Bonjour voilà je poste ci-après le rapport d'analyse d'Hijackthis de mon pc qui est infecté et qui bloque ma connexion internet. Si quelqu'un peut m'aider et me dire d'ou vient le problème ... Merci d'avance Logfile of HijackThis v1.99.1 Scan saved at 22:31:57, on 1/09/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\Program Files\Logitech\Video\LogiTray.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\PRISMSVR.EXE C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe D:\Mes documents\Planning Ninie Rémy\The Cleaner\tca.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Logitech\Video\FxSvr2.exe C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\SMC11GMonitor.exe C:\Documents and Settings\René\Menu Démarrer\Programmes\Démarrage\w32.exe C:\Program Files\Network Associates\Common Framework\FrameworkService.exe C:\Program Files\Network Associates\VirusScan\Mcshield.exe C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe d:\Mes documents\logiciels\ewido anti-spyware 4.0\guard.exe d:\Mes documents\logiciels\ewido anti-spyware 4.0\ewido.exe D:\Mes documents\logiciels\Hijackthis Version Française\hijackthis vf.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.be R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {2a6af021-17a2-4014-8624-cf6015f82fad} - C:\WINDOWS\system32\hfaa.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [PRISMSVR.EXE] "C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\PRISMSVR.EXE" /APPLY O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [tcactive] D:\Mes documents\Planning Ninie Rémy\The Cleaner\tca.exe O4 - HKLM\..\Run: [tcmonitor] D:\Mes documents\Planning Ninie Rémy\The Cleaner\tcm.exe O4 - HKLM\..\Run: [!ewido] "d:\Mes documents\logiciels\ewido anti-spyware 4.0\ewido.exe" /minimized O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot O4 - HKCU\..\Run: [Shell] "C:\Program Files\Fichiers communs\Microsoft Shared\Web Folders\ibm00003.exe" O4 - Startup: w32.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter Utility.lnk = C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\SMC11GMonitor.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.google.be O18 - Protocol: bw+0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Protocol: offline-8876480 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - d:\Mes documents\logiciels\ewido anti-spyware 4.0\guard.exe O23 - Service: Service Framework McAfee (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\Mcshield.exe O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe Et aussi ceci : --------------------------------------------------------- ewido anti-spyware - Scan Report --------------------------------------------------------- + Created at: 22:50:45 1/09/2006 + Scan result: D:\Mes documents\Mes fichiers reçus\incredimail_install.exe -> Not-A-Virus.Downloader.Win32.ImLoader.c : Cleaned. C:\Documents and Settings\René\Local Settings\Temp\RarSFX0\ASTERWIN\asterwin.exe -> Not-A-Virus.PSWTool.Win32.AsterWin.a : Cleaned. ::Report end Voilà si quelqu'un sait me dépanner....Merci[crazy]

Bonjour et bienvenu sur PCA. Peux-tu rÚ-Úditer un rapport Hijackthis, postÚrieur Ó Ewido ? Merci. Fill

Bonjour Tu es bien infectÚ, Avant tout, la curiositÚ me pousse a te faire une analyse en ligne de ton PC avec ce [url="http://www.bitdefender.fr/bd/site/page.php#"]lien[/url] Ou avec [url="http://webscanner.kaspersky.fr/"]celui-ci[/url] Post le rapport sur le forum

Salut Fill tu as ÚtÚ rapide, dÚsolÚ, je te laisse la main [hello]

salut et merci de m'aider le voici : Logfile of HijackThis v1.99.1 Scan saved at 18:27:26, on 2/09/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\Program Files\Logitech\Video\LogiTray.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\PRISMSVR.EXE C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe D:\Mes documents\Planning Ninie RÚmy\The Cleaner\tca.exe D:\Mes documents\Planning Ninie RÚmy\The Cleaner\tcm.exe D:\Mes documents\logiciels\ewido anti-spyware 4.0\ewido.exe C:\Program Files\Logitech\Video\FxSvr2.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\SMC11GMonitor.exe C:\Documents and Settings\RenÚ\Menu DÚmarrer\Programmes\DÚmarrage\w32.exe d:\Mes documents\logiciels\ewido anti-spyware 4.0\guard.exe C:\Program Files\Network Associates\Common Framework\FrameworkService.exe C:\Program Files\Network Associates\VirusScan\Mcshield.exe C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Internet Explorer\iexplore.exe d:\Mes documents\logiciels\Hijackthis Version Franþaise\hijackthis vf.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.be R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {2a6af021-17a2-4014-8624-cf6015f82fad} - C:\WINDOWS\system32\hfaa.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [PRISMSVR.EXE] "C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\PRISMSVR.EXE" /APPLY O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [tcactive] D:\Mes documents\Planning Ninie RÚmy\The Cleaner\tca.exe O4 - HKLM\..\Run: [tcmonitor] D:\Mes documents\Planning Ninie RÚmy\The Cleaner\tcm.exe O4 - HKLM\..\Run: [!ewido] "D:\Mes documents\logiciels\ewido anti-spyware 4.0\ewido.exe" /minimized O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot O4 - HKCU\..\Run: [Shell] "C:\Program Files\Fichiers communs\Microsoft Shared\Web Folders\ibm00003.exe" O4 - Startup: w32.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter Utility.lnk = C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\SMC11GMonitor.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm O8 - Extra context menu item: &Traduire Ó partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liÚes - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.google.be O18 - Protocol: bw+0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Protocol: offline-8876480 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - d:\Mes documents\logiciels\ewido anti-spyware 4.0\guard.exe O23 - Service: Service Framework McAfee (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\Mcshield.exe O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

Mess pour chouky78 je ne peut me rendre vers ton lien car quand je suis sur une page internet et que je veux cliquer sur un lien qui m'amÞne vers une autre page c impossible il bloque et je dois passer par le gestionnaire de taches pour fermer ...

