Forum |  HardWare.fr | News | Articles | PC | S'identifier | S'inscrire | Shop Recherche
1824 connectés 

  FORUM HardWare.fr
  Windows & Software
  Sécurité

  Probleme de Spyware - Ci joit le LOg HiJackThis

 
 


 Mot :   Pseudo :  
 
Bas de page
Auteur Sujet :

Probleme de Spyware - Ci joit le LOg HiJackThis

n°2380136
Docky
Posté le 11-04-2006 à 07:08:14  profilanswer
 

Bonjour,  
 
J'ai un peit probg avec un SPyware que je n'arrive pas a supprimer (errorsafe)  
 
Voici mon log HiJackThis  
 
Logfile of HijackThis v1.99.1  
Scan saved at 22:35:12, on 10/04/2006  
Platform: Windows XP (WinNT 5.01.2600)  
MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000)  
 
Running processes:  
C:\WINDOWS\System32\smss.exe  
C:\WINDOWS\system32\winlogon.exe  
C:\WINDOWS\system32\services.exe  
C:\WINDOWS\system32\lsass.exe  
C:\WINDOWS\system32\svchost.exe  
C:\WINDOWS\System32\svchost.exe  
C:\WINDOWS\system32\logonui.exe  
C:\WINDOWS\system32\spoolsv.exe  
C:\WINDOWS\Explorer.EXE  
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe  
C:\Program Files\MessengerPlus! 3\MsgPlus.exe  
c:\progra~1\intern~1\iexplore.exe  
C:\Program Files\Internet Explorer\iexplore.exe  
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe  
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe  
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe  
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe  
C:\WINDOWS\System32\svchost.exe  
C:\Program Files\MSN Messenger\msnmsgr.exe  
C:\WINDOWS\System32\wuauclt.exe  
C:\Program Files\Messenger\msmsgs.exe  
C:\WINDOWS\System32\rsvp.exe  
C:\Program Files\mIRC\mirc.exe  
C:\Program Files\Internet Explorer\IEXPLORE.EXE  
C:\David\HijackThis.exe  
 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.fr/  
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://home.fra.chello.fr/ssi/welc [...] ome&src=ie  
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/i [...] earch.html  
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.fr/  
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer fourni par chello broadband n.v.  
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.chello.fr:8080  
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = ;local;;<local>  
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens  
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll  
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx  
O2 - BHO: (no name) - {0F13857B-2256-7BD7-451F-1286640B2CFB} - C:\DOCUME~1\MICHAU~1\APPLIC~1\SITETE~1\BOLDHEART.exe  
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll  
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll  
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dll  
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx  
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll  
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP  
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"  
O4 - HKCU\..\Run: [RegsSect] C:\DOCUME~1\MICHAU~1\APPLIC~1\ADMINT~1\tick seek.exe  
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart  
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background  
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000  
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll  
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll  
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll  
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE  
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE  
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll  
O14 - IERESET.INF: START_PAGE_URL=http://home.fra.chello.fr/ssi/welcome/welcome.php?url=home&src=ie  
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab  
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204  
O16 - DPF: {2472DCCC-68CE-49DA-AA81-E7E6D83C1DFA} (PackageHTML) - http://acces.blonde.com/package/PackageHtmlCab.CAB  
O16 - DPF: {2A32B14F-4D29-4EA3-AC54-E9B19F436CE7} (Scanner Class) - http://www.windowsecurity.com/trojanscan/TDECntrl.CAB  
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6 [...] vSniff.cab  
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.ya [...] 040510.cab  
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab  
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by13fd.bay13.hotmail.msn.co [...] nPUpld.cab  
O16 - DPF: {556DDE35-E955-11D0-A707-000000521957} - http://www.xblock.com/download/xclean_micro.exe  
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/5 [...] taller.exe  
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6 [...] /cabsa.cab  
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/micros [...] 7332248347  
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537 [...] scan53.cab  
O16 - DPF: {92CA8ACC-4E99-4A2A-93F1-B2C5CADC8613} (OPInstall Control) - http://a14.g.akamai.net/f/14/7141/ [...] 1.14.0.cab  
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/ [...] loader.cab  
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com [...] loader.cab  
O16 - DPF: {EF99BD32-C1FB-11D2-892F-0090271D4F88} (Yahoo! Toolbar) - http://us.dl1.yimg.com/download.co [...] _1_6_0.cab  
O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IncrediMail) - http://www2.incredimail.com/conten [...] loader.cab  
O18 - Protocol: bw+0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw+0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw-0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw-0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw00 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw00s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw10 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw10s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw20 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw20s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw30 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw30s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw40 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw40s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw50 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw50s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw60 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw60s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw70 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw70s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw80 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw80s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw90 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw90s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwa0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwa0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwb0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwb0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwc0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwc0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwd0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwd0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwe0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwe0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwf0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwf0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll  
O18 - Protocol: bwg0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwg0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwh0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwh0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwi0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwi0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwj0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwj0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwk0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwk0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwl0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwl0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwm0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwm0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwn0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwn0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwo0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwo0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwp0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwp0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwq0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwq0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwr0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwr0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bws0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bws0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwt0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwt0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwu0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwu0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwv0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwv0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bww0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bww0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwx0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwx0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwy0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwy0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwz0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwz0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)  
O18 - Protocol: offline-8876480 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe  
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe  
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe  
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe  
O23 - Service: Norman API-hooking helper (NipSvc) - Unknown owner - C:\NORMAN\Nvc\BIN\nipsvc.exe (file missing)  
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe  
 
