Se connecter / S'enregistrer
Votre question

Demande d'aide ordinateur infecté!!

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
4 Juin 2008 22:30:29

Bonsoir tout le monde !!!

c'est mon premier message et sujet sur ce forum et déja je demande quelque chose lol


J'ai de gros souci avec mon PC , je pense qu'il est infecté car j'ai de nombreux ralentissement quand je surfe sur internet , quand je regarde des vidéos , et des fenêtres publicitaires s'ouvre également lors de mes recherches avec firefox !

Je suis dégouté

est ce que quelqu'un pourrait m'aider?

Je sais que la procédure est de poster un rapport HIjackthis

alors je vais anticiper :D 

merci d'avance et longue vie à Tom's guide!!!!

Autres pages sur : demande aide ordinateur infecte

4 Juin 2008 22:33:47

Et voila !!!!! :hello: 

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:32:32, on 04/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\InterVideo\WinDVR\WinScheduler.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Intel(R) Active Monitor\imonnt.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\KIM\Bureau\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT109864...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.01net.com/telecharger/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\Adobe\Acrobat Reader 5\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [platform bind axis time] C:\Documents and Settings\All Users\Application Data\soft ref platform bind\acid proxy.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [keepvc] C:\DOCUME~1\KIM\APPLIC~1\Mp3bore\bold rdr plus.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: InterVideo WinScheduler.lnk = C:\Program Files\InterVideo\WinDVR\WinScheduler.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://downloads.ewido.net/ewidoOnlineScan.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O18 - Protocol: bw+0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Intel(R) Active Monitor (imonNT) - Intel Corp. - C:\Program Files\Intel\Intel(R) Active Monitor\imonnt.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

--
End of file - 21965 bytes
5 Juin 2008 00:10:53

Bonsoir et [:bienvenue]

Télécharge Lop S&D.exe sur ton bureau

  • Double-clique dessus pour lancer l'installation
  • Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
  • Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
  • Patiente jusqu'à la fin du scan
  • Poste le rapport généré ( C:\lopR.txt )

    ( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
    Contenus similaires
    5 Juin 2008 00:45:28

    Yes merci Sham_Rock ;) 



    -----------------------[ Lop S&D 4.2.1-2 XP/Vista ]---------------------

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : KIM ] [ "C:\Lop SD" ] [ Selection : 1 ]
    [ 05/06/2008 | 0:39:22,12 ] [ PC : REYBAUD ]
    [ MAJ : 01-06-2008 | 15:51 ]

    -------------[ Listing des dossiers dans Application Data ]------------

    [13/01/2008|11:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\addr_file.html
    [13/01/2008|11:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
    [27/01/2008|15:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
    [27/01/2008|15:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonIJPLM
    [03/05/2008|06:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [15/06/2007|10:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [20/04/2008|20:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [27/01/2008|15:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
    [06/11/2007|23:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterVideo
    [13/01/2008|10:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
    [09/05/2008|19:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
    [03/05/2008|06:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
    [27/02/2008|21:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logishrd
    [16/06/2007|14:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
    [11/11/2007|09:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [04/06/2008|18:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [02/06/2008|21:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
    [06/01/2008|12:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
    [27/01/2008|15:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
    [26/05/2008|20:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\soft ref platform bind
    [01/06/2008|17:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [15/06/2007|17:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
    [15/06/2007|10:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [16/06/2007|14:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
    [13/10/2007|21:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

    [15/06/2007|10:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [23/03/2008|13:11] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
    [15/06/2007|10:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [17/06/2007|17:54] C:\DOCUME~1\KIM\APPLIC~1\3M
    [24/03/2008|11:29] C:\DOCUME~1\KIM\APPLIC~1\Adobe
    [12/07/2007|21:02] C:\DOCUME~1\KIM\APPLIC~1\Ahead
    [23/02/2008|21:56] C:\DOCUME~1\KIM\APPLIC~1\Canon
    [23/09/2007|11:38] C:\DOCUME~1\KIM\APPLIC~1\CyberLink
    [01/07/2007|17:24] C:\DOCUME~1\KIM\APPLIC~1\DeepBurner
    [15/06/2007|10:55] C:\DOCUME~1\KIM\APPLIC~1\desktop.ini
    [22/06/2007|17:32] C:\DOCUME~1\KIM\APPLIC~1\DivX
    [18/10/2007|16:20] C:\DOCUME~1\KIM\APPLIC~1\dvdcss
    [23/03/2008|10:57] C:\DOCUME~1\KIM\APPLIC~1\Google
    [20/06/2007|11:22] C:\DOCUME~1\KIM\APPLIC~1\Help
    [15/06/2007|10:10] C:\DOCUME~1\KIM\APPLIC~1\Identities
    [02/12/2007|15:29] C:\DOCUME~1\KIM\APPLIC~1\InfraRecorder
    [15/06/2007|13:34] C:\DOCUME~1\KIM\APPLIC~1\InterTrust
    [20/04/2008|11:01] C:\DOCUME~1\KIM\APPLIC~1\LimeWire
    [15/06/2007|10:27] C:\DOCUME~1\KIM\APPLIC~1\Macromedia
    [16/06/2007|15:18] C:\DOCUME~1\KIM\APPLIC~1\Media Player Classic
    [01/06/2008|17:10] C:\DOCUME~1\KIM\APPLIC~1\Microsoft
    [18/06/2007|16:13] C:\DOCUME~1\KIM\APPLIC~1\Mozilla
    [26/05/2008|20:42] C:\DOCUME~1\KIM\APPLIC~1\Mp3bore
    [17/11/2007|21:10] C:\DOCUME~1\KIM\APPLIC~1\Nero
    [29/05/2008|17:47] C:\DOCUME~1\KIM\APPLIC~1\OpenOffice.org2
    [17/06/2007|22:05] C:\DOCUME~1\KIM\APPLIC~1\PPMate
    [16/06/2007|15:24] C:\DOCUME~1\KIM\APPLIC~1\Real
    [23/12/2007|11:31] C:\DOCUME~1\KIM\APPLIC~1\Samsung
    [27/01/2008|15:17] C:\DOCUME~1\KIM\APPLIC~1\ScanSoft
    [21/08/2007|00:49] C:\DOCUME~1\KIM\APPLIC~1\Styler
    [15/07/2007|18:36] C:\DOCUME~1\KIM\APPLIC~1\Sun
    [15/06/2007|13:35] C:\DOCUME~1\KIM\APPLIC~1\Symantec
    [15/06/2007|10:39] C:\DOCUME~1\KIM\APPLIC~1\Talkback
    [18/06/2007|16:13] C:\DOCUME~1\KIM\APPLIC~1\Thunderbird
    [15/08/2007|18:28] C:\DOCUME~1\KIM\APPLIC~1\Uniblue
    [05/06/2008|00:36] C:\DOCUME~1\KIM\APPLIC~1\uTorrent
    [16/06/2007|15:23] C:\DOCUME~1\KIM\APPLIC~1\vlc
    [09/03/2008|16:09] C:\DOCUME~1\KIM\APPLIC~1\Vso
    [15/06/2007|13:18] C:\DOCUME~1\KIM\APPLIC~1\WinRAR