[fete]Je viens de me rendre compte d'une chose tous les problÞmes de pc pasent bien mieux quand ils sont accompagnÚs d'un verre de Whisky (Ó consommer avec modÚration) Merci de m'aider et bon couyrage Ó tout ceux qui comme moi sont dans la mouise ........pour ne pas dire autre chose[timide]

Re, 1) TÚlÚcharge [url="http://www.clubic.com/lancer-le-telechargement-9507-0-copylock.html"]copylock[/url]. DÚzippe-le sur le bureau. 2) TÚlÚcharge Ccleaner (s'il n'est pas installÚ). Installe-le en dÚcochant Ó l'installation la barre Yahoo ! 3) Ouvre Hijackthis>"do a scan only" et coche ces lignes : O2 - BHO: (no name) - {2a6af021-17a2-4014-8624-cf6015f82fad} - C:\WINDOWS\system32\hfaa.dll O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot O4 - HKCU\..\Run: [Shell] "C:\Program Files\Fichiers communs\Microsoft Shared\Web Folders\ibm00003.exe" O4 - Startup: w32.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe Toutes les lignes 018 sauf celle-ci : O18 - Protocol: MSNim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) Clique sur fix/rÚparer. 4) Pour afficher les fichiers ou dossiers cachÚs : - Ouvrir l'explorateur windows (DÚmarrer>programmes>Accessoires>Explorateur windows ou DÚmarrer>programmes>Explorateur windows). - Cliquer sur outils>options des dossiers>affichage. - SÚlectionner : afficher les fichiers et dossiers cachÚs dÚcocher "masquer les extensions des fichiers dont le type est connu". dÚcocher masquer les fichiers protÚgÚs du systÞme d'exploitation (recommandÚ)" "appliquer" et "ok" 5) Avec l'explorateur windows, effectue une recherche sur le fichier w32.exe et donne-moi ce chemin exact. 6) Clique sur "menu DÚmarrer, ExÚcuter", et taper : regsvr32 /u C:\WINDOWS\system32\hfaa.dll 7) Tu ouvres copylock, tu cliques sur add>files to delete. Dans l'arborescence qui s'ouvre, tu indiques ce chemin : C:\WINDOWS\system32\hfaa.dll Clique sur add Tu recommences avec celui-lÓ : C:\Program Files\Fichiers communs\Microsoft Shared\Web Folders\ibm00003.exe Clique sur apply. Il est possible que le PC redÚmarre. 8) Ouvre Ccleaner, clique sur "analyse" puis lance le nettoyage. 9) Ouvre Ewido. Dans la barre en haut, clique sur scanner. Choisis ½ Complete system scan ?. A la fin du scan, choisis l'option " Apply All Actions ". Sauvegarde le rapport en cliquant sur lÆonglet ½ report ?. Choisis ½ Save as ? et sauvegarde le rapport dÆanalyse en mode texte sur le bureau. 10) Edite : - Le rapport Ewido, - Un nouveau rapport Hijackthis. Fill PS : Pas trop d'apÚro : il faut respecter exactement les consignes [rigoler]

Pour ma dÚfense je prÚcise qu'avant de faire appel Ó vos lumiÞre j'ai essayÚ tout ce qui Útait Ó ma porter Easy cleaner Ccleaner ewido Spyboot Adware mon antivirus Pas de scan en ligne car mon pb de connexion internet m'en empÛche VoilÓ je suis un peu Ó court d'idÚe je suis sur d'Ûtre infectÚ mais comment m'en dÚfaire... [chinois]

voici le chemin exact je suis en cours pour le reste mais hijackthis n'a pas voulu effacer la ligne 02 et 04 backup-20060902-185754-316-w32.exe

Re, Ce n'est rien ; passe Ó la suite. Tu n'as pas trouvÚ un simple fichier w32.exe dans c, c:\windows ou c:\windows\system32 ? Fill

et voici il n'y a qu'a demander --------------------------------------------------------- ewido anti-spyware - Scan Report --------------------------------------------------------- + Created at: 19:53:39 2/09/2006 + Scan result: C:\Documents and Settings\RenÚ\Cookies\renÚ@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Cleaned. ::Report end et enfin Logfile of HijackThis v1.99.1 Scan saved at 19:54:29, on 2/09/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\PRISMSVR.EXE C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe D:\Mes documents\Planning Ninie RÚmy\The Cleaner\tca.exe D:\Mes documents\Planning Ninie RÚmy\The Cleaner\tcm.exe D:\Mes documents\logiciels\ewido anti-spyware 4.0\ewido.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\SMC11GMonitor.exe d:\Mes documents\logiciels\ewido anti-spyware 4.0\guard.exe C:\Program Files\Network Associates\Common Framework\FrameworkService.exe C:\Program Files\Network Associates\VirusScan\Mcshield.exe C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\explorer.exe C:\Program Files\Internet Explorer\iexplore.exe d:\Mes documents\logiciels\Hijackthis Version Franþaise\hijackthis vf.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.be R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - Default URLSearchHook is missing O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Class - {4CE9DE5E-4DD8-ACDB-5F9A-0DA80565E378} - C:\WINDOWS\wlewq1.dll (file missing) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [PRISMSVR.EXE] "C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\PRISMSVR.EXE" /APPLY O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [tcactive] D:\Mes documents\Planning Ninie RÚmy\The Cleaner\tca.exe O4 - HKLM\..\Run: [tcmonitor] D:\Mes documents\Planning Ninie RÚmy\The Cleaner\tcm.exe O4 - HKLM\..\Run: [!ewido] "D:\Mes documents\logiciels\ewido anti-spyware 4.0\ewido.exe" /minimized O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - Startup: w32.exe O4 - Global Startup: SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter Utility.lnk = C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\SMC11GMonitor.exe O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm O8 - Extra context menu item: &Traduire Ó partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liÚes - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.google.be O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Protocol: offline-8876480 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - d:\Mes documents\logiciels\ewido anti-spyware 4.0\guard.exe O23 - Service: Service Framework McAfee (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\Mcshield.exe O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: WinFwu - Unknown owner - \\?\C:\Program Files\Fichiers communs\Microsoft Shared\lpt9.exe (file missing) voilÓ il y a le second truc a effacer avec copylock que je n'ai pas rÚussi merci