 
Merci de votre aide, parce que là j'ai du mal :/
 

mood
Publicité
Posté le 11-04-2006 à 07:08:14  profilanswer
 

n°2380276
Anthony10
Posté le 11-04-2006 à 10:28:50  profilanswer
 

Bonjour a tous,
 
C'est une manipulaton assez longue donc je te conseille de l'imprimer.
 
* Télécharger et installer EasyCleaner de Toni Helenius  
 
http://personal.inet.fi/business/toniarts/ecleane.htm
 
 
* Télécharger et installer :
 
- Ewido http://www.ewido.net/fr/download/
* Durant l'installation
* Sur la page Additional Options
* Décoche Install background guardet et Install scan via context menu
* Lance Ewido Security Suite. Clique sur Mise à jour mais ne t'en serts pas tout de suite.
 
 
* S'assurer que tout les fichiers soient la :
 
 - Autorise l'affichage des fichiers et dossiers cachés
 - Clique sur Démarrer - Panneau de configuration - Outils - Option des dossiers onglet Affichage
 - Cocher Afficher les Fichiers et dossiers cachés
 - Décocher Masquer les fichiers protégés du système d'exploitation (recommandé)
 - Décocher Masquer les extensions dont le type est connu
 - Clique sur Appliquer et Ok pour valider les changements
 
 
*   Désactivez la restauration systéme [ http://www.sosordi.net/Astuce/Astuce.29.html ]
 
 
*  Redémarrez votre PC en mode sans échec [ http://www.sosordi.net/Faq/Faq.2.html ] [color=red] Impératif [/color] !!!
 
 
* Clique sur Démarrer - Exécuter tape Services.msc  
* Repére cette ligne Boonty Games [ Boonty.exe ] double clic dessus, et à Type de démarrage choisis dans la liste Désactivé  
 
 
* Enlever les lignes nefastes :
 
 Relancez  HijackThis et cliquez sur Scan only  puis cochez les lignes [ si presentes ] en gras ci-dessous :  
 
O2 - BHO: (no name) - {0F13857B-2256-7BD7-451F-1286640B2CFB} - C:\DOCUME~1\MICHAU~1\APPLIC~1\SITETE~1\BOLDHEART.exe  
 
O4 - HKCU\..\Run: [RegsSect] C:\DOCUME~1\MICHAU~1\APPLIC~1\ADMINT~1\tick seek.exe  
 