    [26/04/2008|22:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
    [27/08/2007|17:33] C:\DOCUME~1\LOCALS~1\APPLIC~1\Help
    [27/01/2008|19:39] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [18/05/2008|16:01] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

    [05/06/2008 00:00][--ah-----] C:\WINDOWS\tasks\A84BB051918827E1.job
    [05/06/2008 00:37][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
    [11/05/2008 08:57][--a------] C:\WINDOWS\tasks\Uniblue SpyEraser Nag.job
    [31/07/2007 18:52][--a------] C:\WINDOWS\tasks\Uniblue SpyEraser.job
    [15/06/2007 13:35][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
    [05/06/2008 00:32][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [24/04/2003 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    A84BB051918827E1.job <--> c:\docume~1\kim\applic~1\mp3bore\wipewmathird.exe

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [15/06/2007|13:34] C:\Program Files\Adobe
    [01/06/2008|16:04] C:\Program Files\Alcohol Soft
    [15/06/2007|13:30] C:\Program Files\Analog Devices
    [16/02/2008|18:13] C:\Program Files\Astonsoft
    [13/01/2008|11:17] C:\Program Files\Avira
    [03/05/2008|13:08] C:\Program Files\AxBx
    [04/06/2008|23:52] C:\Program Files\Bit Che
    [27/01/2008|15:19] C:\Program Files\Canon
    [27/01/2008|15:11] C:\Program Files\CanonBJ
    [15/06/2007|10:42] C:\Program Files\CCleaner
    [18/05/2008|15:36] C:\Program Files\CodeStuff
    [01/06/2008|16:05] C:\Program Files\Conduit
    [03/05/2008|06:10] C:\Program Files\CyberLink
    [15/06/2007|13:37] C:\Program Files\DFX
    [03/05/2008|06:12] C:\Program Files\DivX
    [21/08/2007|00:42] C:\Program Files\DL Software
    [01/06/2008|16:16] C:\Program Files\Fichiers communs
    [11/11/2007|17:05] C:\Program Files\Free Audio Pack
    [01/06/2008|16:05] C:\Program Files\free-downloads.net
    [20/04/2008|20:44] C:\Program Files\Google
    [03/05/2008|09:36] C:\Program Files\GrabIt
    [11/05/2008|13:28] C:\Program Files\HiFisoftware
    [03/05/2008|06:10] C:\Program Files\InstallShield Installation Information
    [15/06/2007|13:33] C:\Program Files\Intel
    [20/04/2008|20:44] C:\Program Files\Internet Explorer
    [15/06/2007|13:37] C:\Program Files\InterVideo
    [23/03/2008|13:00] C:\Program Files\Java
    [03/05/2008|06:55] C:\Program Files\Lavasoft
    [28/10/2007|19:18] C:\Program Files\Learning Essentials
    [12/10/2007|16:09] C:\Program Files\LimeWire
    [27/02/2008|21:14] C:\Program Files\Logitech
    [01/03/2008|20:32] C:\Program Files\Media Player Classic
    [16/06/2007|19:58] C:\Program Files\Messenger
    [24/02/2008|09:09] C:\Program Files\Messenger Plus! Live
    [16/06/2007|19:58] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [28/10/2007|19:22] C:\Program Files\Microsoft Etudes
    [15/06/2007|10:06] C:\Program Files\microsoft frontpage
    [01/06/2008|16:17] C:\Program Files\Microsoft Office
    [01/06/2008|16:16] C:\Program Files\Microsoft Visual Studio
    [01/06/2008|16:11] C:\Program Files\Microsoft Visual Studio 8
    [01/06/2008|16:17] C:\Program Files\Microsoft Works
    [01/06/2008|16:15] C:\Program Files\Microsoft.NET
    [01/03/2008|12:27] C:\Program Files\Movie Maker
    [05/06/2008|00:35] C:\Program Files\Mozilla Firefox
    [26/05/2008|20:38] C:\Program Files\Mp3bore
    [01/06/2008|16:17] C:\Program Files\MSBuild
    [15/06/2007|10:03] C:\Program Files\MSN
    [15/06/2007|10:03] C:\Program Files\MSN Gaming Zone
    [16/06/2007|19:57] C:\Program Files\MSXML 4.0
    [30/10/2007|00:37] C:\Program Files\MSXML 6.0
    [16/06/2007|13:39] C:\Program Files\NetMeeting
    [01/06/2008|16:28] C:\Program Files\OpenOffice.org 2.1
    [03/05/2008|06:07] C:\Program Files\Outlook Express
    [15/06/2007|13:20] C:\Program Files\Realtek AC97
    [18/05/2008|16:31] C:\Program Files\RegCleaner
    [15/06/2007|10:18] C:\Program Files\SAGEM
    [15/06/2007|10:18] C:\Program Files\SAGEM WiFi manager
    [23/12/2007|11:27] C:\Program Files\Samsung
    [27/01/2008|15:16] C:\Program Files\ScanSoft
    [15/06/2007|10:12] C:\Program Files\Securitoo
    [15/06/2007|10:05] C:\Program Files\Services en ligne
    [15/09/2007|19:53] C:\Program Files\Spybot - Search & Destroy
    [21/08/2007|00:53] C:\Program Files\Styler
    [15/06/2007|13:57] C:\Program Files\Symantec
    [21/10/2007|12:30] C:\Program Files\TweakRAM
    [15/06/2007|10:10] C:\Program Files\Uninstall Information
    [21/08/2007|13:02] C:\Program Files\uTorrent
    [15/06/2007|10:41] C:\Program Files\VideoLAN
    [05/06/2008|00:36] C:\Program Files\Wanadoo
    [01/11/2007|17:49] C:\Program Files\Winamp
    [18/05/2008|15:41] C:\Program Files\Windows Defender
    [16/06/2007|14:50] C:\Program Files\Windows Live
    [16/06/2007|16:04] C:\Program Files\Windows Media Connect 2
    [16/06/2007|16:04] C:\Program Files\Windows Media Player
    [16/06/2007|13:39] C:\Program Files\Windows NT
    [15/06/2007|10:57] C:\Program Files\WindowsUpdate
    [15/06/2007|10:45] C:\Program Files\WinRAR
    [15/06/2007|10:06] C:\Program Files\xerox

    ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

    [16/06/2007|15:11] C:\Program Files\Fichiers communs\Adobe
    [21/10/2007|12:35] C:\Program Files\Fichiers communs\Ahead
    [27/01/2008|15:15] C:\Program Files\Fichiers communs\CANON
    [01/06/2008|16:16] C:\Program Files\Fichiers communs\DESIGNER
    [27/01/2008|15:17] C:\Program Files\Fichiers communs\InstallShield
    [06/07/2007|17:14] C:\Program Files\Fichiers communs\Java
    [27/02/2008|21:42] C:\Program Files\Fichiers communs\LogiShrd
    [27/02/2008|21:16] C:\Program Files\Fichiers communs\Logitech
    [01/06/2008|16:17] C:\Program Files\Fichiers communs\Microsoft Shared
    [15/06/2007|10:04] C:\Program Files\Fichiers communs\MSSoap
    [15/06/2007|10:55] C:\Program Files\Fichiers communs\ODBC
    [16/06/2007|15:24] C:\Program Files\Fichiers communs\Real
    [27/01/2008|15:17] C:\Program Files\Fichiers communs\ScanSoft Shared
    [15/06/2007|10:04] C:\Program Files\Fichiers communs\Services
    [15/06/2007|10:55] C:\Program Files\Fichiers communs\SpeechEngines
    [21/08/2007|00:35] C:\Program Files\Fichiers communs\Stardock
    [15/06/2007|13:57] C:\Program Files\Fichiers communs\Symantec Shared
    [17/06/2007|22:05] C:\Program Files\Fichiers communs\Synacast
    [01/06/2008|16:11] C:\Program Files\Fichiers communs\System
    [03/05/2008|06:55] C:\Program Files\Fichiers communs\Wise Installation Wizard

    ---------------------------[ Process ]--------------------------

    ... 53

    iexplore.exe ~ [200]
    iexplore.exe ~ [244]

    ----------------------[ Recherche avec S_Lop ]---------------------

    Aucun fichier / dossier Lop trouvé !

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    C:\DOCUME~1\ALLUSE~1\APPLIC~1\soft ref platform bind
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\soft ref platform bind\acid proxy.exe
    C:\DOCUME~1\KIM\APPLIC~1\mp3bore
    C:\DOCUME~1\KIM\APPLIC~1\mp3bore\bold rdr plus.exe
    C:\DOCUME~1\KIM\APPLIC~1\mp3bore\Curb bits delete bait.exe
    C:\DOCUME~1\KIM\APPLIC~1\mp3bore\lbfbzysq.exe
    C:\DOCUME~1\KIM\APPLIC~1\mp3bore\lhxbkmyf.exe
    C:\DOCUME~1\KIM\APPLIC~1\mp3bore\wipewmathird.exe
    C:\Program Files\mp3bore
    C:\WINDOWS\Prefetch\WIPEWMATHIRD.EXE-3A055F9A.pf
    C:\DOCUME~1\KIM\Cookies\kim@www.adserver5[1].txt
    C:\DOCUME~1\KIM\Cookies\kim@adultfriendfinder[2].txt
    C:\DOCUME~1\KIM\Cookies\kim@adin.bigpoint[2].txt
    C:\DOCUME~1\KIM\Cookies\kim@bigpoint[2].txt
    C:\DOCUME~1\KIM\Cookies\kim@fr1.seafight.bigpoint[1].txt
    C:\DOCUME~1\KIM\Cookies\kim@banner.cotedazurpalace[2].txt
    C:\DOCUME~1\KIM\Cookies\kim@cotedazurpalace[1].txt
    C:\DOCUME~1\KIM\Cookies\kim@adopt.euroclick[2].txt
    C:\DOCUME~1\KIM\Cookies\kim@pacificpoker[2].txt
    C:\DOCUME~1\KIM\Cookies\kim@partygaming.122.2o7[1].txt
    C:\DOCUME~1\KIM\Cookies\kim@partypoker[1].txt
    C:\DOCUME~1\KIM\Cookies\kim@fr1.seafight.bigpoint[1].txt
    C:\DOCUME~1\KIM\Cookies\kim@32vegas[1].txt
    C:\DOCUME~1\KIM\Cookies\kim@banner.32vegas[2].txt
    C:\DOCUME~1\KIM\Cookies\kim@2xmoinscher[1].txt
    C:\DOCUME~1\KIM\Cookies\kim@cc.2xmoinscher[1].txt
    C:\DOCUME~1\KIM\Cookies\kim@www.2xmoinscher[1].txt
    C:\WINDOWS\Tasks\A84BB051918827E1.job

    ----------------------[ Verification du Registre ]----------------------

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "keepvc"="C:\\DOCUME~1\\KIM\\APPLIC~1\\Mp3bore\\bold rdr plus.exe"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "platform bind axis time"="C:\\Documents and Settings\\All Users\\Application Data\\soft ref platform bind\\acid proxy.exe"