je te remercie pour ton aide si je dois encore faire quelque chose merci de me poster un message je le ferai demain et je donnerais les rÚsultats demain Úgalement car lÓ je vais Ó la soirÚe d'un mariage donc demain je serais ok mais si je dois faire quelque chose fais un post et je m'executerais merci encore de ton aide

Re, Imprime ceci car on va redÚmarrer en mode sans Úchec et tu n'auras plus accÞs temporairement Ó Internet. 1) TÚlÚcharge la derniÞre version de Killbox -> http://www.downloads.subratam.org/KillBox.zip Place le programme dans le rÚpertoire qui te pla¯t (pas d'installation Windows) 2) RedÚmarre l'ordinateur en mode sans Úchec. Pour cela, tapote sur F8 (ou F5) au dÚmarrage du PC. 3) Lance Pocket Killbox --- choisis l'option Delete on Reboot --- copie le fichier Ó supprimer (Ctrl-C) et File / Paste from Clipboard C:\Program Files\Fichiers communs\Microsoft Shared\Web Folders\ibm00003.exe * les boutons "Single File" et "All Files" deviennent actifs mais "Single File" est activÚ par dÚfaut. Il faut alors impÚrativement activer (cliquer sur) "All Files", sinon seul le premier de la liste sera supprimÚ. --- vÚrifie que tous les fichiers sont enregistrÚs, par la liste dÚroulante "Full Path of File to Delete" --- clique sur la croix blanche sur fond rouge (Delete File) : - "File will be Removed on Reboot, Do you want to reboot now?", rÚponds OUI si tu es prÛt Ó procÚder Si Pocket KillBox ne fait pas redÚmarrer le PC, redÚmarre le toi mÛme. 4) Ouvre Hijackthis>"do a scan only" et coche ces lignes : R3 - Default URLSearchHook is missing O2 - BHO: Class - {4CE9DE5E-4DD8-ACDB-5F9A-0DA80565E378} - C:\WINDOWS\wlewq1.dll (file missing) O4 - Startup: w32.exe O18 - Protocol: offline-8876480 - {A7B8F236-31FD-4755-8785-DA54405BA800} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll Clique sur fix/rÚparer. 5) RedÚmarre normalement le PC. 6) Ouvre Ccleaner, lance l'analyse puis nettoie tout. 7) Fais un scan en ligne en cliquant [url="http://assiste.free.fr/p/antivirus_gratuits_en_ligne/antivirus_en_ligne.php"]ici[/url]. Choisis Panda. Tu dois rÚaliser le scan en utilisant Internet explorer. Une information apparait en haut, prÞs de la barre d'Útat. Tu dois accepter et installer l'activeX proposÚ. La mise Ó jour de l'antivirus se lance. RÚalise un scan complet du systÞme. Sauvegarde le rapport en mode texte Ó l'issue du scan. 8) Edite : - Le rapport Panda, - Un nouveau rapport Hijackthis. Fill

Salut je viens d'essayer seulement impossible de telecharger killbox Sur le site officiel la page n'apparait pas et quand je le telecharge d'un autre site le fichier fait 0 octets et il n'y rien dedans

Re, Essaie [url="http://www.bleepingcomputer.com/files/killbox.php"]ici[/url]. Fill Edite : mauvais lien. Je cherche encore

Modifié par Fill le 03/09/2006 18:59

Re, Effectivement. Lesl iens sont morts. Essaie de supprimer directement le fichier. Je reviens ce soir. Fill

voila je te poste les deux scan celui de panda Incident Statut Analyse Adware:adware/intcodec No DÚsinfectÚ Registre Windows Adware:adware/ieloader No DÚsinfectÚ Registre Windows Outil indÚsirable:application/kill&clean No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BF69DF00-2734-477F-8257-27CD04F88779} Adware:adware/systemdoctor No DÚsinfectÚ Registre Windows Dialer:dialer.min No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DB893839-10F0-4AF9-92FA-B23528F530AF} Adware:adware/spywaresheriff No DÚsinfectÚ Registre Windows Adware:adware/adrotator No DÚsinfectÚ Registre Windows Adware:adware/netword No DÚsinfectÚ Registre Windows Adware:adware/wetoffice No DÚsinfectÚ Registre Windows Adware:adware/spywaresoftstop No DÚsinfectÚ Registre Windows Adware:adware/mmediapd No DÚsinfectÚ Registre Windows Adware:adware/click No DÚsinfectÚ Registre Windows Adware:adware/quantos No DÚsinfectÚ Registre Windows Spyware:spyware/browseraccelerator No DÚsinfectÚ Registre Windows Adware:adware/wmmafia No DÚsinfectÚ Registre Windows Adware:adware/sinabar No DÚsinfectÚ Registre Windows Adware:adware/psic No DÚsinfectÚ Registre Windows Adware:adware/ourxin No DÚsinfectÚ Registre Windows Adware:adware/idonate No DÚsinfectÚ Registre Windows Adware:adware/brands No DÚsinfectÚ Registre Windows Adware:adware/eztracks No DÚsinfectÚ Registre Windows Adware:adware/roogoo No DÚsinfectÚ Registre Windows Adware:adware/targetad No DÚsinfectÚ Registre Windows Adware:adware/yazzle No DÚsinfectÚ Registre Windows Adware:adware/gator.gotsmiley No DÚsinfectÚ Registre Windows Adware:adware/spywarequake No DÚsinfectÚ Registre Windows Dialer:dialer.gun No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFB51760-344E-4FFB-BFFF-4B18C7AC1D63} Outil indÚsirable:application/seekmo No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5929CD6E-2062-44A4-B2C5-2C7E78FBAB38} Adware:adware/trustin No DÚsinfectÚ Registre Windows Adware:adware/vog No DÚsinfectÚ Registre Windows Adware:adware/emediacodec No DÚsinfectÚ Registre Windows Adware:adware/flyswat No DÚsinfectÚ Registre Windows Adware:adware/ready2wear No DÚsinfectÚ Registre Windows Spyware:spyware/searchnet No DÚsinfectÚ Registre Windows Outil indÚsirable:application/mediapipe No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AFDBB222-DEA9-4C12-B3A3-A13C2985E3EE} Adware:adware/shorty No DÚsinfectÚ Registre Windows Adware:adware/spyfalcon No DÚsinfectÚ Registre Windows Adware:adware/alfacleaner No DÚsinfectÚ Registre Windows Adware:adware/adwaresheriff No DÚsinfectÚ Registre Windows Adware:adware/confusearch No DÚsinfectÚ Registre Windows Outil indÚsirable:application/malwarewipe No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3103509-F6EC-4592-B5F2-FD862199D778} Adware:adware/youcouldwinthis No DÚsinfectÚ Registre Windows Outil indÚsirable:application/errorsafe No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6AE7418B-229F-4A2C-AE1B-D5962888F02D} Adware:adware/spywarestrike No DÚsinfectÚ Registre Windows Dialer:dialer.fgw No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF25B447-C0EF-49BB-97D8-D7C3FA27DF5F} Adware:adware/fchelp No DÚsinfectÚ Registre Windows Adware:adware/rbtoolbar No DÚsinfectÚ Registre Windows Adware:adware/dropspam No DÚsinfectÚ Registre Windows Dialer:dialer.epr No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4E15D681-1D20-11D4-8B72-000021DA1956} Adware:adware/startpage.anl No DÚsinfectÚ Registre Windows Adware:adware/crystalys No DÚsinfectÚ Registre Windows Adware:adware/adwhere No DÚsinfectÚ Registre Windows Adware:adware/winhound No DÚsinfectÚ Registre Windows Adware:adware/cws.payfortraffic No DÚsinfectÚ Registre Windows Dialer:dialer.dxp No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C881E6FC-C673-4FDD-AEF8-B36DFB10E401} Outil indÚsirable:application/spyaxe No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A2D9D3F0-8C2A-2A1D-A376-1BECFB10AB72} Adware:adware/enhancemsearch No DÚsinfectÚ Registre Windows Dialer:dialer.dvj No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c32ee4cb-e99f-4147-bfae-67ff3b6f8076} Adware:adware/borlander No DÚsinfectÚ Registre Windows Adware:adware/mytoolbar No DÚsinfectÚ Registre Windows Adware:adware/cws.ezsearch No DÚsinfectÚ Registre Windows Adware:adware/ipend No DÚsinfectÚ Registre Windows Adware:adware/pigsearch No DÚsinfectÚ Registre Windows Adware:adware/securitytoolbar No DÚsinfectÚ Registre Windows Adware:adware/sweetbar No DÚsinfectÚ Registre Windows Adware:adware/syslibie No DÚsinfectÚ Registre Windows Adware:adware/videoc No DÚsinfectÚ Registre Windows Adware:adware/spyaxe No DÚsinfectÚ Registre Windows Adware:adware/falkag No DÚsinfectÚ Registre Windows Adware:adware/zeropopup No DÚsinfectÚ Registre Windows Adware:adware/webext No DÚsinfectÚ Registre Windows Adware:adware/bdnl No DÚsinfectÚ Registre Windows Adware:adware/masterbar No DÚsinfectÚ Registre Windows Adware:adware/ist.csearch No DÚsinfectÚ Registre Windows Adware:adware/cramtoolbar No DÚsinfectÚ Registre Windows Adware:adware/commad No DÚsinfectÚ Registre Windows Adware:adware/cashsaver No DÚsinfectÚ Registre Windows Adware:adware/bonzibuddy No DÚsinfectÚ Registre Windows Adware:adware/blowsearch No DÚsinfectÚ Registre Windows Adware:adware/affilred No DÚsinfectÚ Registre Windows Adware:adware/adultlinks No DÚsinfectÚ Registre Windows Adware:adware/adservernow No DÚsinfectÚ Registre Windows Adware:adware/adbars No DÚsinfectÚ Registre Windows Adware:adware/cashdeluxe No DÚsinfectÚ Registre Windows Outil indÚsirable:application/errorguard No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{205ff73b-ca67-11d5-99dd-444553540006} Adware:adware/mpgcom No