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab  
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204  
O16 - DPF: {2472DCCC-68CE-49DA-AA81-E7E6D83C1DFA} (PackageHTML) - http://acces.blonde.com/package/PackageHtmlCab.CAB  
O16 - DPF: {2A32B14F-4D29-4EA3-AC54-E9B19F436CE7} (Scanner Class) - http://www.windowsecurity.com/trojanscan/TDECntrl.CAB  
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6 [...] vSniff.cab  
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.ya [...] 040510.cab  
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab  
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by13fd.bay13.hotmail.msn.co [...] nPUpld.cab  
O16 - DPF: {556DDE35-E955-11D0-A707-000000521957} - http://www.xblock.com/download/xclean_micro.exe  
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/5 [...] taller.exe  
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6 [...] /cabsa.cab  
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/micros [...] 7332248347  
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537 [...] scan53.cab  
O16 - DPF: {92CA8ACC-4E99-4A2A-93F1-B2C5CADC8613} (OPInstall Control) - http://a14.g.akamai.net/f/14/7141/ [...] 1.14.0.cab  
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/ [...] loader.cab  
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com [...] loader.cab  
O16 - DPF: {EF99BD32-C1FB-11D2-892F-0090271D4F88} (Yahoo! Toolbar) - http://us.dl1.yimg.com/download.co [...] _1_6_0.cab  
O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IncrediMail) - http://www2.incredimail.com/conten [...] loader.cab  
 
O18 - Protocol: bw+0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw+0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw-0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw-0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw00 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw00s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw10 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw10s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw20 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw20s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw30 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw30s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw40 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw40s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw50 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw50s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw60 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw60s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw70 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw70s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw80 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw80s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw90 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw90s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwa0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwa0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwb0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwb0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwc0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwc0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwd0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwd0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwe0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwe0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwf0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwf0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll  
O18 - Protocol: bwg0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwg0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwh0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwh0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwi0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwi0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwj0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwj0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwk0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwk0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwl0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwl0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwm0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwm0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwn0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwn0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwo0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwo0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwp0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwp0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwq0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwq0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwr0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwr0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bws0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bws0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwt0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwt0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwu0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwu0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwv0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwv0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bww0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bww0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwx0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwx0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwy0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwy0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwz0 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwz0s - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)  
O18 - Protocol: offline-8876480 - {14973F9A-CF7B-442F-B832-6D8C1151C673} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
 
Fermez toutes les applications en cours sauf HijackThis et faites Fixed checked .
 
 
* Supprimez les mauvais fichiers :
 
  Supprimez les fichiers/dossiers incriminés en gras ci dessous  [ s'ils sont presents ] en suivant le chemin d'acces.
 
C:\Documents and Settings\MICHAU~1\Application Data\SITETE~1\ BOLDHEART.exe <= Le fichier  
C:\Documents and Settings\MICHAU~1\Application Data\ADMINT~1\ tick seek.exe <= Le fichier  
 
 
* Exécuter EasyCleaner (Utiliser le raccourci sur le bureau) :
 
Utiliser les fonctions Inutiles et Registre seulement. Ne pas toucher à la fonction Doublons.
 
* Remarque:
 
- Dans Inutiles, cochez les cases suivantes => Normal Types - Temp Directories - Temp Internet Files -
Browser Cookies puis clique sur Find.
 
Lorsque le scan est terminé, cliquez sur Delete all.
 
Il permet de nettoyer la base de registre en supprimant les entrées invalides ou obsolètes, ce qui permettra de réduire sa taille et optimiser ainsi le système.
 
 
* Faire un scan avec Ewido
* Clique sur Scanner et choisir Scan complet du système
* Si des fichiers infectés sont trouvés, toujours les supprimer
* Le scan fini, sauver le rapport et le postez ici.
 
 
* Voir les resultats de la manipulation :
 
Redémarrez l'ordinateur en mode normal et postez un nouveau rapport HijackThis à titre  vérificatif ainsi que le rapport Ewido.

n°2380287
Docky
Posté le 11-04-2006 à 10:37:12  profilanswer
 

Merci pour ton aide :) j'essaie ça tout de suite et je croise les doigts

n°2380413
Docky
Posté le 11-04-2006 à 12:48:52  profilanswer
 

Bon... J'ai fait tout ce que tu m'as dit...
J'ai tjs des Pubs qui s'affichent quand je navigue.. Mais un peu moins.
 
Voici les 2 rapports que tu m'as demandé :  
 
HiJackThis :  
 
Logfile of HijackThis v1.99.1
Scan saved at 12:45:36, on 11/04/2006
Platform: Windows XP  (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000)
 
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
c:\progra~1\intern~1\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\David\HijackThis.exe
 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://home.fra.chello.fr/ssi/welc [...] ome&src=ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/i [...] earch.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer fourni par chello broadband n.v.
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.chello.fr:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = ;local;;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [URLLSTCK.exe] C:\Program Files\Norton Internet Security\UrlLstCk.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKCU\..\Run: [RegsSect] C:\DOCUME~1\MICHAU~1\APPLIC~1\ADMINT~1\tick seek.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://home.fra.chello.fr/ssi/welcome/welcome.php?url=home&src=ie
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.ya [...] urrent.cab
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: Norman API-hooking helper (NipSvc) - Unknown owner - C:\NORMAN\Nvc\BIN\nipsvc.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
 