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts PROPRE


    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-06-05 00:41:24
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    => C:\Documents and Settings\KIM\Application Data\uTorrent\Kaspersky.Mobile.Secuirty.v7.0.32.S60v3.SymbianOS9.1.Unsigned.Cracked-illusion.torrent
    => C:\Documents and Settings\KIM\Bureau\torrent\TomTom.Mobile.v6.02.S60v3.SymbianOS9.1.Cracked-BiNPDA
    => C:\Documents and Settings\KIM\Bureau\torrent\TomTom.Mobile.v6.02.S60v3.SymbianOS9.1.Cracked-BiNPDA\binpda.nfo
    => C:\Documents and Settings\KIM\Bureau\torrent\TomTom.Mobile.v6.02.S60v3.SymbianOS9.1.Cracked-BiNPDA\MMC.rar
    => C:\Documents and Settings\KIM\Mes documents\Ma musique\Top 500 rock songs\CD 2\113 low Cracker.mp3
    => C:\Documents and Settings\KIM\Mes documents\Ma musique\Top 500 rock songs\CD 2\153 teen_angst_(what_the_world_needs_now) Cracker.mp3


    [F:1358][D:21]-> C:\DOCUME~1\KIM\LOCALS~1\Temp
    [F:274][D:0]-> C:\DOCUME~1\KIM\Cookies
    [F:1262][D:6]-> C:\DOCUME~1\KIM\LOCALS~1\TEMPOR~1\content.IE5

    --------------------[ Fin du rapport a 0:42:32,81 ]----------------------
    5 Juin 2008 00:59:02

    re
    vire tes cracks :o 

    Relance Lop S&D

  • Choisis cette fois ci l'Option 2 ( Suppression )
  • Ne ferme pas la fenêtre lors de la suppression !
  • Poste le rapport généré ( C:\lopR.txt )

    ( Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )


    ajoute un log hijackthis

    bonne nuit
    :hello: 
    5 Juin 2008 01:11:34

    :kaola:  :D  Je sais c'est pas bien les cracks d'ailleurs je les ai virés vu que c'était pas pour moi :whistle: 


    -----------------------[ Lop S&D 4.2.1-2 XP/Vista ]---------------------

    [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
    [ USER : KIM ] [ "C:\Lop SD" ] [ Selection : 2 ]
    [ 05/06/2008 | 1:05:03,53 ] [ PC : REYBAUD ]
    [ MAJ : 01-06-2008 | 15:51 ]


    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

    Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\soft ref platform bind\acid proxy.exe
    Supprimé! - C:\DOCUME~1\KIM\APPLIC~1\mp3bore\bold rdr plus.exe
    Supprimé! - C:\DOCUME~1\KIM\APPLIC~1\mp3bore\Curb bits delete bait.exe
    Supprimé! - C:\DOCUME~1\KIM\APPLIC~1\mp3bore\lbfbzysq.exe
    Supprimé! - C:\DOCUME~1\KIM\APPLIC~1\mp3bore\lhxbkmyf.exe
    Supprimé! - C:\DOCUME~1\KIM\APPLIC~1\mp3bore\wipewmathird.exe
    Supprimé! - C:\WINDOWS\Prefetch\WIPEWMATHIRD.EXE-3A055F9A.pf
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@www.adserver5[1].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@adultfriendfinder[2].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@adin.bigpoint[2].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@bigpoint[2].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@fr1.seafight.bigpoint[1].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@banner.cotedazurpalace[2].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@cotedazurpalace[1].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@adopt.euroclick[2].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@pacificpoker[2].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@partygaming.122.2o7[1].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@partypoker[1].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@32vegas[1].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@banner.32vegas[2].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@2xmoinscher[1].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@cc.2xmoinscher[1].txt
    Supprimé! - C:\DOCUME~1\KIM\Cookies\kim@www.2xmoinscher[1].txt
    Supprimé! - C:\WINDOWS\Tasks\A84BB051918827E1.job
    Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\soft ref platform bind
    Supprimé! - C:\DOCUME~1\KIM\APPLIC~1\mp3bore
    Supprimé! - C:\Program Files\mp3bore

    //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


    -------------[ Listing des dossiers dans Application Data ]------------

    [13/01/2008|11:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\addr_file.html
    [13/01/2008|11:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
    [27/01/2008|15:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
    [27/01/2008|15:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonIJPLM
    [03/05/2008|06:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [15/06/2007|10:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
    [20/04/2008|20:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [27/01/2008|15:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
    [06/11/2007|23:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterVideo
    [13/01/2008|10:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
    [09/05/2008|19:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
    [03/05/2008|06:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
    [27/02/2008|21:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logishrd
    [16/06/2007|14:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
    [11/11/2007|09:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [04/06/2008|18:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [02/06/2008|21:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
    [06/01/2008|12:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
    [27/01/2008|15:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
    [01/06/2008|17:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [15/06/2007|17:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
    [15/06/2007|10:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [16/06/2007|14:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
    [13/10/2007|21:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

