analyse d'un rapprot Highjack

Recherche :

Mot : Pseudo : Filtrer
Bas de page
Auteur	Sujet : analyse d'un rapprot Highjack

arno92240

bonjour!!

je trouve que mon Pc rame un petit peu en ce moment......

voila mon rapport :
Logfile of HijackThis v1.99.1
Scan saved at 20:35:23, on 15/09/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\PROGRA~1\FICHIE~1\Stardock\SDMCP.exe
F:\WINDOWS\system32\spoolsv.exe
F:\WINDOWS\Explorer.EXE
F:\WINDOWS\System32\sstray.exe
F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
F:\PROGRA~1\Ahead\NEROTO~1\DRIVES~1.EXE
F:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE
F:\WINDOWS\System32\TCAUDIAG.exe
F:\Program Files\QuickTime\qttask.exe
F:\WINDOWS\System32\rundll32.exe
F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
F:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
F:\Program Files\Logitech\SetPoint\KEM.exe
F:\Program Files\Zone Labs\ZoneAlarm\zapro.exe
F:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
F:\Program Files\Alwil Software\Avast4\ashServ.exe
F:\WINDOWS\System32\drivers\CDAC11BA.EXE
F:\WINDOWS\System32\nvsvc32.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\ZoneLabs\vsmon.exe
F:\Program Files\Alwil Software\Avast4\ashWebSv.exe
F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
F:\Program Files\MSN Messenger\MsnMsgr.Exe
F:\Program Files\Soulseek\slsk.exe
F:\Program Files\Mozilla Firefox\firefox.exe
F:\Program Files\HJT\HijackThis-1.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://my.freeze.com/start.shtml
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: IE5BarLauncherBHO Class - {1ADBCCE8-CF84-441E-9B38-AFC7A19C06A4} - F:\Program Files\e-zshopper\BarLcher.dll
O2 - BHO: URLLink Class - {4A2AACF3-ADF6-11D5-98A9-00E018981B9E} - F:\Program Files\NewDotNet\newdotnet6_38.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: LinkTracker Class - {85A77577-A8CA-41b7-AA1E-DDAD4C0B12B1} - F:\WINDOWS\System32\hlwin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - f:\program files\google\googletoolbar1.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - F:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - f:\program files\google\googletoolbar1.dll
O3 - Toolbar: e-zshopper 1.200 - {3D782BB3-F2A5-11D3-BF4C-000000000000} - F:\Program Files\e-zshopper\BarLcher.dll
O4 - HKLM\..\Run: [nForce Tray Options] sstray.exe /r
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE F:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [eMusicClient] F:\Program Files\Winamp\eMusic\eMusicClient.exe
O4 - HKLM\..\Run: [FTP Server] F:\PROGRA~1\FTPSER~1\ftpserv.exe
O4 - HKLM\..\Run: [NeroFilterCheck] F:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [OCAudioIni] F:\Program Files\One-click Audio Converter\OCAudioIni.exe
O4 - HKLM\..\Run: [avast!] F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE F:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Nero DriveSpeed] F:\PROGRA~1\Ahead\NEROTO~1\DRIVES~1.EXE
O4 - HKLM\..\Run: [mmtask] c:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
O4 - HKLM\..\Run: [EPSON Stylus CX3600 Series] F:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE /P26 "EPSON Stylus CX3600 Series" /O6 "USB001" /M "Stylus CX3600"
O4 - HKLM\..\Run: [EPSON Stylus CX3600 Series (Copie 1)] F:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE /P36 "EPSON Stylus CX3600 Series (Copie 1)" /O5 "LPT1:" /M "Stylus CX3600"
O4 - HKLM\..\Run: [TCASUTIEXE] TCAUDIAG.exe -on
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "F:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [New.net Startup] rundll32 F:\PROGRA~1\NEWDOT~1\NEWDOT~1.DLL,NewDotNetStartup -s
O4 - HKCU\..\Run: [LDM] F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [eZmmod] F:\PROGRA~1\ezula\mmod.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = F:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = F:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = F:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = F:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Office.lnk = F:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = F:\Program Files\WinZip\WZQKPICK.EXE
O4 - Global Startup: ZoneAlarm Pro.lnk = F:\Program Files\Zone Labs\ZoneAlarm\zapro.exe
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://f:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://F:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://f:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://f:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://f:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Télécharger avec &BitSpirit - F:\Program Files\BitSpirit\bsurl.htm
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://f:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: eZshopper - {BFA03761-5565-41b3-93D9-82B354C0A8EC} - SHDOCVW.DLL (file missing)
O9 - Extra 'Tools' menuitem: e-zshopper - {BFA03761-5565-41b3-93D9-82B354C0A8EC} - SHDOCVW.DLL (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\MSMSGS.EXE
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O16 - DPF: {9E1089BC-1AE8-4685-8D77-6721E5C318A8} - http://217.73.66.16/comload.dll
O16 - DPF: {AD7FAFB0-16D6-40C3-AF27-585D6E6453FD} - http://217.73.66.1/minidialler/mdd [...] 00252_.exe
O18 - Protocol: bw+0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {213E50FA-B916-4DD2-B51C-BC6CBD032E91} - F:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Filter: text/html - {03974811-C15F-462c-B6B0-2D2336AA57D0} - F:\WINDOWS\System32\hlwin.dll
O20 - Winlogon Notify: MCPClient - F:\PROGRA~1\FICHIE~1\Stardock\mcpstub.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - F:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - F:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - F:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: Macromedia Licensing Service - Unknown owner - F:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - F:\WINDOWS\System32\nvsvc32.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - F:\WINDOWS\system32\ZoneLabs\vsmon.exe

merci de m'aider au cas ou j'aurais des spyware qui traineraient.....

