Aurora, nail et cie

Aurora, nail et cie - Sécurité - Windows & Software

Marsh Posté le 25-06-2005 à 15:44:13    

Bonjour à tous
 
Voila je suis un petit nouveau dans le monde de l'informatique, et j'aurai besoin d'aide, car jusqu'a présent avec quelque recherche j'ai toujours réussi à me débrouiller, mais la ça me dépasse.
J'ai une fenetre aurora qui saffiche par moment, un fichier drpmon.dll qui veut pa s'effacer, un fichier nail qui réapparait tout le temps et j'en passe.
 
J'ai fait un logfile avec HijackThis v1.99.1, mais pour moi c vraiment du chinois
 
 
 
Logfile of HijackThis v1.99.1  
Scan saved at 15:07:47, on 25/06/2005  
Platform: Windows XP SP1 (WinNT 5.01.2600)  
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)  
 
Running processes:  
C:\WINDOWS\System32\smss.exe  
C:\WINDOWS\system32\winlogon.exe  
C:\WINDOWS\system32\services.exe  
C:\WINDOWS\system32\lsass.exe  
C:\WINDOWS\system32\svchost.exe  
C:\WINDOWS\System32\svchost.exe  
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe  
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe  
D:\Program Files\Norton Internet Security\ISSVC.exe  
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe  
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe  
D:\Program Files\Stardock\Object Desktop\WindowBlinds\wbload.exe  
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe  
C:\WINDOWS\system32\spoolsv.exe  
C:\WINDOWS\Explorer.exe  
C:\WINDOWS\System32\drivers\CDAC11BA.EXE  
d:\Program Files\Ahead\InCD\InCDsrv.exe  
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe  
D:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe  
C:\WINDOWS\System32\nvsvc32.exe  
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe  
C:\WINDOWS\System32\svchost.exe  
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe  
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe  
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe  
D:\Program Files\ASUS\Probe\AsusProb.exe  
D:\Program Files\Ahead\InCD\InCD.exe  
D:\Program Files\Logitech\iTouch\iTouch.exe  
C:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe  
C:\WINDOWS\System32\ezSP_Px.exe  
C:\WINDOWS\System32\RUNDLL32.EXE  
C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe  
C:\PROGRA~1\Wanadoo\CnxMon.exe  
C:\PROGRA~1\Wanadoo\TaskbarIcon.exe  
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe  
D:\Program Files\Winamp\winampa.exe  
d:\Program Files\Logitech\MouseWare\system\em_exec.exe  
D:\Program Files\D-Tools\daemon.exe  
D:\Program Files\iTunes\iTunesHelper.exe  
C:\Program Files\QuickTime\qttask.exe  
D:\Program Files\Java\jre1.5.0\bin\jusched.exe  
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe  
D:\Program Files\SlySoft\AnyDVD\AnyDVD.exe  
C:\Program Files\iPod\bin\iPodService.exe  
D:\Program Files\MessengerPlus! 3\MsgPlus.exe  
C:\WINDOWS\system32\ieex.exe  
D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe  
C:\Program Files\Fichiers communs\RTE\RTEGPRS.exe  
c:\windows\system32\gyuvvtw.exe  
D:\Program Files\CursorXP\CursorXP.exe  
D:\Program Files\Hewlett-Packard\AiO\hp psc 700 series\Bin\hpobrt07.exe  
D:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe  
C:\PROGRA~1\Wanadoo\EspaceWanadoo.exe  
D:\Program Files\Microsoft Office\Office10\msoffice.exe  
C:\PROGRA~1\Wanadoo\ComComp.exe  
D:\PROGRA~1\HEWLET~1\AiO\Shared\Bin\hpoevm07.exe  
C:\PROGRA~1\Wanadoo\Watch.exe  
D:\Program Files\Hewlett-Packard\AiO\Shared\bin\hpOSTS07.exe  
D:\Program Files\Avant Browser\avant.exe  
C:\WINDOWS\system32\notepad.exe  
C:\WINDOWS\system32\apiga32.exe  
C:\Program Files\MSN Messenger\msnmsgr.exe  
C:\WINDOWS\system32\NOTEPAD.EXE  
L:\Mes documents\Logiciels\Internet\HijackThis.exe  
 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\axdas.dll/sp.html#83556  
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\axdas.dll/sp.html#83556  
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank  
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS\axdas.dll/sp.html#83556  
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\axdas.dll/sp.html#83556  
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\axdas.dll/sp.html#83556  
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\axdas.dll/sp.html#83556  
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\axdas.dll/sp.html#83556  
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo  
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens  
R3 - Default URLSearchHook is missing  
F2 - REG:system.ini: Shell=Explorer.exe C:\WINDOWS\Nail.exe  
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll  
O2 - BHO: Class - {6BFEF1C4-6CD1-0061-313A-7573970B3F22} - C:\WINDOWS\system32\sdkjw.dll  
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll  
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - D:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll  
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)  
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx  
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll  
O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_5_7_0.dll  
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - D:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll  
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe  
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray  
O4 - HKLM\..\Run: [ASUS Probe] d:\Program Files\ASUS\Probe\AsusProb.exe  
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup  
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install  
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe  
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe -CheckReg  
O4 - HKLM\..\Run: [PSDrvCheck] "D:\Program Files\Pinnacle\Instant VideoAlbum\programs\PSDrvCheck.exe" -CheckReg  
O4 - HKLM\..\Run: [InCD] d:\Program Files\Ahead\InCD\InCD.exe  
O4 - HKLM\..\Run: [zBrowser Launcher] d:\Program Files\Logitech\iTouch\iTouch.exe  
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe  
O4 - HKLM\..\Run: [mmtask] c:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe  
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe  
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit  
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon  
O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\Wanadoo\CnxMon.exe  
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe  
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\TaskbarIcon.exe  
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot  
O4 - HKLM\..\Run: [WinampAgent] D:\Program Files\Winamp\winampa.exe  
O4 - HKLM\..\Run: [SSC_UserPrompt] C:\Program Files\Fichiers communs\Symantec Shared\Security Center\UsrPrmpt.exe  
O4 - HKLM\..\Run: [DAEMON Tools-1033] "D:\Program Files\D-Tools\daemon.exe" -lang 1033  
O4 - HKLM\..\Run: [iTunesHelper] D:\Program Files\iTunes\iTunesHelper.exe  
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime  
O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Program Files\Java\jre1.5.0\bin\jusched.exe  
O4 - HKLM\..\Run: [PCLITFXF] c:\windows\system32\pclitfxf.exe /install  
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"  
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe  
O4 - HKLM\..\Run: [AnyDVD] D:\Program Files\SlySoft\AnyDVD\AnyDVD.exe  
O4 - HKLM\..\Run: [Security iGuard] C:\Program Files\Security iGuard\Security iGuard.exe  
O4 - HKLM\..\Run: [MessengerPlus3] "D:\Program Files\MessengerPlus! 3\MsgPlus.exe"  
O4 - HKLM\..\Run: [winjz.exe] C:\WINDOWS\system32\winjz.exe  
O4 - HKLM\..\Run: [ipce32.exe] C:\WINDOWS\system32\ipce32.exe  
O4 - HKLM\..\Run: [ipaa32.exe] C:\WINDOWS\system32\ipaa32.exe  
O4 - HKLM\..\Run: [ntnj32.exe] C:\WINDOWS\system32\ntnj32.exe  
O4 - HKLM\..\Run: [ieex.exe] C:\WINDOWS\system32\ieex.exe  
O4 - HKLM\..\Run: [tromvx] c:\windows\system32\gyuvvtw.exe  
O4 - HKLM\..\RunOnce: [apiga32.exe] C:\WINDOWS\system32\apiga32.exe  
O4 - HKCU\..\Run: [LDM] d:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe  
O4 - HKCU\..\Run: [RTEGPRS] "C:\Program Files\Fichiers communs\RTE\RTEGPRS.exe" tray  
O4 - HKCU\..\Run: [CursorXP] D:\Program Files\CursorXP\CursorXP.exe  
O4 - Startup: Eurobarre.lnk = ?  
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe  
O4 - Global Startup: HPAiODevice(hp psc 700 series) - 1.lnk = D:\Program Files\Hewlett-Packard\AiO\hp psc 700 series\Bin\hpobrt07.exe  
O4 - Global Startup: InterVideo WinCinema Manager.lnk = D:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe  
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe  
O4 - Global Startup: Logitech Desktop Messenger.lnk = D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe  
O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office10\OSA.EXE  
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html  
O8 - Extra context menu item: Bloquer ce serveur... - D:\Program Files\Avant Browser\AddAllToADBlackList.htm  
O8 - Extra context menu item: Bloquer cette publicité... - D:\Program Files\Avant Browser\AddToADBlackList.htm  
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000  
O8 - Extra context menu item: Ouvrir tous les liens de la page... - D:\Program Files\Avant Browser\OpenAllLinks.htm  
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html  
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html  
O8 - Extra context menu item: Rechercher sur le Web... - D:\Program Files\Avant Browser\Search.htm  
O8 - Extra context menu item: Surligner - D:\Program Files\Avant Browser\Highlight.htm  
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html  
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - D:\Program Files\WinHTTrack\WinHTTrackIEBar.dll  
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - D:\Program Files\WinHTTrack\WinHTTrackIEBar.dll  
O9 - Extra button: Messenger Addon - {FB5F1911-F110-11d2-BB9E-00C04F795683} - http://messenger.ipfox.com (file missing)  
O9 - Extra 'Tools' menuitem: &Messenger Addon - {FB5F1911-F110-11d2-BB9E-00C04F795683} - http://messenger.ipfox.com (file missing)  
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - www.wanadoo.fr (file missing) (HKCU)  
O9 - Extra button: Microsoft AntiSpyware helper - {E774F20E-1B46-4830-AE7D-C5891EF6FE08} - (no file) (HKCU)  
O9 - Extra 'Tools' menuitem: Microsoft AntiSpyware helper - {E774F20E-1B46-4830-AE7D-C5891EF6FE08} - (no file) (HKCU)  
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b31267.cab  
O16 - DPF: {084DAC27-6FA3-4F55-9005-033F2F102F5C} (ITPPDiagIE Class) - http://downloads.winwise.fr/Common/npwwg.cab  
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b30149.cab  
O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/ [...] e-c139.cab  
O16 - DPF: {2472DCCC-68CE-49DA-AA81-E7E6D83C1DFA} (PackageHTML) - http://acces.blonde.com/package/op/PackageHtmlCab.CAB  
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/bina [...] b30149.cab  
O16 - DPF: {56A7DC70-E102-4408-A34A-AE06FEF01586} - http://iebar.t2t2.com/iebar.cab  
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft. [...] 6663861140  
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537 [...] scan53.cab  
O16 - DPF: {79849612-A98F-45B8-95E9-4D13C7B6B35C} - http://static.topconverting.com/activex/website.ocx  
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b30149.cab  
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab  
O16 - DPF: {ABB08127-7417-11D4-8566-00500448008D} (Chat Class) - http://downloads.winwise.fr/Common/npchatlax.cab  
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/ [...] loader.cab  
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/bina [...] b30149.cab  
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/bina [...] b30149.cab  
O16 - DPF: {CC32D4D8-2A0B-4CEB-B105-C9B968379105} (CGameManagerCtrl Object) - http://www.disney.go.com/games/dow [...] anager.cab  
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/bina [...] b30149.cab  
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b31267.cab  
O17 - HKLM\System\CCS\Services\Tcpip\..\{0A9B981B-6764-4428-9064-605772538DA5}: NameServer = 80.10.246.130 80.10.246.3  
O18 - Protocol: bw+0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw+0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw-0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw-0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw00 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw00s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw10 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw10s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw20 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw20s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw30 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw30s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw40 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw40s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw50 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw50s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw60 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw60s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw70 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw70s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw80 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw80s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw90 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bw90s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwa0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwa0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwb0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwb0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwc0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwc0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwd0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwd0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwe0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwe0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwf0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwf0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll  
O18 - Protocol: bwg0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwg0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwh0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwh0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwi0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwi0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwj0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwj0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwk0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwk0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwl0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwl0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwm0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwm0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwn0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwn0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwo0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwo0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwp0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwp0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwq0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwq0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwr0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwr0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bws0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bws0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwt0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwt0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwu0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwu0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwv0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwv0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bww0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bww0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwx0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwx0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwy0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwy0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwz0 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: bwz0s - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O18 - Protocol: offline-8876480 - {1F30D7AC-5CD3-4479-8851-61208E67AE25} - d:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll  
O20 - Winlogon Notify: WB - D:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\fastload.dll  
O23 - Service: Workstation NetLogon Service ( 11Fßä#·ºÄÖ`I) - Unknown owner - C:\WINDOWS\cryd32.exe (file missing)  
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe  
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE  
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe  
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe  
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe  
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe  
O23 - Service: InCD Helper (InCDsrv) - AHEAD Software - d:\Program Files\Ahead\InCD\InCDsrv.exe  
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe  
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - D:\Program Files\Norton Internet Security\ISSVC.exe  
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - D:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe  
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe  
O23 - Service: SAVScan - Symantec Corporation - D:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe  
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe  
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe  
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe  
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe  
O23 - Service: System Startup Service (SvcProc) - Unknown owner - C:\WINDOWS\svcproc.exe  
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe  
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe  
 