    [15/06/2007|10:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
    [23/03/2008|13:11] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
    [15/06/2007|10:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [17/06/2007|17:54] C:\DOCUME~1\KIM\APPLIC~1\3M
    [24/03/2008|11:29] C:\DOCUME~1\KIM\APPLIC~1\Adobe
    [12/07/2007|21:02] C:\DOCUME~1\KIM\APPLIC~1\Ahead
    [23/02/2008|21:56] C:\DOCUME~1\KIM\APPLIC~1\Canon
    [23/09/2007|11:38] C:\DOCUME~1\KIM\APPLIC~1\CyberLink
    [01/07/2007|17:24] C:\DOCUME~1\KIM\APPLIC~1\DeepBurner
    [15/06/2007|10:55] C:\DOCUME~1\KIM\APPLIC~1\desktop.ini
    [22/06/2007|17:32] C:\DOCUME~1\KIM\APPLIC~1\DivX
    [18/10/2007|16:20] C:\DOCUME~1\KIM\APPLIC~1\dvdcss
    [23/03/2008|10:57] C:\DOCUME~1\KIM\APPLIC~1\Google
    [20/06/2007|11:22] C:\DOCUME~1\KIM\APPLIC~1\Help
    [15/06/2007|10:10] C:\DOCUME~1\KIM\APPLIC~1\Identities
    [02/12/2007|15:29] C:\DOCUME~1\KIM\APPLIC~1\InfraRecorder
    [15/06/2007|13:34] C:\DOCUME~1\KIM\APPLIC~1\InterTrust
    [20/04/2008|11:01] C:\DOCUME~1\KIM\APPLIC~1\LimeWire
    [15/06/2007|10:27] C:\DOCUME~1\KIM\APPLIC~1\Macromedia
    [16/06/2007|15:18] C:\DOCUME~1\KIM\APPLIC~1\Media Player Classic
    [01/06/2008|17:10] C:\DOCUME~1\KIM\APPLIC~1\Microsoft
    [18/06/2007|16:13] C:\DOCUME~1\KIM\APPLIC~1\Mozilla
    [17/11/2007|21:10] C:\DOCUME~1\KIM\APPLIC~1\Nero
    [29/05/2008|17:47] C:\DOCUME~1\KIM\APPLIC~1\OpenOffice.org2
    [17/06/2007|22:05] C:\DOCUME~1\KIM\APPLIC~1\PPMate
    [16/06/2007|15:24] C:\DOCUME~1\KIM\APPLIC~1\Real
    [23/12/2007|11:31] C:\DOCUME~1\KIM\APPLIC~1\Samsung
    [27/01/2008|15:17] C:\DOCUME~1\KIM\APPLIC~1\ScanSoft
    [21/08/2007|00:49] C:\DOCUME~1\KIM\APPLIC~1\Styler
    [15/07/2007|18:36] C:\DOCUME~1\KIM\APPLIC~1\Sun
    [15/06/2007|13:35] C:\DOCUME~1\KIM\APPLIC~1\Symantec
    [15/06/2007|10:39] C:\DOCUME~1\KIM\APPLIC~1\Talkback
    [18/06/2007|16:13] C:\DOCUME~1\KIM\APPLIC~1\Thunderbird
    [15/08/2007|18:28] C:\DOCUME~1\KIM\APPLIC~1\Uniblue
    [05/06/2008|00:36] C:\DOCUME~1\KIM\APPLIC~1\uTorrent
    [16/06/2007|15:23] C:\DOCUME~1\KIM\APPLIC~1\vlc
    [09/03/2008|16:09] C:\DOCUME~1\KIM\APPLIC~1\Vso
    [15/06/2007|13:18] C:\DOCUME~1\KIM\APPLIC~1\WinRAR

    [26/04/2008|22:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
    [27/08/2007|17:33] C:\DOCUME~1\LOCALS~1\APPLIC~1\Help
    [27/01/2008|19:39] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [18/05/2008|16:01] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

    [05/06/2008 00:37][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
    [11/05/2008 08:57][--a------] C:\WINDOWS\tasks\Uniblue SpyEraser Nag.job
    [31/07/2007 18:52][--a------] C:\WINDOWS\tasks\Uniblue SpyEraser.job
    [15/06/2007 13:35][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
    [05/06/2008 00:32][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [24/04/2003 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    ---------------[ Listing des dossiers dans C:\Program Files ]--------------

    [15/06/2007|13:34] C:\Program Files\Adobe
    [01/06/2008|16:04] C:\Program Files\Alcohol Soft
    [15/06/2007|13:30] C:\Program Files\Analog Devices
    [16/02/2008|18:13] C:\Program Files\Astonsoft
    [13/01/2008|11:17] C:\Program Files\Avira
    [03/05/2008|13:08] C:\Program Files\AxBx
    [04/06/2008|23:52] C:\Program Files\Bit Che
    [27/01/2008|15:19] C:\Program Files\Canon
    [27/01/2008|15:11] C:\Program Files\CanonBJ
    [15/06/2007|10:42] C:\Program Files\CCleaner
    [18/05/2008|15:36] C:\Program Files\CodeStuff
    [01/06/2008|16:05] C:\Program Files\Conduit
    [03/05/2008|06:10] C:\Program Files\CyberLink
    [15/06/2007|13:37] C:\Program Files\DFX
    [03/05/2008|06:12] C:\Program Files\DivX
    [21/08/2007|00:42] C:\Program Files\DL Software
    [01/06/2008|16:16] C:\Program Files\Fichiers communs
    [11/11/2007|17:05] C:\Program Files\Free Audio Pack
    [01/06/2008|16:05] C:\Program Files\free-downloads.net
    [20/04/2008|20:44] C:\Program Files\Google
    [03/05/2008|09:36] C:\Program Files\GrabIt
    [11/05/2008|13:28] C:\Program Files\HiFisoftware
    [03/05/2008|06:10] C:\Program Files\InstallShield Installation Information
    [15/06/2007|13:33] C:\Program Files\Intel
    [20/04/2008|20:44] C:\Program Files\Internet Explorer
    [15/06/2007|13:37] C:\Program Files\InterVideo
    [23/03/2008|13:00] C:\Program Files\Java
    [03/05/2008|06:55] C:\Program Files\Lavasoft
    [28/10/2007|19:18] C:\Program Files\Learning Essentials
    [12/10/2007|16:09] C:\Program Files\LimeWire
    [27/02/2008|21:14] C:\Program Files\Logitech
    [01/03/2008|20:32] C:\Program Files\Media Player Classic
    [16/06/2007|19:58] C:\Program Files\Messenger
    [24/02/2008|09:09] C:\Program Files\Messenger Plus! Live
    [16/06/2007|19:58] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [28/10/2007|19:22] C:\Program Files\Microsoft Etudes
    [15/06/2007|10:06] C:\Program Files\microsoft frontpage
    [01/06/2008|16:17] C:\Program Files\Microsoft Office
    [01/06/2008|16:16] C:\Program Files\Microsoft Visual Studio
    [01/06/2008|16:11] C:\Program Files\Microsoft Visual Studio 8
    [01/06/2008|16:17] C:\Program Files\Microsoft Works
    [01/06/2008|16:15] C:\Program Files\Microsoft.NET
    [01/03/2008|12:27] C:\Program Files\Movie Maker
    [05/06/2008|00:35] C:\Program Files\Mozilla Firefox
    [01/06/2008|16:17] C:\Program Files\MSBuild
    [15/06/2007|10:03] C:\Program Files\MSN
    [15/06/2007|10:03] C:\Program Files\MSN Gaming Zone
    [16/06/2007|19:57] C:\Program Files\MSXML 4.0
    [30/10/2007|00:37] C:\Program Files\MSXML 6.0
    [16/06/2007|13:39] C:\Program Files\NetMeeting
    [01/06/2008|16:28] C:\Program Files\OpenOffice.org 2.1
    [03/05/2008|06:07] C:\Program Files\Outlook Express
    [15/06/2007|13:20] C:\Program Files\Realtek AC97
    [18/05/2008|16:31] C:\Program Files\RegCleaner
    [15/06/2007|10:18] C:\Program Files\SAGEM
    [15/06/2007|10:18] C:\Program Files\SAGEM WiFi manager
    [23/12/2007|11:27] C:\Program Files\Samsung
    [27/01/2008|15:16] C:\Program Files\ScanSoft
    [15/06/2007|10:12] C:\Program Files\Securitoo
    [15/06/2007|10:05] C:\Program Files\Services en ligne
    [15/09/2007|19:53] C:\Program Files\Spybot - Search & Destroy
    [21/08/2007|00:53] C:\Program Files\Styler
    [15/06/2007|13:57] C:\Program Files\Symantec
    [21/10/2007|12:30] C:\Program Files\TweakRAM
    [15/06/2007|10:10] C:\Program Files\Uninstall Information
    [21/08/2007|13:02] C:\Program Files\uTorrent
    [15/06/2007|10:41] C:\Program Files\VideoLAN
    [05/06/2008|00:49] C:\Program Files\Wanadoo
    [01/11/2007|17:49] C:\Program Files\Winamp
    [18/05/2008|15:41] C:\Program Files\Windows Defender
    [16/06/2007|14:50] C:\Program Files\Windows Live
    [16/06/2007|16:04] C:\Program Files\Windows Media Connect 2
    [16/06/2007|16:04] C:\Program Files\Windows Media Player
    [16/06/2007|13:39] C:\Program Files\Windows NT
    [15/06/2007|10:57] C:\Program Files\WindowsUpdate
    [15/06/2007|10:45] C:\Program Files\WinRAR
    [15/06/2007|10:06] C:\Program Files\xerox

    ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

    [16/06/2007|15:11] C:\Program Files\Fichiers communs\Adobe
    [21/10/2007|12:35] C:\Program Files\Fichiers communs\Ahead
    [27/01/2008|15:15] C:\Program Files\Fichiers communs\CANON
    [01/06/2008|16:16] C:\Program Files\Fichiers communs\DESIGNER
    [27/01/2008|15:17] C:\Program Files\Fichiers communs\InstallShield
    [06/07/2007|17:14] C:\Program Files\Fichiers communs\Java
    [27/02/2008|21:42] C:\Program Files\Fichiers communs\LogiShrd
    [27/02/2008|21:16] C:\Program Files\Fichiers communs\Logitech
    [01/06/2008|16:17] C:\Program Files\Fichiers communs\Microsoft Shared
    [15/06/2007|10:04] C:\Program Files\Fichiers communs\MSSoap
    [15/06/2007|10:55] C:\Program Files\Fichiers communs\ODBC
    [16/06/2007|15:24] C:\Program Files\Fichiers communs\Real
    [27/01/2008|15:17] C:\Program Files\Fichiers communs\ScanSoft Shared
    [15/06/2007|10:04] C:\Program Files\Fichiers communs\Services
    [15/06/2007|10:55] C:\Program Files\Fichiers communs\SpeechEngines
    [21/08/2007|00:35] C:\Program Files\Fichiers communs\Stardock
    [15/06/2007|13:57] C:\Program Files\Fichiers communs\Symantec Shared
    [17/06/2007|22:05] C:\Program Files\Fichiers communs\Synacast
    [01/06/2008|16:11] C:\Program Files\Fichiers communs\System
    [03/05/2008|06:55] C:\Program Files\Fichiers communs\Wise Installation Wizard

    ---------------------------[ Process ]--------------------------

    ... 49

    iexplore.exe ~ [5352]

    ----------------------[ Recherche avec S_Lop ]---------------------

    Aucun fichier / dossier Lop trouvé !

    -----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

    Aucun fichier / dossier Lop trouvé !

    ----------------------[ Verification du Registre ]----------------------

    ..... OK !

    --------------------[ Verification du fichier Hosts ]---------------------

    Fichier Hosts PROPRE


    ----------------[ Recherche de fichiers avec Catchme ]-----------------

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-06-05 01:06:22
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------[ Recherche d'autres infections ]---------------------

    => C:\Documents and Settings\KIM\Application Data\uTorrent\Kaspersky.Mobile.Secuirty.v7.0.32.S60v3.SymbianOS9.1.Unsigned.Cracked-illusion.torrent
    => C:\Documents and Settings\KIM\Mes documents\Ma musique\Top 500 rock songs\CD 2\113 low Cracker.mp3
    => C:\Documents and Settings\KIM\Mes documents\Ma musique\Top 500 rock songs\CD 2\153 teen_angst_(what_the_world_needs_now) Cracker.mp3


    [F:1358][D:22]-> C:\DOCUME~1\KIM\LOCALS~1\Temp
    [F:258][D:0]-> C:\DOCUME~1\KIM\Cookies
    [F:1310][D:6]-> C:\DOCUME~1\KIM\LOCALS~1\TEMPOR~1\content.IE5