MERCI

Publicité

y@nnik

En effet, tu as des parasites. C'est ta connexion à Internet qui est ralentit ou le PC en lui-même ?

Commence par désinstaller New.net via « ajout/suppression de programmes », dans le panneau de configuration.

pollux_63

Bonsoir, il y a le parasite NewDotNet: O10 - Hijacked Internet access by New.Net

Télécharge cet outil de désinfection LSPFix de Cexx.org
http://www.cexx.org/lspfix.htm

Ce programme tente de corriger les problèmes de connexion à Internet résultant de programmes Layered Service Provider (LSP) buggués ou improprement éliminées. Ce problème survient souvent par les adwares New.net (NewdotNet) et WebHancer, en bundle avec des freewares.

Quand vous lancez LSP-Fix, il lit la liste des modules LSP à partir de la base de registres de Windows et vérifie que chaque module existe. Si un module manque, il est placé dans la liste "Remove" pour être éliminé, explications assiste.com.

Voici comment procéder:

1 Démarrer> Paramètres> Panneau de configuration> Ajout/suppression des programmes
Sil y a le programme NewDoNeT ou NewNet le désinstaller.
(le désinstaller en mode sans échec si lapplication est récalcitrante)

2 Explorateur Windows suivre ce chemin :
C:\Program Files\NewDotNet\ ou C:\windows\
Rechercher le fichier de désinstallation ressemblant a NDNuninstallX_XX.exe(x est la version)
Cliquer dessus,une fois la désinstallation terminée supprime le dossier C:\Program Files\NewDotNet\

3 Télécharge ceci uninstallNewdonet http://www.new.net/support/uninsta [...] ll6_38.exe
et tu le copies sur une disquette ou CD.
Insère la disquette ou CD.
Clique sur Démarrer.
Clique sur Exécuter.
Tape: X:\uninstall6_38.exe. (où X représente le lecteur Disquette A ou ton lecteur CD D, E, F,..)
Clique sur OK.
Une fois la désinstallation terminée, redémarre.

Si après la manip ci-dessous tu perds laccès à internet :
Démarre LSPFix
Coche 'I know what I'm doing'
Clique sur 'Finish'.
Redémarre ton PC et poste un nouveau rapport Hijackthis effectué en mode sans échec

Auteur: Stonangel

y@nnik

pollux-63, je te laisse avec le log alors.

acrobaze

Slt,

On n'utilise pas LspFix pour NewNet. Deux solutions :
- ou désinstaller par ajout/suppr de programmes
- ou s'il n'est pas présent ds la liste, télécharger et lancer leur uninstall.

y@nnik

C'est à stonangel qu'il faut dire ça... :whistle:

stonangel

Je ne suis pas l'auteur de ce post :ange: je l'ai... emprunté :whistle:

stonangel

Un peu de lecture sur le sujet:

http://www.newdotnet.com/removal.html

http://www.cexx.org/newnet.htm

Citation :

The supplied Add/Remove option has been known to fail in some circumstances. If this happens, New.Net recommends that you e-mail New.Net support or phone them at (626) 229-7800. As the New.net software is being constantly updated, removal information on this Web site can easily become out-of-date.

I have written a small utility, LSP-Fix, that repairs corrupted Winsock stacks. This can be used to remove entries left behind by New.net and similar software, restoring access to machines that cannot connect to the Internet. You can download it here. Note however, that this is NOT an uninstaller of anything, it is only to fix connection problems.

Message édité par stonangel le 22-09-2005 à 21:07:39

acrobaze

Je n'avais pas lu le post en entier...mea culpa... :sweat:

( Autrement dit, j'ai cru qu'il voulait utiliser LspFix pour "remover" NewNet...alors qu'il n'est pris que comme précaution en cas de problème..)

wawaseb

En tous cas, c'est un outil extrêmement puissant ce LspFix...
A manipuler avec précaution et ... prévoir l'antidote !!!

FORUM HardWare.fr

Windows & Software

Sécurité

analyse d'un rapprot Highjack

Sujets relatifs
AWSTATS et analyse de logs	analyse hidjackthis(NTRooKit-J)
Analyse log HijackThis ==> merci d'avance	analyse log hijackthis
analyse log hijackthis svp	Analyse e-mail sortants interminables ...
Analyse log HijackThis - SVP	IWSS de TrendMicro: activer l'analyse FTP
analyse Hijack et savedump.exe...	analyse log hijackthis svp
Plus de sujets relatifs à : analyse d'un rapprot Highjack

Page générée en 0.068 secondes