Tom's Guide > Forum > Sécurité - Virus > Virus MSN (que fais ta tof sur ce site).

Virus MSN (que fais ta tof sur ce site).

Forum Sécurité - Virus : Virus MSN (que fais ta tof sur ce site).

TomsGuide.com : 800 000 inscrits répondent à toutes vos questions high-tech et informatique. Pour obtenir de l'aide, inscrivez-vous gratuitement !
Créer un nouveau sujet Répondre
Mot :    Pseudo :           
 
florine59960   16-03-2008 à 12:29:08

Bonjour !

Voilà, je crée mon propre sujet puisque ça semble si important^^
Pourrais je avoir de l'aide en ce qui concerne ce virus afin de pouvoir lui dire au revoir une bonne fois pour toute ;) Merci .

Répondre
Liens sponsorisés
Inscrivez-vous ou connectez-vous pour masquer ceci.
Angeldark   16-03-2008 à 13:24:46
- 0 +

Bonjour,

Télécharge MSNFix.zip (!aur3n7) sur ton Bureau.
Décompresse-le sur ton bureau (Clique-Droit/Extraire tout).

Ouvre le dossier MSNFix puis double-clique sur MSNFix.bat.
- Exécute l'option R.
-- Si l'infection est détectée, presse une touche pour lancer le nettoyage.

Si une erreur de suppression est détectée un message s'affichera demandant de redémarrer l'ordinateur afin de terminer les opérations.
Dans ce cas il suffit de redémarrer l'ordinateur manuellement.

Poste le rapport situé dans le dossier MSNFix.
Le nom du rapport correspond au moment de sa création : date_heure.log

------------------------------ Prévention & Protection||Vous m'aimez ? Cliquez :o
 Répondre à Angeldark
florine59960   16-03-2008 à 18:18:15
- 0 +

Re,

Voilà ce que j'ai, est ce que mon anti virus aurait fait son travail ?!

MSNFix 1.685

C:\Documents and Settings\HP_Administrateur\Bureau\MSNFix\MSNFix
Fix exécuté le 16/03/2008 - 18:11:54,01 By HP_Administrateur
mode normal

************************ Recherche les fichiers présents

Aucun Fichier trouvé

************************ Recherche les dossiers présents

Aucun dossier trouvé


************************ Fichiers suspects

Aucun Fichier trouvé


************************ HKLM\...\Winlogon\Userinit

Userinit = C:\WINDOWS\system32\userinit.exe,C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp\services.exe


------------------------------------------------------------------------
Auteur : !aur3n7 Contact: http://changelog.fr
------------------------------------------------------------------------

--------------------------------------------- END ---------------------------------------------



Répondre à florine59960
Angeldark   16-03-2008 à 19:48:43
- 0 +

Re,

Télécharge puis installe Hijackthis (Trend Micro).
Poste ensuite un rapport dans ta prochaine réponse.
AIDE : Comment utiliser Hijackthis v2.0.2

------------------------------ Prévention & Protection||Vous m'aimez ? Cliquez :o
 Répondre à Angeldark
g0remagedd0n   16-03-2008 à 20:54:26
- 0 +

svp quelqu'un peut-il aller m'aider, j'ai crée un topic
merci d'avance

Répondre à g0remagedd0n
florine59960   16-03-2008 à 22:31:42
- 0 +

Voilà ! =)


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:30:46, on 16/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\arservice.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NavNT\defwatch.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\NavNT\rtvscan.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\ARPWRMSG.EXE
C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\NavNT\vptray.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Wanadoo\taskbaricon.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\WINDOWS\system32\dllhost.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\WINDOWS\system32\MsgSys.EXE
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\System32\svchost.exe
c:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.aliceadsl.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp\services.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [Reminder] "C:\Windows\Creator\Remind_XP.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [vptray] C:\Program Files\NavNT\vptray.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\Program Files\Wanadoo\taskbaricon.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - Startup: PowerReg Scheduler.exe
O4 - Global Startup: Barre d'état système d'ATI CATALYST.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?7127fe19836a4129ba3a4a9afad64202
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?7127fe19836a4129ba3a4a9afad64202
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O9 - Extra button: Alice ADSL - {AD483C61-35FE-466B-BB6D-B892E3B9EE44} - http://www.aliceadsl.fr (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.aliceadsl.fr
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/window [...] 5221928803
O18 - Protocol: bw+0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: DefWatch - Symantec Corporation - C:\Program Files\NavNT\defwatch.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Norton AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\Program Files\NavNT\rtvscan.exe

--
End of file - 22956 bytes


Bonne fin de soirée .

Répondre à florine59960
Angeldark   17-03-2008 à 13:19:42
- 0 +

Re,

Désactive tes protections résidentes (antivirus, Spybot...) !

  • Télécharge Combofix (sUBs) sur ton Bureau.
  • Double clique sur combofix.exe afin de le lancer.
  • Tape sur la touche 1 (Yes) pour démarrer le scan.
  • Lorsque le scan sera complété, un rapport apparaîtra. Poste ce rapport dans ta prochaine réponse.

------------------------------ Prévention & Protection||Vous m'aimez ? Cliquez :o
 Répondre à Angeldark
florine59960   17-03-2008 à 17:42:00
- 0 +

Hey !

Voilà, j'ai fée ce que tu m'as indiqué .
Voici le rapport .

ComboFix 08-03-14.4 - HP_Administrateur 2008-03-17 17:20:19.2 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.484 [GMT 1:00]
Endroit: C:\Documents and Settings\HP_Administrateur\Bureau\ComboFix.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Previous Run -------
.
C:\Program Files\inetget2
C:\Program Files\JavaCore
C:\Program Files\JavaCore\JavaCore.MSNFix
D:\Autorun.inf

.
((((((((((((((((((((((((((((( Fichiers créés 2008-02-17 to 2008-03-17 ))))))))))))))))))))))))))))))))))))
.

2008-03-16 22:29 . 2008-03-16 22:29 <REP> d-------- C:\Program Files\Trend Micro
2008-03-13 22:52 . 2008-03-13 22:52 <REP> d-------- C:\Program Files\Avira
2008-03-13 22:52 . 2008-03-13 22:52 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Avira
2008-03-06 22:21 . 2008-03-06 22:21 244 --ah----- C:\sqmnoopt10.sqm
2008-03-06 22:21 . 2008-03-06 22:21 232 --ah----- C:\sqmdata10.sqm
2008-03-05 21:01 . 2008-03-05 21:01 <REP> d-------- C:\WINDOWS\popup
2008-03-05 21:01 . 2008-03-05 21:01 <REP> d-------- C:\WINDOWS\Groups
2008-03-05 21:01 . 2008-03-05 21:01 <REP> d-------- C:\WINDOWS\Favorites

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-17 16:24 --------- d-----w C:\Program Files\Wanadoo
2008-03-14 23:00 17,848 ----a-w C:\Documents and Settings\HP_Administrateur\Application Data\wklnhst.dat
2008-02-29 17:41 --------- d-----w C:\Program Files\MySpace
2008-01-02 10:44 76,744 ----a-w C:\Documents and Settings\maman\Application Data\GDIPFONTCACHEV1.DAT
2007-11-24 18:23 312 ----a-w C:\Documents and Settings\maman\Application Data\wklnhst.dat
2006-09-07 14:12 0 ----a-w C:\Documents and Settings\Zif\Application Data\wklnhst.dat
2006-04-24 09:18 74,272 ----a-w C:\Documents and Settings\HP_Administrateur\Application Data\GDIPFONTCACHEV1.DAT
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LDM"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2006-10-06 13:30 36864]
"LogitechSoftwareUpdate"="C:\Program Files\Logitech\Video\ManifestEngine.exe" [2005-06-08 14:44 196608]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-09-18 18:49 68856]
"WOOKIT"="C:\PROGRA~1\Wanadoo\Shell.exe" [2004-08-23 13:50 122880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 20:34 64512]
"ftutil2"="ftutil2.dll" [2004-06-07 21:05 106496 C:\WINDOWS\system32\ftutil2.dll]
"AlwaysReady Power Message APP"="ARPWRMSG.EXE" [2005-08-03 02:15 77312 C:\WINDOWS\arpwrmsg.exe]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe" [2005-08-27 01:14 36975]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 17:04 52736]
"RTHDCPL"="RTHDCPL.EXE" [2005-10-15 01:51 14864384 C:\WINDOWS\RTHDCPL.EXE]
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2005-10-12 19:30 139264]
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [2005-10-02 08:13 57344]
"HPHUPD08"="c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe" [2005-06-02 07:35 49152]
"KBD"="C:\HP\KBD\KBD.EXE" [2005-02-03 00:44 61440]
"Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [2005-07-22 22:14 237568]
"PCDrProfiler"="" []
"PS2"="C:\WINDOWS\system32\ps2.exe" [2004-10-25 23:17 90112]
"Reminder"="C:\Windows\Creator\Remind_XP.exe" [2004-12-14 02:23 663552]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPwuSchd2.exe" [2005-05-12 06:12 49152]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2006-03-26 11:22 98304]
"LVCOMSX"="C:\WINDOWS\system32\LVCOMSX.EXE" [2005-07-19 16:32 221184]
"LogitechVideoRepair"="C:\Program Files\Logitech\Video\ISStart.exe" [2005-06-08 15:24 458752]
"LogitechVideoTray"="C:\Program Files\Logitech\Video\LogiTray.exe" [2005-06-08 15:14 217088]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2005-01-02 15:34 180269]
"vptray"="C:\Program Files\NavNT\vptray.exe" [2001-09-26 17:06 73728]
"WOOWATCH"="C:\PROGRA~1\Wanadoo\Watch.exe" [2004-08-23 13:49 20480]
"ISUSPM Startup"="C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 23:50 221184]
"ISUSScheduler"="C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2004-07-27 23:50 81920]
"WOOTASKBARICON"="C:\Program Files\Wanadoo\taskbaricon.exe" [2004-10-05 16:00 61440]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-03-13 22:56 249896]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 nwprovau

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\WINDOWS\\system32\\sessmgr.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"C:\\Program Files\\MSN Messenger\\livecall.exe"=

R3 3xHybrid;3xHybrid service;C:\WINDOWS\system32\DRIVERS\3xHybrid.sys [2005-10-03 21:57]
R3 usbstor;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-10 20:00]
S3 cyg_bus;Cygnal USB Composite Device driver (WDM);C:\WINDOWS\system32\DRIVERS\cyg_bus.sys [2003-10-16 10:43]
S3 cyg_ser;CP2101 USB to UART Bridge Controller Drivers;C:\WINDOWS\system32\DRIVERS\cyg_ser.sys [2003-10-16 10:44]
S3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 21:58]
S3 WN5301;LIteon Wireless PCI Network Adapter Service;C:\WINDOWS\system32\DRIVERS\wn5301.sys [2005-10-05 18:44]
S3 WN5401;Liteon Wireless LAN PCI 802.11 a/b/g adapter WN5401A;C:\WINDOWS\system32\DRIVERS\wn5401.sys [2005-01-07 01:08]

.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-02-20 20:55:02 C:\WINDOWS\Tasks\HPCeeSchedule.job"
- C:\Program Files\Hewlett-Packard\SDP\Ceement\HPCEE.exe
"2008-03-17 15:44:02 C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job"


=)

Répondre à florine59960
Angeldark   17-03-2008 à 19:27:03
- 0 +

Reposte un rapport Hijackthis.

------------------------------ Prévention & Protection||Vous m'aimez ? Cliquez :o
 Répondre à Angeldark
florine59960   18-03-2008 à 13:07:23
- 0 +

Je ne sais pas où le trouver ...

Répondre à florine59960
caramelgirl974   18-03-2008 à 13:32:43
- 0 +

salut!!!...Angel Dark est ce que tu me m'aider voilà les differents rapports que j'ai effectué avec ces logiciels:


ComboFix 08-03-17.1 - Tardivel Anne Sophie 2008-03-18 15:20:44.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.604 [GMT 3:00]
Endroit: C:\Documents and Settings\Tardivel Anne Sophie\Bureau\ComboFix.exe
* Création d'un nouveau point de restauration

[color=red]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/color]
.

((((((((((((((((((((((((((((( Fichiers créés 2008-02-18 to 2008-03-18 ))))))))))))))))))))))))))))))))))))
.

2008-03-18 14:35 . 2008-03-18 14:43 <REP> d-------- C:\Lop SD
2008-03-18 12:08 . 2008-03-18 12:08 <REP> d-------- C:\Program Files\Trend Micro
2008-03-18 11:01 . 2008-03-18 11:01 <REP> d-------- C:\WINDOWS\system32\GroupPolicy
2008-03-18 11:00 . 2008-03-18 11:01 <REP> d-------- C:\Program Files\Hitman Pro
2008-03-17 20:39 . 2008-03-17 20:39 <REP> d-------- C:\Program Files\Spybot - Search & Destroy
2008-03-17 20:39 . 2008-03-17 21:24 <REP> d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy
2008-03-17 18:50 . 2008-03-17 20:31 <REP> d-------- C:\Program Files\a-squared Free
2008-03-17 17:10 . 2008-03-17 17:10 0 --a------ C:\WINDOWS\system32\real.MSNFix
2008-03-17 14:59 . 2008-03-17 14:59 <REP> d-------- C:\Program Files\File Blah Nurb
2008-03-17 14:59 . 2008-03-17 15:00 <REP> d-------- C:\Documents and Settings\Tardivel Anne Sophie\Application Data\File Blah Nurb
2008-03-17 14:59 . 2008-03-17 14:59 <REP> d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\file joy proc deaf
2008-03-17 14:58 . 2008-03-17 14:58 <REP> d-------- C:\Program Files\Circle Developement
2008-03-17 13:17 . 2008-03-17 13:17 <REP> d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\Messenger Plus!
2008-03-16 21:04 . 2008-03-16 21:04 <REP> d-------- C:\Program Files\Adverts
2008-03-16 20:33 . 2007-12-15 23:37 59,728 --a------ C:\msimg32.dll
2008-03-16 17:35 . 2008-03-18 15:01 64,156 --------- C:\WINDOWS\system32\xczywez.exe
2008-03-16 17:35 . 2008-03-16 17:35 64,156 --a------ C:\WINDOWS\system32\uiwsvov.exe
2008-03-14 14:45 . 2008-03-14 14:54 <REP> d-------- C:\Program Files\Windows Live Safety Center
2008-02-26 21:30 . 2008-02-29 22:45 <REP> d-------- C:\Program Files\QuickTime
2008-02-26 21:30 . 2008-02-29 22:42 <REP> d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\QuickTime
2008-02-26 21:30 . 2002-01-23 18:10 86,016 --a------ C:\WINDOWS\unvise32qt.exe