    --------------------[ Fin du rapport a 1:07:13,10 ]----------------------







    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 01:08:23, on 05/06/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16640)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Windows Defender\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
    C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
    C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
    C:\Program Files\InterVideo\WinDVR\WinScheduler.exe
    C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    C:\WINDOWS\System32\FTRTSVC.exe
    C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
    C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Intel\Intel(R) Active Monitor\imonnt.exe
    C:\PROGRA~1\Wanadoo\ComComp.exe
    C:\PROGRA~1\Wanadoo\Toaster.exe
    C:\PROGRA~1\Wanadoo\Inactivity.exe
    C:\PROGRA~1\Wanadoo\PollingModule.exe
    C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
    C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    C:\PROGRA~1\Wanadoo\Watch.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\WINDOWS\explorer.exe
    C:\WINDOWS\system32\notepad.exe
    C:\Documents and Settings\KIM\Bureau\sécurité\HiJackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT109864...
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.01net.com/telecharger/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
    R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\Adobe\Acrobat Reader 5\Reader\ActiveX\AcroIEHelper.ocx
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
    O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
    O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
    O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe"
    O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
    O4 - Global Startup: InterVideo WinScheduler.lnk = C:\Program Files\InterVideo\WinDVR\WinScheduler.exe
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
    O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
    O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
    O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://downloads.ewido.net/ewidoOnlineScan.cab
    O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
    O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
    O18 - Protocol: bw+0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: offline-8876480 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
    O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
    O23 - Service: Intel(R) Active Monitor (imonNT) - Intel Corp. - C:\Program Files\Intel\Intel(R) Active Monitor\imonnt.exe
    O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

    --
    End of file - 21710 bytes

    En tout cas merci :bounce: 

    tu crois que y a encore des virus?

    Bonne nuit !!!













    5 Juin 2008 18:08:00

    :hello: 

    Merci Sham_Rock pour ton aide et ta réactivité !!!!

    mon ordinateur tourne nickel maintenant et j'ai rajouté un pare feu ( Zone alarm) pour plus de sécurité !!

    :bounce: 

    Merci beaucoup et au plaisir!!!!!!!!!!
    5 Juin 2008 21:08:16

    re

    ~Lance Hijackthis “Do a system scan only”.
    Coche les lignes qui suivent si encore présentes et uniquement celles-là.

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSo [...] =CT1098640
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
    et toutes les:
    O18 - Protocol: bwy0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    tu n'en gardes qu'une.


    Clique sur Fix checked (en bas à gauche)


    ~Fais une analyse antivirus en ligne sur le site de Kaspersky
    http://webscanner.kaspersky.fr/

    ~ Clique sur Online Scanner.
    ~Accepte l'installation du contrôle ActiveX en cliquant sur le bouton Install.

    ~Sélectionne le poste de travail comme analyse.

    ~Enregistre le rapport en cliquant sur le bouton "Enregistrer rapport sous". Nomme-le, tu feras un copier/coller dans ta prochaine réponse.

    Tuto du scan en ligne

    6 Juin 2008 11:03:50

    :hello: 

    Depuis hier soir les videos sont redevenus lentes en plein écran :sweat: 

    voilà le rapport :

    Friday, June 06, 2008 11:00:12 AM
    Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
    Kaspersky On-line Scanner version : 5.0.83.0
    Dernière mise à jour de la base antivirus Kaspersky : 6/06/2008
    Enregistrements dans la base antivirus Kaspersky : 740785
    Paramètres d'analyse
    Analyser avec la base antivirus suivante standard
    Analyser les archives vrai
    Analyser les bases de messagerie vrai
    Cible de l'analyse Poste de travail
    A:\
    C:\
    D:\
    E:\
    Statistiques de l'analyse
    Total d'objets analysés 65837
    Nombre de virus trouvés 2
    Nombre d'objets infectés 3 / 0
    Nombre d'objets suspects 0
    Durée de l'analyse 01:27:16

    Nom de l'objet infecté Nom du virus Dernière action
    C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Support\MPLog-05182008-154140.log L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Application Data\Mozilla\Firefox\Profiles\c60gvkkw.default\cert8.db L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Application Data\Mozilla\Firefox\Profiles\c60gvkkw.default\formhistory.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Application Data\Mozilla\Firefox\Profiles\c60gvkkw.default\history.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Application Data\Mozilla\Firefox\Profiles\c60gvkkw.default\key3.db L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Application Data\Mozilla\Firefox\Profiles\c60gvkkw.default\parent.lock L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Application Data\Mozilla\Firefox\Profiles\c60gvkkw.default\search.sqlite L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Application Data\Mozilla\Firefox\Profiles\c60gvkkw.default\urlclassifier2.sqlite L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Cookies\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Local Settings\Application Data\Microsoft\Windows Defender\FileTracker\{B3F73E6C-8011-4910-8A5C-169B92889288} L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Local Settings\Application Data\Mozilla\Firefox\Profiles\c60gvkkw.default\Cache\_CACHE_001_ L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Local Settings\Application Data\Mozilla\Firefox\Profiles\c60gvkkw.default\Cache\_CACHE_002_ L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Local Settings\Application Data\Mozilla\Firefox\Profiles\c60gvkkw.default\Cache\_CACHE_003_ L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Local Settings\Application Data\Mozilla\Firefox\Profiles\c60gvkkw.default\Cache\_CACHE_MAP_ L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Local Settings\Historique\History.IE5\MSHist012008060620080607\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\NTUSER.DAT L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\KIM\Shared\musique\walking in air celtic woman.mp3 Infecté : Trojan-Downloader.WMA.Wimad.n ignoré
    C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\Cookies\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\logs\sw_ae-20080606-070531.log L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\BWDocMap.pht L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\BWInfopakMap.pht L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\chandir.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\chandir.idx L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\chn.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\chn.idx L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\D0000000.FCS L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\inuse.txt L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\L0000020.FCS L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\main.log L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\prs.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\prs.idx L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\prs_die.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\prs_die.idx L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\prs_dnd.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\prs_dnd.idx L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\prs_ext.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\prs_ext.idx L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\prs_rcv.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\prs_rcv.idx L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\storydb.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\KIM\Data\storydb.idx L'objet est verrouillé ignoré
    C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
    C:\System Volume Information\_restore{80BE7997-7ACF-4D5C-B407-05AF6F5E623B}\RP360\A0076085.exe/data0002 Infecté : Trojan.Win32.Monder.gen ignoré
    C:\System Volume Information\_restore{80BE7997-7ACF-4D5C-B407-05AF6F5E623B}\RP360\A0076085.exe NSIS: infecté - 1 ignoré
    C:\System Volume Information\_restore{80BE7997-7ACF-4D5C-B407-05AF6F5E623B}\RP373\change.log L'objet est verrouillé ignoré
    C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\Internet Logs\fwdbglog.txt L'objet est verrouillé ignoré
    C:\WINDOWS\Internet Logs\fwpktlog.txt L'objet est verrouillé ignoré
    C:\WINDOWS\Internet Logs\IAMDB.RDB L'objet est verrouillé ignoré
    C:\WINDOWS\Internet Logs\REYBAUD.ldb L'objet est verrouillé ignoré
    C:\WINDOWS\Internet Logs\tvDebug.log L'objet est verrouillé ignoré
    C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
    C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
    C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré
    C:\WINDOWS\system32\CatRoot2\edb.log L'objet est verrouillé ignoré
    C:\WINDOWS\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\Internet.evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\ODiag.evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\OSession.evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\drivers\fidbox.dat L'objet est verrouillé ignoré
    C:\WINDOWS\system32\drivers\fidbox.idx L'objet est verrouillé ignoré
    C:\WINDOWS\system32\drivers\sptd.sys L'objet est verrouillé ignoré
    C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\LogFiles\HTTPERR\httperr1.log L'objet est verrouillé ignoré
    C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\Temp\ZLT04c79.TMP L'objet est verrouillé ignoré
    C:\WINDOWS\Temp\ZLT06cb5.TMP L'objet est verrouillé ignoré
    C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré
    C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré
    C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré
    Analyse terminée.
    6 Juin 2008 18:36:05