DÚsinfectÚ Registre Windows Adware:adware/surfassistant No DÚsinfectÚ Registre Windows Adware:adware/morwillsearch No DÚsinfectÚ Registre Windows Adware:adware/infocrawler No DÚsinfectÚ Registre Windows Adware:adware/adcom No DÚsinfectÚ Registre Windows Adware:adware/easyerror No DÚsinfectÚ Registre Windows Adware:adware/weblookup No DÚsinfectÚ Registre Windows Adware:adware/customtoolbar No DÚsinfectÚ Registre Windows Dialer:dialer.dkf No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{17BFC8DA-B4D6-4DB9-AA40-1CD32EDA9845} Adware:adware/quickbar No DÚsinfectÚ Registre Windows Dialer:dialer.dji No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C24626A-CC0D-49d6-8454-AAA5B97D4410} Dialer:dialer.dip No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DC3185AE-864F-4E62-9321-0E9FA1CBE6A4} Adware:adware/2search No DÚsinfectÚ Registre Windows Adware:adware/upspiralbar No DÚsinfectÚ Registre Windows Adware:adware/uppcbar No DÚsinfectÚ Registre Windows Adware:adware/5-search No DÚsinfectÚ Registre Windows Adware:adware/bondreal No DÚsinfectÚ Registre Windows Adware:adware/popupsearches No DÚsinfectÚ Registre Windows Outil indÚsirable:application/winfixer2005 No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8C65AEF6-E413-4314-815B-82717A3F1603} Adware:adware/securityerror No DÚsinfectÚ Registre Windows Adware:adware/mediaplex No DÚsinfectÚ Registre Windows Adware:adware/favadd No DÚsinfectÚ Registre Windows Adware:adware/windrv No DÚsinfectÚ Registre Windows Adware:adware/ddos No DÚsinfectÚ Registre Windows Adware:adware/activshopper No DÚsinfectÚ Registre Windows Adware:adware/mariasearch No DÚsinfectÚ Registre Windows Adware:adware/ieplus No DÚsinfectÚ Registre Windows Adware:adware/bestsearchengine No DÚsinfectÚ Registre Windows Adware:adware/qoologic No DÚsinfectÚ Registre Windows Adware:adware/searchresults No DÚsinfectÚ Registre Windows Adware:adware/cws.customie No DÚsinfectÚ Registre Windows Adware:adware/block-checker No DÚsinfectÚ Registre Windows Dialer:dialer.cso No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6BC36767-3FCC-4948-8A13-703F887A3E87} Adware:adware/adblock No DÚsinfectÚ Registre Windows Adware:adware/thingies No DÚsinfectÚ Registre Windows Adware:adware/spyblast No DÚsinfectÚ Registre Windows Adware:adware/enhsrch No DÚsinfectÚ Registre Windows Adware:adware/riversoft No DÚsinfectÚ Registre Windows Adware:adware/invisiblepop No DÚsinfectÚ Registre Windows Adware:adware/henbang No DÚsinfectÚ Registre Windows Adware:adware/stripplayer No DÚsinfectÚ Registre Windows Adware:adware/shoppingcommunity No DÚsinfectÚ Registre Windows Adware:adware/appoli No DÚsinfectÚ Registre Windows Adware:adware/bdsearch No DÚsinfectÚ Registre Windows Adware:adware/gxb No DÚsinfectÚ Registre Windows Adware:adware/veevo No DÚsinfectÚ Registre Windows Dialer:dialer.bnz No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5D7334F5-CF58-4F22-8502-6CC0ACB2FE6B} Adware:adware/searchexplorer No DÚsinfectÚ Registre Windows Dialer:dialer.bmt No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8512B008-B0AA-451F-A744-A289FD8FFDE6} Adware:adware/popupdefence No DÚsinfectÚ Registre Windows Adware:adware/seekseek No DÚsinfectÚ Registre Windows Adware:adware/winres No DÚsinfectÚ Registre Windows Dialer:dialer.bkj No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CDCBE0F1-D13A-4F86-A963-3A272D3ABA7E} Adware:adware/browserplugin No DÚsinfectÚ Registre Windows Adware:adware/clicker.b No DÚsinfectÚ Registre Windows Adware:adware/surfplugin No DÚsinfectÚ Registre Windows Adware:adware/consumeralertsystem No DÚsinfectÚ Registre Windows Adware:adware/afaenhance No DÚsinfectÚ Registre Windows Adware:adware/seeqbar No DÚsinfectÚ Registre Windows Adware:adware/alibabar No DÚsinfectÚ Registre Windows Adware:adware/dudu No DÚsinfectÚ Registre Windows Adware:adware/hoonter No DÚsinfectÚ Registre Windows Adware:adware/ietoolbar No DÚsinfectÚ Registre Windows Adware:adware/psguard No DÚsinfectÚ Registre Windows Adware:adware/oemji No DÚsinfectÚ Registre Windows Adware:adware/winstat No DÚsinfectÚ Registre Windows Adware:adware/diytoolbar No DÚsinfectÚ Registre Windows Adware:adware/moneygainer No DÚsinfectÚ Registre Windows Adware:adware/weirdontheweb No DÚsinfectÚ Registre Windows Adware:adware/antivirus-gold No DÚsinfectÚ Registre Windows Adware:adware/kz515 No DÚsinfectÚ Registre Windows Adware:adware/miamore No DÚsinfectÚ Registre Windows Dialer:dialer.cbz No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{17243282-24D7-01A5-B2CE-4AD63FBA0B93} Adware:adware/g-search No DÚsinfectÚ Registre Windows Adware:adware/bigtrafficnet No DÚsinfectÚ Registre Windows Adware:adware/maxifiles No DÚsinfectÚ Registre Windows Spyware:spyware/lefeat No DÚsinfectÚ Registre Windows Adware:adware/craft No DÚsinfectÚ Registre Windows Adware:adware/aurora No DÚsinfectÚ Registre Windows Adware:adware/digitalnames No DÚsinfectÚ Registre Windows Adware:adware/redbanner No DÚsinfectÚ Registre Windows Adware:adware/coolsavings No DÚsinfectÚ Registre Windows Adware:adware/richfind No DÚsinfectÚ Registre Windows Adware:adware/ctxpopup No DÚsinfectÚ Registre Windows Adware:adware/stickypops No DÚsinfectÚ Registre Windows Adware:adware/startpage.wl No DÚsinfectÚ Registre Windows Adware:adware/startpage.wh No DÚsinfectÚ Registre Windows Adware:adware/wazzup No DÚsinfectÚ Registre Windows Adware:adware/imgiant No DÚsinfectÚ Registre Windows Outil indÚsirable:application/need2find No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{630D6140-04C5-4db0-B27A-020D766FF09B} Adware:adware/ezcybersearch No DÚsinfectÚ Registre Windows Adware:adware/advertor No DÚsinfectÚ Registre Windows

