message du hacker

Si vous avez des problèmes, des bugs avec des logiciels, n'hésitez pas a en faire part ici !
On se chargera de vous aider...

Modérateurs : Naveed, GregLand

kickoff

message du hacker

Message par kickoff » 10 août 2005 12:23

bonjour alors ma femme a un blem sur son ordi quand elle l'allume avant kapparaise les session une fentre souvre avec marker tu t fais hacker et j'arrive pas a lenlever jai regarde dans le registre et dans la liste des logiciels qui demarre en meme temps que windows j'ai pas trouver elle a eu sa en ouvrant un jeux qu'elle a supprimer

si quelqu'un sait comment faire merci

Avatar du membre
GregLand
Programmeur & Administrateur
Programmeur & Administrateur
Messages : 4167
Enregistré le : 10 oct. 2003 09:36
Langage de programmation connu : .
Utilisés régulièrement :
- Visual DialogScript
- WinDev
- AutoIt
- AutoHotkey
- Html, Js, Vbs, PHP

Utilisés moins souvent :
- C et C++
- VB et VB.Net (pour les DLL)
- Delphi (Pour DLL)
- Java (Pour Android)
- ASM (pour désassembler)
- Python (quand je m'ennuie)
- et quelques autres.... ;-)
Localisation : Les Damps (27)
Contact :

Message par GregLand » 10 août 2005 16:08

Fermes TOUS les programmes que tu connais (ferme le maximum de programmes qui sont lancés)

Télécharge ce programme :
http://gregland.net/download.php? ... nfo&did=96

Une fois le message s'affichant, lance le programme précédent et essaye de trouver quel programme pose problème... tu trouveras ainsi son dossier... va dans le dossier et supprimes le s'il ne fait pas partie du système...

Autre méthode...
Va sur http://www.01net.com/telecharger/, récupère le programme AD Aware et son patch FR
Ad aware : http://www.01net.com/telecharger/idm.ph ... tilitaires
Patch Français : http://www.01net.com/telecharger/idm.ph ... tilitaires

et fais une analyse de ton PC

kickoff

Message par kickoff » 10 août 2005 18:42

j'ai deja passer ad aware ainsi que spybot et avast comme anti virus je vais essayer ta premiere methode merci

Invité

Message par Invité » 28 août 2005 11:43

alors j'ai essaye avec ton programme et malheureusement introuvable car en faite cette fenetre s'afficher pendant que windows est en cours de demarrage

windows xp se charge avec la petite barre de chargement et apres il y a la page bleu avec marquer Windows est en cours de demarrage et apres normalement il affiche les sessions

mais la en faite il ouvre la fenetre qui me pose probleme et reste comme cela le temps que j'ai pas fait OK il reste comme sa et je peut rien faire d'autre j'ai essayer donc quand je lance ton logiciel bah il peut pas le detecter puisque la fenetre est parti

si quelqu'un a une idee merci

Avatar du membre
GregLand
Programmeur & Administrateur
Programmeur & Administrateur
Messages : 4167
Enregistré le : 10 oct. 2003 09:36
Langage de programmation connu : .
Utilisés régulièrement :
- Visual DialogScript
- WinDev
- AutoIt
- AutoHotkey
- Html, Js, Vbs, PHP

Utilisés moins souvent :
- C et C++
- VB et VB.Net (pour les DLL)
- Delphi (Pour DLL)
- Java (Pour Android)
- ASM (pour désassembler)
- Python (quand je m'ennuie)
- et quelques autres.... ;-)
Localisation : Les Damps (27)
Contact :

Message par GregLand » 28 août 2005 13:21

IL faut que tu regardes avant de cliquer sur Ok
(je ne sais pas si c'est ce que tu as fait)

kickoff

Message par kickoff » 28 août 2005 21:16

bah j'ai regarder et a part deplacer la fenetre lire le titre et la phrase qu'il y a dedan je peux rien faire je peux meme pas cliquer sur la petite croix je suis obliger de faire OK et si j'attend tout le fond devien noir mais la fenetre reste

Avatar du membre
Eblis
[-_VIP_-]
Messages : 1302
Enregistré le : 26 oct. 2003 13:15
Localisation : 92
Contact :

