

et prend celle ici

enregistre la et exécute stp
0
magicien10024 Messages postés 3317 Statut Membre 283
 
je l'ai téléchargé au moment ou j'appuie sur entrer la page se ferme !



j'essaie en mode sans echec
0
magicien10024 Messages postés 3317 Statut Membre 283 > magicien10024 Messages postés 3317 Statut Membre
 
ca marche !


SmitFraudFix v2.333

Rapport fait à 10:47:41,89, 08/08/2008
Executé à partir de C:\Documents and Settings\magicien\Mes documents\clin d'oeil\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode sans echec

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\explorer.exe
C:\Documents and Settings\magicien\Mes documents\clin d'oeil\SmitfraudFix\Policies.exe
C:\WINDOWS\System32\cmd.exe

»»»»»»»»»»»»»»»»»»»»»»»» hosts


»»»»»»»»»»»»»»»»»»»»»»»» C:\


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\magicien


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\magicien\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\magicien\Favoris


»»»»»»»»»»»»»»»»»»»»»»»» Bureau


»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau



»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri



»»»»»»»»»»»»»»»»»»»»»»»» VACFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» 404Fix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» Rustock



»»»»»»»»»»»»»»»»»»»»»»»» DNS

HKLM\SYSTEM\CCS\Services\Tcpip\..\{0BDF84F5-F7D9-4B2E-978C-7F2386476333}: DhcpNameServer=192.168.1.1 0.0.0.0
HKLM\SYSTEM\CCS\Services\Tcpip\..\{BEF4A9AD-0C9D-44FA-84AE-F218EA2178E5}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{0BDF84F5-F7D9-4B2E-978C-7F2386476333}: DhcpNameServer=192.168.1.1 0.0.0.0
HKLM\SYSTEM\CS1\Services\Tcpip\..\{BEF4A9AD-0C9D-44FA-84AE-F218EA2178E5}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS2\Services\Tcpip\..\{0BDF84F5-F7D9-4B2E-978C-7F2386476333}: DhcpNameServer=192.168.1.1 0.0.0.0
HKLM\SYSTEM\CS2\Services\Tcpip\..\{BEF4A9AD-0C9D-44FA-84AE-F218EA2178E5}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS3\Services\Tcpip\..\{0BDF84F5-F7D9-4B2E-978C-7F2386476333}: DhcpNameServer=192.168.1.1 0.0.0.0
HKLM\SYSTEM\CS3\Services\Tcpip\..\{BEF4A9AD-0C9D-44FA-84AE-F218EA2178E5}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1


»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin
0
Réponse 36 / 43
Utilisateur anonyme
 
bon rien de ce cote la
0
magicien10024 Messages postés 3317 Statut Membre 283
 
oui je suis d'accord avec toi


l'ordi semble stable et les applications s'ouvre trés bien idem pour surfer
0
Réponse 37 / 43
Utilisateur anonyme
 
a dans panneau de configuration ensuite options internet securite intranet local et clic sur site et avance et dit moi ce que tu as stp fait moi une image comme tu a fait tout a l'heure
0
magicien10024 Messages postés 3317 Statut Membre 283
 
voila l'image


http://img384.imageshack.us/img384/5696/intranethg7.png
0
Réponse 38 / 43
Utilisateur anonyme
 
bon et bien parfait rien non plus
0
magicien10024 Messages postés 3317 Statut Membre 283
 
je peux réactiver la restauration systéme
0
Réponse 39 / 43
Utilisateur anonyme
 
bien sur tout est bon

* pour supprimer les outils/fix utilisés :

Télécharge ToolsCleaner sur ton bureau.
-->
https://www.commentcamarche.net/telecharger/ 34055291 toolscleaner

# Clique sur Recherche et laisse le scan agir ...
# Clique sur Suppression pour finaliser.
# Tu peux, si tu le souhaites, te servir des Options facultatives.
# Clique sur Quitter pour obtenir le rapport.
# Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).
0
magicien10024 Messages postés 3317 Statut Membre 283
 
le lien que tu m'as mis est invalide . je l'ai télécharger



j'ai le rapport mais si je vuex le poser sur le forum le pc bloque je comprends pas



j'ai fait 1 autre manip en transférant la copie mais impossible mon pc bloque tout !
0
Réponse 40 / 43
Utilisateur anonyme
 
http://www.commentcamarche.net/telecharger/telecharger 34055291 toolscleaner
0
magicien10024 Messages postés 3317 Statut Membre 283
 
j'ai le rapport de tcleaner


impossible de le poser sur le forum mon pc bloque tout !


j'ai beau essayé ca marche pas
0

Discussions similaires

Ouvrir un fichier .pub sans Publisher
baissaoui -
baissaoui -

0 réponse
Ouvrir document Publisher sans Publisher
Curtis Hayes -
Curtis Hayes -

7 réponses
lire un fichier .pub
xycoco -
Valou -

38 réponses
application learn more
anexis30 -
anexis30 -

4 réponses
Lire, afficher, exécuter un fichier *.pub sans Publisher
jeannoellaurenti -
informatique_fujitsu -

1 réponse