Virus,trojan et autres adaware

Virus,trojan et autres adaware - Sécurité - Virus

Recherche Recherche
Règles Règles
Aide Aide

TomsGuide.com : 700 000 inscrits répondent à toutes vos questions high-tech et informatique.
Pour obtenir de l'aide, inscrivez-vous gratuitement !

Se connecter | Inscription

Mot : Pseudo : Filtrer
Bas de page
Auteur	Sujet : Virus,trojan et autres adaware

Mc Bernik

Profil : IDNaute

Plus d'informations

08-03-2007 à 21:23:29

Bonsoir à tous

Voila le problème: Je voulais regarder real-bayern sur TVants mais lorsque la chaine fut capter, avast me signala ilico trojan,virus et autres ad-aware.Je met un rapport hijackthis; merci d'y jeter un coup d'oeil

Logfile of HijackThis v1.99.1
Scan saved at 22:31:23, on 06/03/2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\spoolsv.exe
d:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
D:\Program Files\Alwil Software\Avast4\ashServ.exe
D:\WINDOWS\System32\drivers\CDAC11BA.EXE
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\System32\atiptaxx.exe
D:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
D:\WINDOWS\System32\LVCOMSX.EXE
D:\Program Files\Logitech\Video\CameraAssistant.exe
D:\WINDOWS\System32\ElkCtrl.exe
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\Program Files\Logitech\MouseWare\system\em_exec.exe
D:\Program Files\MSN Messenger\usnsvc.exe
D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
D:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
D:\WINDOWS\System32\ffudf.exe
D:\WINDOWS\System32\rundll32.exe
C:\WINDOWS\inf\mssys.exe
D:\WINDOWS\imapi.exe
D:\WINDOWS\System32\RUNDLL32.exe
D:\WINDOWS\SYSTEM32\RUNDLL2000.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\Program Files\Alwil Software\Avast4\setup\avast.setup
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\Program Files\Mozilla Firefox\firefox.exe
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\WINDOWS\system32\NOTEPAD.EXE
D:\Documents and Settings\mohamed\Bureau\HijackThis.exe
D:\WINDOWS\system32\NOTEPAD.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://xyz.union123.com/index.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://xyz.union123.com/index.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - D:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
F2 - REG:system.ini: UserInit=D:\WINDOWS\system32\userinit.exe,rundll32.exe start,userinit.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - D:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: AdPopup - {11F09AFD-75AD-4E51-AB43-E09E9351CE16} - D:\Program Files\Fichiers communs\CPUSH\cpush.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - D:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - D:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O4 - HKLM\..\Run: [ATIPTA] atiptaxx.exe
O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [LVCOMSX] D:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] D:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] D:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] D:\WINDOWS\System32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [WinampAgent] "D:\Program Files\Winamp\Winampa.exe"
O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [DAEMON Tools] "D:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [System] D:\Program Files\Fichiers communs\System\Updaterun.exe
O4 - HKCU\..\Run: [LDM] \Program\
O4 - HKCU\..\Run: [updateMgr] "D:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: WanSo.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra button: ²Æ¸»Í¨ - {C1F0024B-8278-4999-B7E6-2718426D9FE6} - D:\Program Files\²Æ¸»Í¨\caif.dll (HKCU)
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.ya [...] urrent.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O18 - Protocol: bw+0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: msctl32.dll - msctl32.dll (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - D:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - D:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - D:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - D:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - d:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe

Thanks for you help

Liens sponsorisés

Inscrivez-vous ou connectez-vous pour masquer ceci.

Mc Bernik

Profil : IDNaute

Plus d'informations

09-03-2007 à 13:53:20

Masquer

SVP il me faut de l'aide
MERCI

Angeldark

Profil : Helper

Plus d'informations

09-03-2007 à 14:06:50

Masquer

Bonjour,

C'est une infection chinoise

Télécharge Combofix
Enregistre le sur ton bureau.

Double clique sur ComboFix.bat
A la fin du scan, un rapport sera généré, enregistre le sur ton bureau.

Poste les rapports :
* Combofix
* Hijackthis

Note : Ne clique pas sur la fenêtre Combofix pendant qu'il est en train de scanner. Cela pourrait le faire planter.