    re
    Citation :
    Je sais c'est pas bien les cracks d'ailleurs je les ai virés vu que c'était pas pour moi

    il en reste nan???

    Citation :
    C:\Documents and Settings\KIM\Shared\musique\walking in air celtic woman.mp3Trojan-Downloader.WMA.Wimad.n


    supprime
    C:\Documents and Settings\KIM\Shared\musique\walking in air celtic woman.mp3

    ~Télécharge CCleaner:

    http://www.filehippo.com/download_ccleaner/

    ~Lors de l'installation décoche: "Ajouter la Barre d'Outils Yahoo! Ccleaner"
    déconnecte toi du net
    Clique sur le bouton nettoyeur, tu fais " lancer le nettoyage "
    Clique sur le bouton erreurs, tu fais "chercher les erreurs ", puis "réparer les erreurs".
    Tuto de CCleaner: (merci à Malekal) .
    http://www.malekal.com/tutorial_CCleaner.html


    reposte un log hijackthis
    7 Juin 2008 00:36:47

    :bounce: 

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 00:36:10, on 07/06/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16640)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Windows Defender\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    C:\WINDOWS\System32\FTRTSVC.exe
    C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
    C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Intel\Intel(R) Active Monitor\imonnt.exe
    C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
    C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\Program Files\InterVideo\WinDVR\WinScheduler.exe
    C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
    C:\PROGRA~1\Wanadoo\ComComp.exe
    C:\WINDOWS\System32\svchost.exe
    C:\PROGRA~1\Wanadoo\Toaster.exe
    C:\PROGRA~1\Wanadoo\Inactivity.exe
    C:\PROGRA~1\Wanadoo\PollingModule.exe
    C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
    C:\PROGRA~1\Wanadoo\Watch.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\KIM\Bureau\sécurité\HiJackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.01net.com/telecharger/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
    R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\Adobe\Acrobat Reader 5\Reader\ActiveX\AcroIEHelper.ocx
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
    O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
    O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
    O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
    O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: InterVideo WinScheduler.lnk = C:\Program Files\InterVideo\WinDVR\WinScheduler.exe
    O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
    O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
    O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
    O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://downloads.ewido.net/ewidoOnlineScan.cab
    O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
    O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
    O18 - Protocol: bw+0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: offline-8876480 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
    O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
    O23 - Service: Intel(R) Active Monitor (imonNT) - Intel Corp. - C:\Program Files\Intel\Intel(R) Active Monitor\imonnt.exe
    O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

    --
    End of file - 21100 bytes
    8 Juin 2008 00:04:47

    bonsoir

    tu n'as pas fixchecked tout ce que je te demandais de fixer. (tu as oublié les O18)

    désinstalle free-downloads.net via ajout/suppression de programmes

    ~Lance Hijackthis “Do a system scan only”.
    Coche les lignes qui suivent si encore présentes et uniquement celles-là.
    R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
    O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
    O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
    coche aussi toutes les
    O18 - Protocol: bw+0 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

    sauf une




    Clique sur Fix checked (en bas à gauche)

    supprime le dossier
    C:\Program Files\free-downloads.net

    reposte un log hijackthis


    8 Juin 2008 12:28:05

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 12:27:38, on 08/06/2008
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16640)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Windows Defender\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    C:\WINDOWS\System32\FTRTSVC.exe
    C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
    C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Intel\Intel(R) Active Monitor\imonnt.exe
    C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
    C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
    C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
    C:\Program Files\InterVideo\WinDVR\WinScheduler.exe
    C:\PROGRA~1\Wanadoo\ComComp.exe
    C:\PROGRA~1\Wanadoo\Toaster.exe
    C:\PROGRA~1\Wanadoo\Inactivity.exe
    C:\PROGRA~1\Wanadoo\PollingModule.exe
    C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
    C:\WINDOWS\System32\svchost.exe
    C:\PROGRA~1\Wanadoo\Watch.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\WINDOWS\Explorer.EXE
    C:\Documents and Settings\KIM\Bureau\sécurité\HiJackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.01net.com/telecharger/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
    O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
    O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
    O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: InterVideo WinScheduler.lnk = C:\Program Files\InterVideo\WinDVR\WinScheduler.exe
    O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll (file missing)
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll (file missing)
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
    O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
    O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
    O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://downloads.ewido.net/ewidoOnlineScan.cab
    O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
    O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
    O18 - Protocol: offline-8876480 - {854F3407-1ED4-4E7E-A2C5-00FF913A9871} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
    O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
    O23 - Service: Intel(R) Active Monitor (imonNT) - Intel Corp. - C:\Program Files\Intel\Intel(R) Active Monitor\imonnt.exe
    O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

    --
    End of file - 8366 bytes
    8 Juin 2008 21:08:43

    re
    d'autres soucis?
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS