Trojan Horse Lop.D

[skylover21]

Bonjour, j'ai actuellement un trojan qui s'active a chaque heure et que detecte mon antivirus: AVG

Je peux le soigner ou le mettre en quarataine pour le meme resultat car il change de nom a chaque heure...

 

Merci de m'aider a analyser mon rapport hijackthis (j'ai deja supprimer quelques lignes, mais je ne sais pas si c'etait les bonnes

 

Le voici:

 

Logfile of HijackThis v1.99.1

Scan saved at 22:56:10, on 16/05/06

Platform: Windows 98 SE (Win9x 4.10.2222A)

MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

 

Running processes:

C:\WINDOWS\SYSTEM\KERNEL32.DLL

C:\WINDOWS\SYSTEM\MSGSRV32.EXE

C:\WINDOWS\SYSTEM\MPREXE.EXE

C:\WINDOWS\SYSTEM\MSTASK.EXE

C:\WINDOWS\SYSTEM\MDM.EXE

C:\WINDOWS\SYSTEM\mmtask.tsk

C:\WINDOWS\EXPLORER.EXE

C:\WINDOWS\TASKMON.EXE

C:\WINDOWS\SYSTEM\SYSTRAY.EXE

C:\PROGRAM FILES\NETROPA\MULTIMEDIA KEYBOARD\MMKEYBD.EXE

C:\Program Files\Netropa\Onscreen Display\OSD.exe

C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGCC.EXE

C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGEMC.EXE

C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGAMSVR.EXE

C:\WINDOWS\LOADQM.EXE

C:\WINDOWS\SYSTEM\LVCOMS.EXE

C:\PROGRAM FILES\LOGITECH\IMAGESTUDIO\LOGITRAY.EXE

C:\PROGRAM FILES\NETROPA\MULTIMEDIA KEYBOARD\MMUSBKB2.EXE

C:\WINDOWS\SYSTEM\STIMON.EXE

C:\WINDOWS\SYSTEM\QTTASK.EXE

C:\PROGRAM FILES\ACD SYSTEMS\DEVDETECT\DEVDETECT.EXE

C:\PROGRAM FILES\E-CARTE BLEUE\BANQUE POPULAIRE\ECB-BP.EXE

C:\PROGRAM FILES\SAGEM\SAGEM F@ST 800-840\DSLMON.EXE

C:\ESM2\STMS.EXE

C:\PROGRAM FILES\WINDOWS MEDIA COMPONENTS\ENCODER\WMENCAGT.EXE

C:\WINDOWS\SYSTEM\WMIEXE.EXE

C:\ESM2\EBRR.EXE

C:\WINDOWS\SYSTEM\DDHELP.EXE

C:\WINDOWS\SYSTEM\SPOOL32.EXE

C:\WINDOWS\SYSTEM\PSTORES.EXE

C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE

C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE

C:\MES DOCUMENTS\HIJACKTHIS.EXE

 

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll

O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\SYSTEM\BHOECART.DLL

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll

O4 - HKLM\..\Run: [scanRegistry] c:\windows\scanregw.exe /autorun

O4 - HKLM\..\Run: [TaskMonitor] c:\windows\taskmon.exe

O4 - HKLM\..\Run: [systemTray] SysTray.Exe

O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme

O4 - HKLM\..\Run: [EM_EXEC] c:\mouse\system\em_exec.exe

O4 - HKLM\..\Run: [Multimedia Keyboard] C:\Program Files\Netropa\Multimedia Keyboard\MMKeybd.exe

O4 - HKLM\..\Run: [Onscreen Display] C:\Program Files\Netropa\Onscreen Display\OSD.exe

O4 - HKLM\..\Run: [autoclk] autoclk.exe

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGCC.EXE /STARTUP

O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGEMC.EXE

O4 - HKLM\..\Run: [AVG7_AMSVR] C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGAMSVR.EXE

O4 - HKLM\..\Run: [LoadQM] loadqm.exe

O4 - HKLM\..\Run: [LVComs] c:\windows\SYSTEM\LVComS.exe

O4 - HKLM\..\Run: [LogitechGalleryRepair] c:\Program Files\Logitech\ImageStudio\ISStart.exe

O4 - HKLM\..\Run: [LogitechImageStudioTray] c:\Program Files\Logitech\ImageStudio\LogiTray.exe