---------------
Prévention & Protection||Vous m'aimez ? Cliquez :o

Mc Bernik

Profil : IDNaute

Plus d'informations

09-03-2007 à 23:03:24

Masquer

Salut

Desolé, mais j'arrive pas a faire le rapport avec Combofix.
Si je double clique sur le raccourci du bureau, sa redémarre l'ordi, et si je double clique sur Combofix.bat, sa ne reagit pas..........
Que faire ????

Merci

Mc Bernik

Profil : IDNaute

Plus d'informations

10-03-2007 à 12:05:55

Masquer

Bonjour

Je n'ai réussi qu'a ne faire que le rapport hijackthis donc le voila

Logfile of HijackThis v1.99.1
Scan saved at 12:03, on 07-03-09
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\Explorer.exe
D:\WINDOWS\system32\spoolsv.exe
d:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
D:\Program Files\Alwil Software\Avast4\ashServ.exe
D:\WINDOWS\System32\drivers\CDAC11BA.EXE
D:\WINDOWS\system32\netevent.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\System32\ffudf.exe
D:\WINDOWS\System32\mslogin.exe
D:\WINDOWS\System32\svcmost.exe
D:\WINDOWS\System32\scvhost.exe
D:\WINDOWS\System32\atiptaxx.exe
D:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
D:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
D:\WINDOWS\System32\LVCOMSX.EXE
D:\Program Files\Logitech\Video\CameraAssistant.exe
D:\WINDOWS\System32\ElkCtrl.exe
D:\Program Files\iTunes\iTunesHelper.exe
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\Program Files\Logitech\MouseWare\system\em_exec.exe
D:\WINDOWS\system32\RunDll32.exe
D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
D:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
D:\Program Files\MSN Messenger\usnsvc.exe
D:\Documents and Settings\mohamed\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.kzdh.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ent.sina.union123.com/indexx.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - D:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
F2 - REG:system.ini: Shell=Explorer.exe realshed.exe
F2 - REG:system.ini: UserInit=D:\WINDOWS\system32\userinit.exe,rundll32.exe start,userinit.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - D:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: mslogin linker - {74BC093A-540E-4340-897B-4653A8EB2F47} - D:\WINDOWS\System32\mslink\mslink.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - D:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - D:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O4 - HKLM\..\Run: [ATIPTA] atiptaxx.exe
O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [LVCOMSX] D:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] D:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] D:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] D:\WINDOWS\System32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [WinampAgent] "D:\Program Files\Winamp\Winampa.exe"
O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [DAEMON Tools] "D:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [System] D:\Program Files\Fichiers communs\System\Updaterun.exe
O4 - HKCU\..\Run: [LDM] \Program\
O4 - HKCU\..\Run: [updateMgr] "D:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: WanSo.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.ya [...] urrent.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O18 - Protocol: bw+0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {057365C9-242E-4E1A-95CA-373B85162BDE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: msctl32.dll - msctl32.dll (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - D:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - D:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - D:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - D:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - d:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Net Event - Unknown owner - D:\WINDOWS\system32\netevent.exe
O23 - Service: Windows Login - Unknown owner - D:\WINDOWS\System32\mslogin.exe

Merci

PS:A noter que mon ordinateur redémarre tout seule ........

Angeldark

Profil : Helper

Plus d'informations

10-03-2007 à 12:11:56

Masquer

Re,

Bon supprime ta version Combofix.

Télécharge combofix.exe (par sUBs) sur ton Bureau
Double clique combofix.exe.
Tape sur la touche Y (Yes) pour démarrer le scan.
Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

NOTE : Le rapport se trouve également ici : C:\Combofix.txt

---------------
Prévention & Protection||Vous m'aimez ? Cliquez :o

Mc Bernik

Profil : IDNaute

Plus d'informations

10-03-2007 à 13:03:06

Masquer

RE

Desolé, mais l'ordi redémarre......faudra me dire si c'est normal ou pas

Sinon je met tout les doc txt:

ComboFix:
"mohamed" - 07-03-09 12:21:21 Service Pack 1
ComboFix 07-03-09.3 - Running from: "D:\Documents and Settings\mohamed\Bureau"

borlander_file:
D:\WINDOWS\system32\albus.dat
D:\WINDOWS\system32\albus.dll
D:\WINDOWS\system32\almms.dat
D:\WINDOWS\system32\alpst.dat
D:\WINDOWS\system32\alsmt.exe
D:\WINDOWS\system32\alstd.dat
D:\WINDOWS\system32\Drivers\albus.sys
D:\WINDOWS\system32\mms.exe
D:\WINDOWS\system32\mms.rph
D:\WINDOWS\system32\std.ini
D:\WINDOWS\system32\stdd.ini
D:\WINDOWS\system32\stdsver.dll
D:\WINDOWS\system32\stdup.dll
D:\WINDOWS\system32\updadini.ini
D:\WINDOWS\system32\updateSC.exe
D:\WINDOWS\system32\updstdex.ini
D:\WINDOWS\system32\updstdup.ini
D:\WINDOWS\system32\win_0ep.exe
D:\WINDOWS\system32\win_55q.dll
D:\~de*.tmp
D:\WINDOWS\system32\qwertybot.exe

borlander_folder:
D:\Program Files\MMSASSIST
D:\WINDOWS\system32\STDCACHE
D:\WINDOWS\system32\updadini
D:\WINDOWS\system32\UPDSTDEX
D:\WINDOWS\system32\updstdup
D:\WINDOWS\Temp\insmms5
D:\Program Files\vision
D:\WINDOWS\Temp\insshell

net_svc:
EventSystem
Ias
Iprip
Irmon
Netman
Ntmssvc
Nwsapagent
Rasauto
Rasman
Remoteaccess
SENS
Sharedaccess
Tapisrv
WZCSVC
Ip6FwHlp
6to4
AppMgmt
AudioSrv
BITS
Browser
CryptSvc
DHCP
DMServer
ERSvc
FastUserswitchingCompatibility
helpsvc
HidServ
LanmanServer
LanmanWorkstation
Messenger
Nla
NWCWorkstation
Sacsvr
Schedule
Seclogon
ShellHWDetection
SRService
TermService
Themes
TrkSvr
TrkWks
uploadmgr
W32Time
winmgmt
WmdmPmSN
WmdmPmSp
Wmi
wscsvc
wuauserv

whitelegacy:
\LEGACY_AFD
\LEGACY_ALG
\LEGACY_AMON
\LEGACY_ANTIVIRSCHEDULER
\LEGACY_ANTIVIRSERVICE
\LEGACY_APPMGMT
\LEGACY_AUDIOSRV
\LEGACY_AVG_ANTI-ROOTKIT
\LEGACY_AVG_ANTI-ROOTKIT
\LEGACY_AVG_CLEAN_DRIVER
\LEGACY_AVG_CLEAN_DRIVER
\LEGACY_AVGNTDD
\LEGACY_AVGNTMGR
\LEGACY_AVP
\LEGACY_AVWUPSRV
\LEGACY_AVZ
\LEGACY_AVZ
\LEGACY_BDSS
\LEGACY_BEEP
\LEGACY_BITS
\LEGACY_BROWSER
\LEGACY_BROWSER
\LEGACY_CDFS
\LEGACY_COMSYSAPP
\LEGACY_CRYPTSVC
\LEGACY_DCOMLAUNCH
\LEGACY_DHCP
\LEGACY_DMADMIN
\LEGACY_DMBOOT
\LEGACY_DMLOAD
\LEGACY_DMSERVER
\LEGACY_DNSCACHE
\LEGACY_ERSVC
\LEGACY_EVENTSYSTEM
\LEGACY_F-SECURE_BLACKLIGHT_SENSOR
\LEGACY_FASTFAT
\LEGACY_FASTUSERSWITCHINGCOMPATIBILITY
\LEGACY_FIPS
\LEGACY_FLTMGR
\LEGACY_FS_REC
\LEGACY_FSBL-STANDALONE
\LEGACY_GMER
\LEGACY_GPC
\LEGACY_HELPSVC
\LEGACY_HGFS
\LEGACY_HTTP
\LEGACY_IMAPISERVICE
\LEGACY_INTERACTIVELOGON
\LEGACY_IPNAT
\LEGACY_IPSEC
\LEGACY_KL1
\LEGACY_KLIF
\LEGACY_KSECDD
\LEGACY_LANMANSERVER
\LEGACY_LANMANWORKSTATION
\LEGACY_LMHOSTS
\LEGACY_MNMDD
\LEGACY_MOUNTMGR
\LEGACY_MRXDAV
\LEGACY_MRXSMB
\LEGACY_MSDTC
\LEGACY_MSFS
\LEGACY_MSISERVER
\LEGACY_MUP
\LEGACY_NDIS
\LEGACY_NDISTAPI
\LEGACY_NDISUIO
\LEGACY_NDPROXY
\LEGACY_NETBIOS
\LEGACY_NETBT
\LEGACY_NETDDE
\LEGACY_NETDDEDSDM
\LEGACY_NETMAN
\LEGACY_NLA
\LEGACY_NOD32KRN
\LEGACY_NPFS
\LEGACY_NTFS
\LEGACY_NULL
\LEGACY_PARTMGR
\LEGACY_PARVDM
\LEGACY_POLICYAGENT
\LEGACY_PROCEXP
\LEGACY_PROCEXP100
\LEGACY_PROCEXP100
\LEGACY_PROCEXP90
\LEGACY_PROCEXP90
\LEGACY_PROTECTEDSTORAGE
\LEGACY_PSEXESVC
\LEGACY_RASACD
\LEGACY_RASMAN
\LEGACY_RDBSS
\LEGACY_RDPCDD
\LEGACY_RDPNP
\LEGACY_REMOTEREGISTRY
\LEGACY_RKREVEAL110
\LEGACY_RPCSS
\LEGACY_RRRSPY
\LEGACY_RRSPY
\LEGACY_RRSPY
\LEGACY_SAMSS
\LEGACY_SAVRT
\LEGACY_SAVRTPEL
\LEGACY_SBSERVICE
\LEGACY_SCARDDRV
\LEGACY_SCARDSVR
\LEGACY_SCHEDULE
\LEGACY_SECLOGON
\LEGACY_SENS
\LEGACY_SHAREDACCESS
\LEGACY_SHELLHWDETECTION
\LEGACY_SPBBCDRV
\LEGACY_SPOOLER
\LEGACY_SPTD
\LEGACY_SPUPDSVC
\LEGACY_SR
\LEGACY_SRSERVICE
\LEGACY_SRV
\LEGACY_SSDPSRV
\LEGACY_STISVC
\LEGACY_SYMFW
\LEGACY_SYMIDS
\LEGACY_SYMIDSCO
\LEGACY_SYMLCBRD
\LEGACY_SYMNDIS
\LEGACY_SYMREDRV
\LEGACY_SYMTDI
\LEGACY_SYSMONLOG
\LEGACY_TAPISRV
\LEGACY_TCPIP
\LEGACY_TERMSERVICE
\LEGACY_THEMES
\LEGACY_TRKWKS
\LEGACY_UNHACKMEDRV
\LEGACY_UNLOCKERDRIVER5
\LEGACY_UPDATESERVER
\LEGACY_UPS
\LEGACY_VGA
\LEGACY_VGASAVE
\LEGACY_VMTOOLS
\LEGACY_VOLSNAP
\LEGACY_VSDATANT
\LEGACY_W32TIME
\LEGACY_WANARP
\LEGACY_WEBCLIENT
\LEGACY_WINMGMT
\LEGACY_WS2IFSL
\LEGACY_WUAUSERV
\LEGACY_WZCSVC
\LEGACY_XCOMM
\LEGACY_XMLPROV

Désolé si c'est aucun de ces fichiers mais c'est les seules que j'ai trouvé

Angeldark

Profil : Helper

Plus d'informations

10-03-2007 à 13:11:48

Masquer

Dans l'actualité

Trojan Remover 4.9.6

Les pires virus de 2007

Quand les virus font voeux de chasteté

Britney Spears et Paris Hilton menacent votre PC

Les téléchargements

Ressources relatives

Albums

Les derniers dossiers

Le Top des applications en ligne

Quel récepteur TNT choisir ?

Appareil photo numérique : le meilleur de 2008

Comment sauvegarder toutes vos données ?

Les offres partenaires