Dialer:dialer.avv No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{600F23ED-5F29-49FF-1678-0E780F1A0814} Adware:adware/d9x No DÚsinfectÚ Registre Windows Adware:adware/startpage.aai No DÚsinfectÚ Registre Windows Adware:adware/iebar No DÚsinfectÚ Registre Windows Outil indÚsirable:application/eblaster No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e4b58522-89aa-45ed-bf8d-ebe7207a5d2a} Adware:adware/startpage.aaf No DÚsinfectÚ Registre Windows Spyware:spyware/way4find No DÚsinfectÚ Registre Windows Adware:adware/abox No DÚsinfectÚ Registre Windows Adware:adware/admess No DÚsinfectÚ Registre Windows Adware:adware/startpage.kc No DÚsinfectÚ Registre Windows Adware:adware/gogotools No DÚsinfectÚ Registre Windows Dialer:dialer.asl No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{042EEA26-2402-4E5A-B5BB-0FB445A5526E} Adware:adware/77ttt No DÚsinfectÚ Registre Windows Adware:adware/hotoffers No DÚsinfectÚ Registre Windows Adware:adware/mediaback No DÚsinfectÚ Registre Windows Adware:adware/iguard No DÚsinfectÚ Registre Windows Adware:adware/topspyware No DÚsinfectÚ Registre Windows Adware:adware/adultlt No DÚsinfectÚ Registre Windows Adware:adware/adsmart No DÚsinfectÚ Registre Windows Adware:adware/searchforit No DÚsinfectÚ Registre Windows Adware:adware/pacimedia No DÚsinfectÚ Registre Windows Adware:adware/gatorclone No DÚsinfectÚ Registre Windows Adware:adware/popularsearches No DÚsinfectÚ Registre Windows Adware:adware/searcher No DÚsinfectÚ Registre Windows Adware:adware/navipromo No DÚsinfectÚ Registre Windows Outil indÚsirable:application/iwon No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3001A8A6-2BE1-11D4-AEDE-0050DAC24E8F} Adware:adware/abxsearch No DÚsinfectÚ Registre Windows Adware:adware/webdir No DÚsinfectÚ Registre Windows Dialer:dialer.ags No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A41C6220-6F42-4646-B119-FBE6F4D38E3C} Adware:adware/mirar No DÚsinfectÚ Registre Windows Adware:adware/ipbill No DÚsinfectÚ Registre Windows Dialer:dialer.afa No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{14051602-5C4E-11d6-916B-00E02964E8E3} Adware:adware/winad No DÚsinfectÚ Registre Windows Dialer:dialer.adn No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D9CA5D65-52BE-4790-BEA3-F3E2F5A76B02} Dialer:dialer.adm No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BCDB34A6-C1A6-4C89-9526-E84A579A0EF7} Adware:adware/delta No DÚsinfectÚ Registre Windows Adware:adware/coolsearchhome No DÚsinfectÚ Registre Windows Adware:adware/instafinder No DÚsinfectÚ Registre Windows Adware:adware/azesearch No DÚsinfectÚ Registre Windows Adware:adware/clearsurfing No DÚsinfectÚ Registre Windows Adware:adware/toolbarins No DÚsinfectÚ Registre Windows Dialer:dialer.aas No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{33331111-1111-1111-1111-622221193458} Adware:adware/transponder No DÚsinfectÚ Registre Windows Adware:adware/iemenuextension No DÚsinfectÚ Registre Windows Adware:adware/otx No DÚsinfectÚ Registre Windows Adware:adware/cws.aboutblank No DÚsinfectÚ Registre Windows Adware:adware/looksmart No DÚsinfectÚ Registre Windows Adware:adware/cws.nfo No DÚsinfectÚ Registre Windows Adware:adware/toolbarsimbar No DÚsinfectÚ Registre Windows Spyware:spyware/iehelp No DÚsinfectÚ Registre Windows Dialer:dialer.za No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9d6addbf-8227-4d36-ae46-116afbdafca0} Dialer:dialer.yz No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02C20140-76F8-4763-83D5-B660107B7A90} Dialer:dialer.yy No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{23273a1c-c870-43c4-a3e3-67dc98630ac6} Dialer:dialer.yx No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3ECF916F-A5DE-4DD4-A142-B35A29DC2EDB} Adware:adware/commandertoolbar No DÚsinfectÚ Registre Windows Adware:adware/startpage.qh No DÚsinfectÚ Registre Windows Dialer:dialer.yc No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{96b01a48-1317-4a87-91f7-10116f755705} Spyware:spyware/linkreplacer No DÚsinfectÚ Registre Windows Adware:adware/cws.searchmeup No DÚsinfectÚ Registre Windows Adware:adware/esyndicate No DÚsinfectÚ Registre Windows Adware:adware/powerstrip No DÚsinfectÚ Registre Windows Adware:adware/findspy No DÚsinfectÚ Registre Windows Adware:adware/cleangetaway No DÚsinfectÚ Registre Windows Adware:adware/xrenoder No DÚsinfectÚ Registre Windows Adware:adware/mybhospy No DÚsinfectÚ Registre Windows Dialer:dialer.xs No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ceb29da4-7afa-4f24-b3cd-17351d590df0} Spyware:spyware/petro-line No DÚsinfectÚ Registre Windows Adware:adware/btgrab No DÚsinfectÚ Registre Windows Adware:adware/gigabar No DÚsinfectÚ Registre Windows Adware:adware/hungryhands No DÚsinfectÚ Registre Windows Spyware:spyware/lowzones No DÚsinfectÚ Registre Windows Adware:adware/24-7-search No DÚsinfectÚ Registre Windows Dialer:dialer.xe No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30CE93AE-4987-483C-9ABE-F2BD5301AB70} Dialer:dialer.xd No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{54645654-2225-4455-44A1-9F4543D34546} Adware:adware program No DÚsinfectÚ Registre Windows Adware:adware/neon No DÚsinfectÚ Registre Windows Adware:adware/dailytoolbar No DÚsinfectÚ Registre Windows Adware:adware/browvil No DÚsinfectÚ Registre Windows Adware:adware/adshooter No DÚsinfectÚ Registre Windows Adware:adware/interkey No DÚsinfectÚ Registre Windows Adware:adware/globosearch No DÚsinfectÚ Registre Windows Adware:adware/ro2cn No DÚsinfectÚ Registre Windows Spyware:spyware/search3 No DÚsinfectÚ Registre Windows Spyware:spyware/escorcher No DÚsinfectÚ Registre Windows Spyware:spyware/fastsearchweb No DÚsinfectÚ Registre Windows Adware:adware/searchrelevancy No DÚsinfectÚ Registre Windows Spyware:spyware/surfsidekick No DÚsinfectÚ Registre Windows Adware:adware/stiebar No DÚsinfectÚ Registre Windows Spyware:spyware/iesearchtoolbar No DÚsinfectÚ Registre Windows Spyware:spyware/whazit No DÚsinfectÚ Registre Windows Adware:adware/mycustomie No DÚsinfectÚ Registre Windows Adware:adware/ist.yoursitebar No DÚsinfectÚ Registre Windows Dialer:dialer.vm No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3E339D3C-4B12-4E8C-A529-9CC4BEEAFD4F} Adware:adware/fastvideoplayer No DÚsinfectÚ Registre Windows Adware:adware/startpage.na No DÚsinfectÚ Registre Windows Adware:adware/topconvert No DÚsinfectÚ Registre Windows Adware:adware/ebgames No DÚsinfectÚ Registre Windows Adware:adware/mytotalsearch No DÚsinfectÚ Registre Windows Spyware:spyware/bundleware No DÚsinfectÚ Registre Windows Adware:adware/activesearch No DÚsinfectÚ Registre Windows Adware:adware/deskwizz No DÚsinfectÚ Registre Windows Adware:adware/superspider No DÚsinfectÚ Registre Windows Spyware:spyware/spydeleter No DÚsinfectÚ Registre Windows Adware:adware/worldsearch No DÚsinfectÚ Registre Windows Spyware:spyware/shazaa No DÚsinfectÚ Registre Windows Adware:adware/getup No DÚsinfectÚ Registre Windows Adware:adware/quickbrowser No DÚsinfectÚ Registre Windows Adware:adware/mssearch No DÚsinfectÚ Registre Windows Adware:adware/startpage.mc No DÚsinfectÚ Registre Windows Spyware:spyware/virtumonde No DÚsinfectÚ Registre Windows Adware:adware/clkoptimizer No DÚsinfectÚ Registre Windows Adware:adware/powersearch No DÚsinfectÚ Registre Windows Adware:adware/kingporn No DÚsinfectÚ Registre Windows Adware:adware/iesearchbar No DÚsinfectÚ Registre Windows Adware:adware/thelocalsearch No DÚsinfectÚ Registre Windows Outil indÚsirable:application/mywebsearch No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{29D67D3C-509A-4544-903F-C8C1B8236554} Adware:adware/whenusearch No DÚsinfectÚ Registre Windows Adware:adware/clocksync No DÚsinfectÚ Registre Windows Adware:adware/e2give No DÚsinfectÚ Registre Windows Adware:adware/tubby No DÚsinfectÚ Registre Windows Adware:adware/sgrunt No DÚsinfectÚ Registre Windows Spyware:spyware/marketscore No DÚsinfectÚ Registre Windows Adware:adware/fastfind No DÚsinfectÚ Registre Windows Adware:adware/sbsoft No DÚsinfectÚ Registre Windows Adware:adware/freescratch No DÚsinfectÚ Registre Windows Adware:adware/megasearch No DÚsinfectÚ Registre Windows Adware:adware/surebar No DÚsinfectÚ Registre Windows Adware:adware/locator No DÚsinfectÚ Registre Windows Adware:adware/midaddle No DÚsinfectÚ Registre Windows Adware:adware/searchsquire No DÚsinfectÚ Registre Windows Adware:adware/beginto No DÚsinfectÚ Registre Windows Spyware:spyware/omi No DÚsinfectÚ Registre Windows Adware:adware/neededware No DÚsinfectÚ Registre Windows Adware:adware/redv No DÚsinfectÚ Registre Windows Adware:adware/cashbar No DÚsinfectÚ Registre Windows Dialer:dialer.su No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CBF8C22-E9A6-11D7-90FE-000AE4012DB4} Adware:adware/searchmall No DÚsinfectÚ Registre Windows Adware:adware/toolbarshopper No DÚsinfectÚ Registre Windows Outil indÚsirable:application/zango No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5B6689B5-C2D4-4dc7-BFD1-24AC17E5FCDA} Adware:adware/404search No DÚsinfectÚ Registre Windows Adware:adware/huntbar No DÚsinfectÚ Registre Windows Adware:adware/exact.searchbar No DÚsinfectÚ Registre Windows Adware:adware/elitebar No DÚsinfectÚ Registre Windows Adware:adware/instdollars No DÚsinfectÚ Registre Windows Outil indÚsirable:application/altnet No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E79DADC6-18D0-4A2A-831F-D196D41F8438} Adware:adware/coupons No DÚsinfectÚ Registre Windows Dialer:dialer generic No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C771B05E-E725-4516-97A5-4CE5EB163CFB} Hacktool:exploit/mhtredir.gen No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{14A3221B-1678-1982-A355-7263B1281987} Adware:adware/ist.xxxtoolbar No DÚsinfectÚ Registre Windows Adware:adware/wupd No DÚsinfectÚ Registre Windows Spyware:spyware/overpro No DÚsinfectÚ Registre Windows Adware:adware/easysearch No DÚsinfectÚ Registre Windows Adware:adware/redswoosh No DÚsinfectÚ Registre Windows Adware:adware/alexa-toolbar No DÚsinfectÚ Registre Windows Adware:adware/sidestep No DÚsinfectÚ Registre Windows Adware:adware/twain-tech No DÚsinfectÚ Registre Windows Adware:adware/localnrd No DÚsinfectÚ Registre Windows Spyware:spyware/clientman No DÚsinfectÚ Registre Windows Adware:adware/fizzle No DÚsinfectÚ Registre Windows Dialer:dialer.qi No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2BCE6A6A-9F26-4A77-A9A7-A68A6C17068D} Adware:adware/toprebates No DÚsinfectÚ Registre Windows Adware:adware/adblaster No DÚsinfectÚ Registre Windows Dialer:dialer.py No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8522F9B3-38C5-4AA4-AE40-7401F1BBC851} Adware:adware/mydailyhoroscope No DÚsinfectÚ Registre Windows Spyware:spyware/media-motor No DÚsinfectÚ Registre Windows Adware:adware/ieplugin No DÚsinfectÚ Registre Windows Adware:adware/opensite No DÚsinfectÚ Registre Windows Adware:adware/comet No DÚsinfectÚ Registre Windows Adware:adware/adlogix No DÚsinfectÚ Registre Windows Adware:adware/searchfast No DÚsinfectÚ Registre Windows Spyware:spyware/lzio-media No DÚsinfectÚ Registre Windows Adware:adware/searchexe No DÚsinfectÚ Registre Windows Adware:adware/123mania No DÚsinfectÚ Registre Windows Dialer:dialer.ok No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{66BD1BD0-3655-42E4-8CE9-16D3613B0B25} Adware:adware/adroar No DÚsinfectÚ Registre Windows Dialer:dialer.no No DÚsinfectÚ HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4B7DA92A-DB6E-71C2-2459-55BB4198387B} Adware:adware/isearch No DÚsinfectÚ Registre Windows Adware:adware/dealhelper No DÚsinfectÚ Registre Windows Adware:adware/blazefind