Message par Eblis » 28 août 2005 21:47

http://www.merijn.org/files/hijackthis.zip
Et tu me colles le log entier ici ;)
Pour vérifier ce qu'il démarre (si tu fais pas comme ça) démarrer/éxécuter/msconfig pui ok/tu regardes les programmes qui se lancent et les services en masquant les services windows ;)
Image

kickoff

Message par kickoff » 28 août 2005 22:25

j'ai pas compris pour l'histoire du log et ton logiciel lol tu peux m'expliquer stp

Avatar du membre
Eblis
[-_VIP_-]
Messages : 1302
Enregistré le : 26 oct. 2003 13:15
Localisation : 92
Contact :

Message par Eblis » 29 août 2005 00:04

Tu prend le logiciel, tu le lances (et tu aurais compris tout seul...) ensuite "do a system scan and save a logfile", un fichier texte s'ouvre: sélectionner tout, copier, et tu colles dans la réponse que tu vas me faire ;)
Image

Avatar du membre
thiousi
Messages : 1199
Enregistré le : 24 nov. 2004 22:31
Localisation : officiellement dans le 75, officieusement...
Contact :

Message par thiousi » 29 août 2005 00:10

et après le magicien entre en action ;)
"Thiousi & J-ben : l'équipe de choc!"
Image
"Thiousi & J-ben : le duo de choc!"

Avatar du membre
Eblis
[-_VIP_-]
Messages : 1302
Enregistré le : 26 oct. 2003 13:15
Localisation : 92
Contact :

Message par Eblis » 29 août 2005 00:54

lol Thousi :langue:
Image

Avatar du membre
thiousi
Messages : 1199
Enregistré le : 24 nov. 2004 22:31
Localisation : officiellement dans le 75, officieusement...
Contact :

Message par thiousi » 29 août 2005 01:06

:D:D et ce magicien il révèle jamais ces potions magiques un peu comme panaromaninix! :D













































:tusors:



:(
"Thiousi & J-ben : l'équipe de choc!"
Image
"Thiousi & J-ben : le duo de choc!"

Avatar du membre
Eblis
[-_VIP_-]
Messages : 1302
Enregistré le : 26 oct. 2003 13:15
Localisation : 92
Contact :

Message par Eblis » 29 août 2005 01:23

lol, allez va te coucher, c'est plus l'heure de raconter des bétises sur le net :D
Image

Avatar du membre
thiousi
Messages : 1199
Enregistré le : 24 nov. 2004 22:31
Localisation : officiellement dans le 75, officieusement...
Contact :

Message par thiousi » 29 août 2005 01:27

oui mossieur... ca sra tout? :roll: :sleep: :sleep: :sleep:
"Thiousi & J-ben : l'équipe de choc!"
Image
"Thiousi & J-ben : le duo de choc!"

kickoff

Message par kickoff » 29 août 2005 11:34

daccord voila sa fais long lol

Logfile of HijackThis v1.99.1
Scan saved at 11:32:08, on 29/08/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Documents and Settings\Elsa\Mes documents\Telechargement\messagerie\msn plus\MsgPlus.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Documents and Settings\Elsa\Mes documents\eMule\emule.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Elsa\Mes documents\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.pbqgqiwrnrqmcrs.com/VRNEdW9f ... LLlZOg.jsp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ujrqaorszujppwlisjdampd.net/ ... euUIc.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = c:\WINDOWS\PCHealth\HelpCtr\System\panels\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - _{08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file)
R3 - URLSearchHook: (no name) - _{CE000994-A58C-4441-8938-744CD72AB27F} - (no file)
R3 - URLSearchHook: (no name) - _{5D60FF48-95BE-4956-B4C6-6BB168A70310} - (no file)
R3 - URLSearchHook: (no name) - _{12F02779-6D88-4958-8AD3-83C12D86ADC7} - (no file)
F1 - win.ini: run=c:\windows\system32\runfile.exe
F3 - REG:win.ini: load=C:\Program Files\KEVIN\kevin.exe
O2 - BHO: (no name) - {BFA97ABA-8D59-C87A-93BC-ACB5A649C614} - C:\DOCUME~1\Elsa\APPLIC~1\idleboob\save upload.exe
O3 - Toolbar: (no name) - {34A44FCF-50E3-63A5-A8DA-7835752B9571} - (no file)
O3 - Toolbar: (no name) - {2CDE1A7D-A478-4291-BF31-E1B4C16F92EB} - (no file)
O4 - HKLM\..\Run: [Windows Compliant] shogid.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [External Dependencies] External.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Documents and Settings\Elsa\Mes documents\Telechargement\messagerie\msn plus\MsgPlus.exe"
O4 - HKLM\..\Run: [Bonetoolcoalbat] C:\Documents and Settings\All Users\Application Data\4 ONCE BONE TOOL\01 Exit.exe
O4 - HKLM\..\Run: [NI.UWFX5V_0001_0802] "C:\Documents and Settings\Elsa\Local Settings\Temporary Internet Files\Content.IE5\MX8BQP25\WFI_FRA[2].exe"
O4 - HKLM\..\RunServices: [Windows Compliant] shogid.exe
O4 - HKLM\..\RunServices: [External Dependencies] External.exe
O4 - HKCU\..\Run: [Windows Compliant] shogid.exe
O4 - HKCU\..\Run: [Draw Tick] C:\DOCUME~1\Elsa\APPLIC~1\CHINST~1\type program.exe
O4 - Global Startup: Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = ?
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Logotor - {ef995f9d-f7dd-42ce-96c4-f70b5675671f} - C:\Program Files\Skyrock\Logotor\Logotor.exe (file missing)
O9 - Extra 'Tools' menuitem: Logotor - {ef995f9d-f7dd-42ce-96c4-f70b5675671f} - C:\Program Files\Skyrock\Logotor\Logotor.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/ms ... b31267.cab
O16 - DPF: {11111111-1111-1111-1111-111191113457} - file://c:\ied_s7.cab
O16 - DPF: {11111111-1111-1111-1111-511111193457} - file://c:\x.cab
O16 - DPF: {11111111-1111-1111-1111-511111193458} - file://c:\x.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?LinkId= ... lcid=0x409
O16 - DPF: {23232323-2323-2323-2323-232323291122} - file://c:\x.cab
O16 - DPF: {402EE96E-2CE8-482D-ADA5-CECEEA07E16D} (TurnTool Scene) - http://www.turntool.com/ViewerInstall.exe
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/Clien ... /setup.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by18fd.bay18.hotmail.msn.com/res ... nPUpld.cab
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://jeuxvideo.wanadoo.fr/components/Metaboli.ocx
O16 - DPF: {88C51E90-8E9C-4C96-8A45-574D88B63FAF} - http://acceso.masminutos.com/aplicacion.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Me ... b28578.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMe ... loader.cab
O18 - Protocol: bw+0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw+0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwb0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwb0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwc0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwc0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwd0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwd0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwe0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwe0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwf0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwf0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwg0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwg0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwh0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwh0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwi0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwi0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwj0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwj0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwk0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwk0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwl0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwl0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwm0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwm0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwn0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwn0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwo0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwo0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwp0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwp0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwq0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwq0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwr0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwr0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bws0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bws0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwt0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwt0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwu0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwu0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwv0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwv0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bww0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bww0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwx0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwx0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwy0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwy0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwz0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwz0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: offline-8876480 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O21 - SSODL: SystemCheck2 - {54645654-2225-4455-44A1-9F4543D34545} - C:\WINDOWS\System32\vbsys2.dll (file missing)
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: hpdj7600 - Unknown owner - C:\DOCUME~1\Elsa\LOCALS~1\Temp\hpdj7600.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe

Avatar du membre
Eblis
[-_VIP_-]
Messages : 1302
Enregistré le : 26 oct. 2003 13:15
Localisation : 92
Contact :

Message par Eblis » 29 août 2005 12:09

Je sais que ça fait le long, c'est pour ça que j'ai présiser tout ;)
T'as un bordel :o
Alors tu vas cocher:

Code : Tout sélectionner

R3 - URLSearchHook: (no name) - _{5D60FF48-95BE-4956-B4C6-6BB168A70310} - (no file)    