 
Ewido :  
 
---------------------------------------------------------
 ewido anti-malware - Rapport de scan
---------------------------------------------------------
 
 + Créé le:  12:21:38, 11/04/2006
 + Somme de contrôle: 55074175
 
 + Résultats du scan:
 
 HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\ins -> Adware.WebRebates : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@ads.addynamix[1].txt -> TrackingCookie.Addynamix : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@adtech[2].txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@as1.falkag[2].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@banner.goldenpalace[2].txt -> TrackingCookie.Goldenpalace : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@casinodelrio[1].txt -> TrackingCookie.Casinodelrio : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@casinopays[1].txt -> TrackingCookie.Casinopays : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@casinotropez[1].txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@clickbank[2].txt -> TrackingCookie.Clickbank : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@crbanner.casinopays[2].txt -> TrackingCookie.Casinopays : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@ehg-ads.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@goldenpalace[1].txt -> TrackingCookie.Goldenpalace : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@lop[1].txt -> TrackingCookie.Lop : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@revenue[2].txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@vegasred[2].txt -> TrackingCookie.Vegasred : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@wreport.weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@www.casinodelrio[2].txt -> TrackingCookie.Casinodelrio : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@www.casinotropez[2].txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@www.goldenpalace[1].txt -> TrackingCookie.Goldenpalace : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Cookies\michaud c@www.vegasred[2].txt -> TrackingCookie.Vegasred : Nettoyer et sauvegarder
 C:\Documents and Settings\MICHAUD C\Local Settings\Temporary Internet Files\Content.IE5\RAE3P5CJ\WinFixer2005ScannerInstallFRA[1].cab/UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Nettoyer et sauvegarder
 C:\INFONIE\BIN\Dialkern.exe -> Heuristic.Win32.Dialer : Nettoyer et sauvegarder
 C:\RECYCLER\S-1-5-21-1417001333-839522115-1879871171-500\Dc188.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.10\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.11\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.12\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.13\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.14\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.15\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.16\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.17\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.18\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.19\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.2\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.20\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.21\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.22\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.3\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.4\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.5\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.6\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.7\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.8\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\CONFLICT.9\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\Downloaded Program Files\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Nettoyer et sauvegarder
 C:\WINDOWS\system32\iedriver.exe -> Hijacker.Iedriver : Nettoyer et sauvegarder
 C:\WINDOWS\system32\VVSN_SCNC0704Inst.exe/VVSN.exe -> Adware.SaveNow : Nettoyer et sauvegarder
 C:\WINDOWS\system32\VVSN_SCNC0704Inst.exe/VVSN.exe -> Adware.SaveNow : Nettoyer et sauvegarder
 
 
::Fin du rapport

n°2380419
Anthony10
Posté le 11-04-2006 à 12:53:06  profilanswer
 

Pour enlever les publicite, il faut que dorenavant que tu navigues sur Internet avec Mozilla qui est tres surisant et sans pubs.
 
* Telecharge et installe Mozilla Firefox :
 
http://www.01net.com/windows/Inter [...] 25711.html
 
Dis moi ce qu'il en ait stp

n°2381909
the bruce ​lee
Posté le 12-04-2006 à 21:14:59  profilanswer
 

bonsoir a tous,
 
:hello: anthony10 dans son nouveau log tu as oublié:
 
O4 - HKCU\..\Run: [RegsSect] C:\DOCUME~1\MICHAU~1\APPLIC~1\ADMINT~1\tick seek.exe  
 
de plus il a cette ligne:
 
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart  
 
messengerPlus3 a surement du etre installer avec les sponsors donc faut le desinstaller puis le
 
reinstaller SANS LES SPONSORS
 
Dans son nouveau log il y aussi des traces de norton (d'ailleur je me demande ce qu'il fait la :D)
 
bonne continuation a vous deux


Message édité par the bruce lee le 12-04-2006 à 21:15:41
n°2382400
Anthony10
Posté le 13-04-2006 à 15:06:41  profilanswer
 

Bonjour a tous,
 
Merci le Chinois pour la rectification.
 
Donc Docky, fais ce que je t'ecris.
 
* Desinstalle Norton proprement :
 
http://forum.zebulon.fr/index.php? [...] 38&t=57795
 
*  Redémarrez votre PC en mode sans échec [ http://www.sosordi.net/Faq/Faq.2.html ] [color=red] Impératif [/color] !!!
 
 
* Enlevez l'application nocive :
 
Verifiez si ce programme est present via Panneau de configuration / Ajout et suppresion de programmes :
 
MessengerPlus3
 
S'il est present, le desinstaller.
 
* Enlever les lignes nefastes :
 
Relancez HijackThis et cliquez sur Scan only  puis cochez les lignes [ si presentes ] en gras ci-dessous :  
 
O4 - HKCU\..\Run: [RegsSect] C:\DOCUME~1\MICHAU~1\APPLIC~1\ADMINT~1\tick seek.exe  C:\DOCUME~1\MICHAU~1\APPLIC~1\ADMINT~1\tick seek.exe  
 
 O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart  
 
Fermez toutes les applications en cours sauf HijackThis et faites Fixed checked .
 
* Supprimez les mauvais fichiers :
 
  Supprimez les fichiers/dossiers incriminés en gras ci dessous  [ s'ils sont presents ] en suivant le chemin d'acces.
 
C:\DOCUMENT AND SETTING\MICHAU~1\APPLICATION AND DATA\ADMINT~1\ tick seek.exe <= Le fichier  
 
C:\Program Files\ MessengerPlus! 3 <= Le dossier
 
* Voir les resultats de la manipulation :
 
Redémarrez l'ordinateur en mode normal et postez un nouveau rapport HijackThis à titre vérificatif.


Message édité par Anthony10 le 13-04-2006 à 15:09:45
n°2382427
darren
bing blang blaow
Posté le 13-04-2006 à 15:42:33  profilanswer
 

Anthony, autant tu es irréprochable sur les manips, autant le fait de dire qu'il faut utiliser Firefox pour ne pas avoir de pubs est juste une manière de contourner le probleme (même si j'adore Firefox).
 
edit : comme un con, j'ai validé le message avant la fin.
 
Bref, tout ça pour dire que si des pubs apparaissent c'est qu'il y a un défaut quelquepart dans la config de son IE.
 
Déjà, il faut télécharger SpywareBlaster pour sa liste de protection et le mettre à jour.
 
Ensuite Spybot pour scanner une fois de temps en temps, et sa config automatique d'IE (refus des controles active X par exemple) pour les gens qui ne connaissent pas trop, tout est automatisé.


Message édité par darren le 13-04-2006 à 15:49:26
n°2382432
Anthony10
Posté le 13-04-2006 à 15:47:03  profilanswer
 

Si tu tiens a utiliser I.E, je te conseille cette anti pop up pour ne plus etre gene par les pubs :
 
http://www.google.com/tools/firefo [...] index.html
 
Dis moi ce que tu en penses dans une prochaine reponse.

n°2382627
the bruce ​lee
Posté le 13-04-2006 à 19:06:51  profilanswer
 

bonsoir a tous,
 

Citation :

Merci le Chinois pour la rectification.  


 
mon pseudo ce n'est pas "le chinois" mais the bruce lee


Message édité par the bruce lee le 13-04-2006 à 19:09:16

Aller à :
Ajouter une réponse
  FORUM HardWare.fr
  Windows & Software
  Sécurité

  Probleme de Spyware - Ci joit le LOg HiJackThis

 

Sujets relatifs
problème controleur réseau (ethernet) sur asus P4P800 DeluxeProbleme Thunderbird
problème paypal... compte restreint...probleme ip carte reseau
Problème réseauProbleme d'affichage à l'ecran (ecriture petite)
Problème excel affichage de plusieurs résultats à partir d'une rechercProblème lors de l'installation d'Avast
Probleme avec Windows :(Itunes ou Yamipod : même problème
Plus de sujets relatifs à : Probleme de Spyware - Ci joit le LOg HiJackThis

Forum MesDiscussions.Net, Version 2010.2
(c) 2000-2011 Doctissimo
Page générée en 0.085 secondes

Copyright © 1997-2022 Hardware.fr SARL (Signaler un contenu illicite / Données personnelles) / Groupe LDLC / Shop HFR