Logfile of HijackThis v1.99.1 Scan saved at 20:20:36, on 3/09/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\PRISMSVR.EXE C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe D:\Mes documents\Planning Ninie RÚmy\The Cleaner\tca.exe D:\Mes documents\Planning Ninie RÚmy\The Cleaner\tcm.exe D:\Mes documents\logiciels\ewido anti-spyware 4.0\ewido.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\SMC11GMonitor.exe d:\Mes documents\logiciels\ewido anti-spyware 4.0\guard.exe C:\Program Files\Network Associates\Common Framework\FrameworkService.exe C:\Program Files\Network Associates\VirusScan\Mcshield.exe C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\msiexec.exe d:\Mes documents\logiciels\Hijackthis Version Franþaise\hijackthis vf.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.be R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - Default URLSearchHook is missing O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Class - {4CE9DE5E-4DD8-ACDB-5F9A-0DA80565E378} - C:\WINDOWS\wlewq1.dll (file missing) O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file) O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [PRISMSVR.EXE] "C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\PRISMSVR.EXE" /APPLY O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [tcactive] D:\Mes documents\Planning Ninie RÚmy\The Cleaner\tca.exe O4 - HKLM\..\Run: [tcmonitor] D:\Mes documents\Planning Ninie RÚmy\The Cleaner\tcm.exe O4 - HKLM\..\Run: [!ewido] "D:\Mes documents\logiciels\ewido anti-spyware 4.0\ewido.exe" /minimized O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - Global Startup: SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter Utility.lnk = C:\Program Files\SMC\SMC2802W 2.4GHz 54 Mbps Wireless PCI Adapter\SMC11GMonitor.exe O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.google.be O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - d:\Mes documents\logiciels\ewido anti-spyware 4.0\guard.exe O23 - Service: Service Framework McAfee (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\Mcshield.exe O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: WinFwu - Unknown owner - \\?\C:\Program Files\Fichiers communs\Microsoft Shared\lpt9.exe (file missing)