 
 
 
J'espère sincèrement que vous allez pouvoir m'aider à régler tous mes problèmes, et je vous pris de m'excuser d'avoir à répéter vos aides à des petits nouveaux comme moi
 
Merci d'avance

Reply

Marsh Posté le 25-06-2005 à 15:44:13   

Reply

Marsh Posté le 25-06-2005 à 16:19:24    

Bonjour, télécharge ces utilitaires:
 
CCleaner
http://www.ccleaner.com/ccdownload.asp
Exécute le sur chaque session utilisateur.
 
Ewido
Installe et mets à jour
 
SpSeHjfix ici :
http://www.trojaner-info.de/cgi-bi [...] le=sphjfix
 
About Buster:
http://downloads.subratam.org/AboutBuster.zip
Dézippe le dans un répertoire alloué et place un raccourci sur le bureau
 
ABIremover
http://forum.hijackthis.de/attachm [...] mentid=177
 
Lance SpSeHjfix. Clique sur "start disinfection". En cas d'infection le pc sera redémarré
 
Démarre en mode sans échec(impérativement en mode sans échec)
Installe ABIRemover.exe, patienter... pendant l'installation l'explorateur Windows se fermera.
 
Redémarre en mode sans échec lance Hijackthis scan et coche les lignes suivantes:
 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\axdas.dll/sp.html#83556  
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\axdas.dll/sp.html#83556  
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank  
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS\axdas.dll/sp.html#83556  
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\axdas.dll/sp.html#83556  
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\axdas.dll/sp.html#83556  
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\axdas.dll/sp.html#83556  
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\axdas.dll/sp.html#83556  
R3 - Default URLSearchHook is missing  
F2 - REG:system.ini: Shell=Explorer.exe C:\WINDOWS\Nail.exe  
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)  
 
Ferme toutes les fenêtres tous les programmes puis Fix checked.
 
Lance deux fois About:Buster
 
Scanne avec Ewido.  
 
Redémarre en mode sans échec et poste un nouveau rapport Hijackthis avec celui d'Ewido.


Message édité par stonangel le 25-06-2005 à 16:20:15
Reply

Sujets relatifs:

Leave a Replay

Make sure you enter the(*)required information where indicate.HTML code is not allowed