O4 - HKLM\..\Run: [stillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE

O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\SYSTEM\QTTASK.EXE" -atboottime

O4 - HKLM\..\Run: [Camera Detector] C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE -autorun

O4 - HKLM\..\Run: [eCarteBleue-BP] "C:\PROGRA~1\E-CART~1\BANQUE~1\ECB-BP.exe" /dontopenmycards

O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme

O4 - HKLM\..\RunServices: [schedulingAgent] mstask.exe

O4 - HKLM\..\RunServices: [Machine Debug Manager] C:\WINDOWS\SYSTEM\MDM.EXE

O4 - Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe

O4 - Startup: EPSON Contrôleur en arrière plan.lnk = C:\ESM2\STMS.exe

O4 - Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe

O4 - Startup: Encoder Agent.lnk = C:\Program Files\Windows Media Components\Encoder\WMENCAGT.EXE

O16 - DPF: {8F48147B-78D9-40F9-ACC0-BDDE59B246F4} (AccountHelper Class) - http://register.tiscali.fr/configurateur/AccountHelper.cab

O16 - DPF: {3BFFE033-BF43-11D5-A271-00A024A51325} (iNotes6 Class) - http://intranet.escdijon.com/iNotes6.cab

O18 - Protocol: offline-8876480 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw00 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw00s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw10 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw10s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw20 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw20s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw30 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw30s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw40 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw40s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw50 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw50s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw60 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw60s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw70 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw70s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw80 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw80s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw90 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw90s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwa0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwa0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwb0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwb0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwc0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwc0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwd0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwd0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwe0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwe0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwf0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwf0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwg0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwg0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwh0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwh0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwi0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwi0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwj0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwj0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwk0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwk0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwl0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwl0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwm0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwm0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwn0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwn0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwo0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwo0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwp0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwp0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwq0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwq0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwr0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwr0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bws0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bws0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwt0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwt0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwu0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwu0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwv0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwv0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bww0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bww0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwx0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwx0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwy0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwy0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwz0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwz0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw-0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw-0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw+0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw+0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\GAPLUGPROTOCOL-8876480.DLL

 

Merci de votre aide

[Smoub]

Bonsoir skylover21 et bienvenu chez Zeb!

Ton log n'est pas complêt!

Plutôt que de reposter un log et d'attendre une fois de trop,je te propose de passer directement à l'étape Pré-Nettoyage d'un PC infecté de Mégataupe. Ca parraît long et fastidieux à première vue mais c'est uniquement très détaillé pour que tt le monde puisse y arriver.

Postes ensuite le log HiJackThis et attends qu'un conseillé en sécu s'occupe de toi.

[tornado]

Bonjour skylover21, et bienvenue sur le forum de zéb, et salut smoub

 

 

 

Bonsoir skylover21 et bienvenu chez Zeb!

Ton log n'est pas complêt!

 

Son log est bien complet... il n'y a pas de services (donc pas de lignes 23) sous Windows 98 (voir en-tête du log pour la version de Windows).

 

 

Skylover, il faut suivre la procédure que t'a proposé Smoub, ça va certainement te débarasser de ce cheval de troie

 

 

A +

 

 

EDIT : smoub,

 

Autant pour moi pour le log,la prochaine fois j'y regarderait à 2 fois............ icon_razz.gif

 

Pas de problèmes... je me rappelle avoir commis cette erreur d'inattention

Modifié le 17 mai 2006 par tornado

[Smoub]

Slt tornado.

Autant pour moi pour le log,la prochaine fois j'y regarderait à 2 fois............

[skylover21]

Merci bien de vos reponses.

 

J'avais poster ici en fait pasque je trouvais l'operation en 4 phases tres longue et fastidieuse et je pensais

que Hijackthis pouvait tout fixer de lui-meme (en cliquant sur la bonne ligne a supprimer).

 

Ce n'est apparement pas le cas, donc va faloir que je me planche sur ce long topic lol

 

Merci encore, je vous tiens au courant

 

(et oui j'utilise encore Windows 98 )

[skylover21]

Bon bah voila le resultat...

 

Logfile of HijackThis v1.99.1

Scan saved at 18:27:30, on 20/05/06

Platform: Windows 98 SE (Win9x 4.10.2222A)

MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

 

Running processes:

C:\WINDOWS\SYSTEM\KERNEL32.DLL

C:\WINDOWS\SYSTEM\MSGSRV32.EXE

C:\WINDOWS\SYSTEM\MPREXE.EXE

C:\WINDOWS\SYSTEM\mmtask.tsk

C:\WINDOWS\SYSTEM\MSTASK.EXE

C:\WINDOWS\SYSTEM\MDM.EXE

C:\WINDOWS\EXPLORER.EXE

C:\WINDOWS\TASKMON.EXE

C:\WINDOWS\SYSTEM\SYSTRAY.EXE

C:\PROGRAM FILES\NETROPA\MULTIMEDIA KEYBOARD\MMKEYBD.EXE

C:\Program Files\Netropa\Onscreen Display\OSD.exe

C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGCC.EXE

C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGEMC.EXE

C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGAMSVR.EXE

C:\WINDOWS\LOADQM.EXE

C:\WINDOWS\SYSTEM\LVCOMS.EXE

C:\PROGRAM FILES\NETROPA\MULTIMEDIA KEYBOARD\MMUSBKB2.EXE

C:\PROGRAM FILES\LOGITECH\IMAGESTUDIO\LOGITRAY.EXE

C:\WINDOWS\SYSTEM\STIMON.EXE

C:\WINDOWS\SYSTEM\QTTASK.EXE

C:\PROGRAM FILES\ACD SYSTEMS\DEVDETECT\DEVDETECT.EXE

C:\PROGRAM FILES\E-CARTE BLEUE\BANQUE POPULAIRE\ECB-BP.EXE

C:\PROGRAM FILES\SAGEM\SAGEM F@ST 800-840\DSLMON.EXE

C:\ESM2\STMS.EXE

C:\PROGRAM FILES\WINDOWS MEDIA COMPONENTS\ENCODER\WMENCAGT.EXE

C:\ESM2\EBRR.EXE

C:\WINDOWS\SYSTEM\WMIEXE.EXE

C:\PROGRAM FILES\HIJACKTHIS\HIJACKTHIS.EXE

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.cqygsxphhnofibuwabinbbs.com/G/y...Xny9iUsY8aB.cgi

O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\SYSTEM\BHOECART.DLL

O4 - HKLM\..\Run: [scanRegistry] c:\windows\scanregw.exe /autorun

O4 - HKLM\..\Run: [TaskMonitor] c:\windows\taskmon.exe

O4 - HKLM\..\Run: [systemTray] SysTray.Exe

O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme

O4 - HKLM\..\Run: [EM_EXEC] c:\mouse\system\em_exec.exe

O4 - HKLM\..\Run: [Multimedia Keyboard] C:\Program Files\Netropa\Multimedia Keyboard\MMKeybd.exe

O4 - HKLM\..\Run: [Onscreen Display] C:\Program Files\Netropa\Onscreen Display\OSD.exe

O4 - HKLM\..\Run: [autoclk] autoclk.exe

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGCC.EXE /STARTUP

O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGEMC.EXE

O4 - HKLM\..\Run: [AVG7_AMSVR] C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGAMSVR.EXE

O4 - HKLM\..\Run: [LoadQM] loadqm.exe

O4 - HKLM\..\Run: [LVComs] c:\windows\SYSTEM\LVComS.exe

O4 - HKLM\..\Run: [LogitechGalleryRepair] c:\Program Files\Logitech\ImageStudio\ISStart.exe

O4 - HKLM\..\Run: [LogitechImageStudioTray] c:\Program Files\Logitech\ImageStudio\LogiTray.exe

O4 - HKLM\..\Run: [stillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE

O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\SYSTEM\QTTASK.EXE" -atboottime

O4 - HKLM\..\Run: [Camera Detector] C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE -autorun

O4 - HKLM\..\Run: [eCarteBleue-BP] "C:\PROGRA~1\E-CART~1\BANQUE~1\ECB-BP.exe" /dontopenmycards

O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme

O4 - HKLM\..\RunServices: [schedulingAgent] mstask.exe

O4 - HKLM\..\RunServices: [Machine Debug Manager] C:\WINDOWS\SYSTEM\MDM.EXE

O4 - HKCU\..\Run: [LDM] \Program\

O4 - Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe

O4 - Startup: EPSON Contrôleur en arrière plan.lnk = C:\ESM2\STMS.exe

O4 - Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe

O4 - Startup: Encoder Agent.lnk = C:\Program Files\Windows Media Components\Encoder\WMENCAGT.EXE