R3 - URLSearchHook: (no name) - _{12F02779-6D88-4958-8AD3-83C12D86ADC7} - (no file)   
O3 - Toolbar: (no name) - {34A44FCF-50E3-63A5-A8DA-7835752B9571} - (no file)
O3 - Toolbar: (no name) - {2CDE1A7D-A478-4291-BF31-E1B4C16F92EB} - (no file)
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Logotor - {ef995f9d-f7dd-42ce-96c4-f70b5675671f} - C:\Program Files\Skyrock\Logotor\Logotor.exe (file missing)
O9 - Extra 'Tools' menuitem: Logotor - {ef995f9d-f7dd-42ce-96c4-f70b5675671f} - C:\Program Files\Skyrock\Logotor\Logotor.exe (file missing)
O16 - DPF: {11111111-1111-1111-1111-111191113457} - file://c:\ied_s7.cab
O16 - DPF: {11111111-1111-1111-1111-511111193457} - file://c:\x.cab
O16 - DPF: {11111111-1111-1111-1111-511111193458} - file://c:\x.cab
O16 - DPF: {88C51E90-8E9C-4C96-8A45-574D88B63FAF} - http://acceso.masminutos.com/aplicacion.cab 
O21 - SSODL: SystemCheck2 - {54645654-2225-4455-44A1-9F4543D34545} - C:\WINDOWS\System32\vbsys2.dll (file missing)
O23 - Service: hpdj7600 - Unknown owner - C:\DOCUME~1\Elsa\LOCALS~1\Temp\hpdj7600.exe (file missing)


et tu cliques sur fix puis tu redémarre, si tu as toujours le problème: c'est repartit pour un tour ;)
Image

kickoff

Message par kickoff » 29 août 2005 17:34

oui j'ai encore le probleme lol alors voici la liste pour repartir

Logfile of HijackThis v1.99.1
Scan saved at 17:31:00, on 29/08/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Documents and Settings\Elsa\Mes documents\Telechargement\messagerie\msn plus\MsgPlus.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
c:\progra~1\intern~1\iexplore.exe
c:\progra~1\intern~1\iexplore.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Elsa\Mes documents\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.zjofpfrqoebegbsrr.com/VRNEdW ... LLlZOg.cgi
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ezdbskftexqbhazybvlxytkpw.us ... euUIc.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = c:\WINDOWS\PCHealth\HelpCtr\System\panels\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - _{08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file)
R3 - URLSearchHook: (no name) - _{CE000994-A58C-4441-8938-744CD72AB27F} - (no file)
F1 - win.ini: run=c:\windows\system32\runfile.exe
O2 - BHO: (no name) - {BFA97ABA-8D59-C87A-93BC-ACB5A649C614} - C:\DOCUME~1\Elsa\APPLIC~1\idleboob\save upload.exe
O4 - HKLM\..\Run: [Windows Compliant] shogid.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [External Dependencies] External.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Documents and Settings\Elsa\Mes documents\Telechargement\messagerie\msn plus\MsgPlus.exe"
O4 - HKLM\..\Run: [Bonetoolcoalbat] C:\Documents and Settings\All Users\Application Data\4 ONCE BONE TOOL\Active Warn.exe
O4 - HKLM\..\RunServices: [Windows Compliant] shogid.exe
O4 - HKLM\..\RunServices: [External Dependencies] External.exe
O4 - HKCU\..\Run: [Windows Compliant] shogid.exe
O4 - HKCU\..\Run: [Draw Tick] C:\DOCUME~1\Elsa\APPLIC~1\CHINST~1\type program.exe
O4 - Global Startup: Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = ?
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/ms ... b31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?LinkId= ... lcid=0x409
O16 - DPF: {23232323-2323-2323-2323-232323291122} - file://c:\x.cab
O16 - DPF: {402EE96E-2CE8-482D-ADA5-CECEEA07E16D} (TurnTool Scene) - http://www.turntool.com/ViewerInstall.exe
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/Clien ... /setup.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by18fd.bay18.hotmail.msn.com/res ... nPUpld.cab
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://jeuxvideo.wanadoo.fr/components/Metaboli.ocx
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Me ... b28578.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMe ... loader.cab
O18 - Protocol: bw+0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw+0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwb0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwb0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwc0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwc0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwd0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwd0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwe0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwe0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwf0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwf0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwg0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwg0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwh0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwh0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwi0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwi0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwj0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwj0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwk0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwk0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwl0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwl0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwm0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwm0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwn0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwn0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwo0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwo0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwp0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwp0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwq0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwq0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwr0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwr0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bws0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bws0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwt0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwt0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwu0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwu0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwv0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwv0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bww0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bww0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwx0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwx0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwy0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwy0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwz0 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwz0s - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {ACEF8C21-A49D-4803-A942-C4A56B037BC9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe

Avatar du membre
Eblis
[-_VIP_-]
Messages : 1302
Enregistré le : 26 oct. 2003 13:15
Localisation : 92
Contact :

Message par Eblis » 29 août 2005 19:30

Code : Tout sélectionner

R3 - URLSearchHook: (no name) - _{08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file)

R3 - URLSearchHook: (no name) - _{CE000994-A58C-4441-8938-744CD72AB27F} - (no file)
F1 - win.ini: run=c:\windows\system32\runfile.exe
O2 - BHO: (no name) - {BFA97ABA-8D59-C87A-93BC-ACB5A649C614} - C:\DOCUME~1\Elsa\APPLIC~1\idleboob\save upload.exe
O4 - HKLM\..\Run: [Windows Compliant] shogid.exe
O4 - HKLM\..\Run: [External Dependencies] External.exe
O4 - HKLM\..\Run: [Bonetoolcoalbat] C:\Documents and Settings\All Users\Application Data\4 ONCE BONE TOOL\Active Warn.exe
O4 - HKLM\..\RunServices: [Windows Compliant] shogid.exe
O4 - HKLM\..\RunServices: [External Dependencies] External.exe
O4 - HKCU\..\Run: [Windows Compliant] shogid.exe
O4 - HKCU\..\Run: [Draw Tick] C:\DOCUME~1\Elsa\APPLIC~1\CHINST~1\type program.exe     
O16 - DPF: {23232323-2323-2323-2323-232323291122} - file://c:\x.cab
O16 - DPF: {402EE96E-2CE8-482D-ADA5-CECEEA07E16D} (TurnTool Scene) - http://www.turntool.com/ViewerInstall.exe
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/ClientInstall/9.07.0000/OCI/setup.exe
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://jeuxvideo.wanadoo.fr/components/Metaboli.ocx
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll


Tu rajoutes à ça, la tonne de O18 - Protocol:
Quoi qu'il arrive, ça ne peut que faire du bien à ton ordi tout ça ;)
Image

kickoff
Messages : 133
Enregistré le : 30 août 2005 10:25

Message par kickoff » 30 août 2005 13:11

jai fait ce que tu m'a di et le message est encore la lol mais j'ai l'impression que l'ordi va mieux lol je te donne le log a nouveau si tu veux

Logfile of HijackThis v1.99.1
Scan saved at 13:07:13, on 30/08/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Documents and Settings\Elsa\Mes documents\Telechargement\messagerie\msn plus\MsgPlus.exe
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Elsa\Mes documents\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.zjofpfrqoebegbsrr.com/VRNEdW ... LLlZOg.cgi
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ezdbskftexqbhazybvlxytkpw.us ... euUIc.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = c:\WINDOWS\PCHealth\HelpCtr\System\panels\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Documents and Settings\Elsa\Mes documents\Telechargement\messagerie\msn plus\MsgPlus.exe"
O4 - Global Startup: Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = ?
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/ms ... b31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?LinkId= ... lcid=0x409
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by18fd.bay18.hotmail.msn.com/res ... nPUpld.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Me ... b28578.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMe ... loader.cab
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
Image
Image
Image
Image
Image
Image
Image

Avatar du membre
Eblis
[-_VIP_-]
Messages : 1302
Enregistré le : 26 oct. 2003 13:15
Localisation : 92
Contact :

Message par Eblis » 30 août 2005 14:49

Bon maintenant c'est clean, en théorie: oui, tu devrais voir la différence.
Maintenant tu vas prendre spybot: mode/avancé, outils, démarrage du system et tu me fais une capture d'écran (touche Imp écr Syst de ton clavier, puis collé dans paint).
Image

Répondre