O16 - DPF: {8F48147B-78D9-40F9-ACC0-BDDE59B246F4} (AccountHelper Class) - http://register.tiscali.fr/configurateur/AccountHelper.cab

O16 - DPF: {3BFFE033-BF43-11D5-A271-00A024A51325} (iNotes6 Class) - http://intranet.escdijon.com/iNotes6.cab

O18 - Protocol: offline-8876480 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw00 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw00s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw10 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw10s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw20 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw20s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw30 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw30s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw40 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw40s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw50 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw50s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw60 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw60s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw70 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw70s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw80 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw80s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw90 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw90s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwa0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwa0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwb0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwb0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwc0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwc0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwd0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwd0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwe0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwe0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwf0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwf0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwg0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwg0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwh0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwh0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwi0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwi0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwj0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwj0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwk0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwk0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwl0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwl0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwm0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwm0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwn0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwn0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwo0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwo0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwp0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwp0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwq0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwq0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwr0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwr0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bws0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bws0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwt0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwt0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwu0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwu0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwv0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwv0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bww0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bww0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwx0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwx0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwy0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwy0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwz0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwz0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw-0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw-0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw+0 - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bw+0s - {4DEAA7A1-E6EA-11D9-BA64-444553540000} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\BWPLUGPROTOCOL-8876480.DLL

O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\PROGRAM FILES\LOGITECH\DESKTOP MESSENGER\8876480\PROGRAM\GAPLUGPROTOCOL-8876480.DLL

[tornado]

Bonsoir skylover21,

 

 

Rien d'infectieux sur ton rapport, à part une ligne. Fais donc ceci ;

 

 

1/ Déconnecte toi du net et ferme IE (internet explorer)

 

2/ Lance Hijackthis, "do a system scan only" et coche la ligne suivante :

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.cqygsxphhnofibuwabinbbs.com/G/y...Xny9iUsY8aB.cgi

 

 

- Clique sur "fix checked"

 

 

 

3/ Fais le scan en ligne de panda --> http://www.zebulon.fr/outils/antivirus/ant...us-en-ligne.php (fonctionne sous IE)

 

- Met une adresse mail valide (ou crée une adresse jetable --> http://www.jetable.org/fr/index )

- Installe l'activex

- Suis les instructions

- Choisis un scan "Disques locaux"

- A la fin du scan, clique sur "sauver le rapport"

- Copie le rapport du scan et met-le dans ton prochain post

 

 

Le tuto si tu bloques sur quelque chose --> http://www.malekal.com/scan_Av_en_ligne.html#mozTocId237368

 

 

 

 

 

A+

[skylover21]

J'avais deja essayer sa et:

Une erreur s'est produite lors du téléchargement de Panda ActiveScan. Recommencez l'opération. Si l'erreur se produit de nouveau, redémarrez votre ordinateur et essayer une nouvelle foisLes raisons de l’erreur peuvent être:

 

Ne pas autoriser le téléchargement du contrôle ActiveScan de l’application.

 

Des problèmes avec la connexion Internet.

 

Une erreur est survenue au cours de l’installation d’ActiveScan. Merci de vérifier que votre connexion Internet fonctionne puis cliquez sur 'Réessayer'.

 

A chaque fois sa me met sa...

Peut-etre qu'il aime pas les adresses de hotmail?

 

Sinon oui j'avais deja fixer le HK01 en fait c'etait ce qui me semblait anormal dans le rapport.

Je tiens a ajouter aussi que mon ordi va deja plus vite et le trojan semble suprimer..

[tornado]

Salut Skylover,

 

 

 

Bon... peux-tu vérifier ceci que les paramètres dans IE autorisent les activex, comme c'est montré sur cette page --> http://www.inoculer.com/activex.php3 (voir les 2 captures)

 

 

Si ça ne fonctionne pas non plus, essaye avec un autre scan en ligne comme celui de Kaspersky --> http://webscanner.kaspersky.fr/

 

Le tuto si tu bloques sur quelques chose --> http://www.malekal.com/scan_Av_en_ligne.html#mozTocId291566

 

 

Bonne chance

[skylover21]

ça marche pas avec Windows 98....

 

Ya rien sur les ActiveX (a l'epoque sa devait pas exister )

 

Kaspercky marche pas non plus