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-17 14:54 22,328 ----a-w C:\WINDOWS\system32\drivers\PnkBstrK.sys
2008-03-17 14:53 107,832 ----a-w C:\WINDOWS\system32\PnkBstrB.exe
2008-03-17 14:19 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Application Data\Google Updater
2008-03-17 11:58 --------- d-----w C:\Program Files\Messenger Plus! Live
2008-03-16 17:50 --------- d-----w C:\Program Files\MSN Messenger
2008-03-16 17:49 --------- d-----w C:\Program Files\Windows Live
2008-03-16 17:48 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Application Data\WLInstaller
2008-03-16 17:32 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Application Data\WindowsLiveInstaller
2008-03-06 19:00 --------- d-----w C:\Program Files\Google
2008-03-05 14:10 66,872 ----a-w C:\WINDOWS\system32\PnkBstrA.exe
2008-03-05 13:58 22,328 ----a-w C:\Documents and Settings\Tardivel Anne Sophie\Application Data\PnkBstrK.sys
2008-02-28 18:39 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-02-11 09:11 --------- d-----w C:\Program Files\Winamp
2008-02-10 16:40 --------- d-----w C:\Documents and Settings\Tardivel Anne Sophie\Application Data\Winamp
2008-02-07 19:30 --------- d-----w C:\Program Files\Jasc Software Inc
2008-02-07 19:30 --------- d-----w C:\Documents and Settings\Tardivel Anne Sophie\Application Data\Jasc
2008-02-07 19:27 --------- d-----w C:\Program Files\Seagrand
2008-02-01 08:17 587,264 ----a-w C:\WINDOWS\WLXPGSS.SCR
2008-01-23 10:51 --------- d-----w C:\Program Files\Doom 3
2008-01-17 17:06 45,520 ----a-w C:\Documents and Settings\Tardivel Anne Sophie\Application Data\GDIPFONTCACHEV1.DAT
2008-01-17 15:24 77,824 ----a-w C:\WINDOWS\uinst001.exe
2007-03-31 16:04 56 --sh--r C:\WINDOWS\system32\245C7199E6.sys
2007-03-31 16:04 1,682 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-20 02:09 15360]
"GreatDeaf"="C:\DOCUME~1\TARDIV~2\APPLIC~1\FILEBL~1\less axis.exe" [2008-03-17 14:59 444416]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2007-08-31 16:46 1460560]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 19:24 1694208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-11-30 22:10 344064]
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [2004-12-01 01:25 32768]
"SoundMan"="SOUNDMAN.EXE" [2004-11-15 13:20 77824 C:\WINDOWS\SOUNDMAN.EXE]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 21:24 32768]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 12:50 155648]
"WorksFUD"="C:\Program Files\Microsoft Works\wkfud.exe" [2001-10-09 14:28 24576]
"Microsoft Works Portfolio"="C:\Program Files\Microsoft Works\WksSb.exe" [2001-10-05 17:53 331830]
"Microsoft Works Update Detection"="C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe" [2001-10-05 17:51 28738]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-07-02 21:38 185784]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 16:00 79224]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-11-12 06:51 8523776]
"nwiz"="nwiz.exe" [2007-11-12 06:51 1626112 C:\WINDOWS\system32\nwiz.exe]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-11-12 06:51 81920]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-20 02:10 110592 C:\WINDOWS\system32\bthprops.cpl]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2008-01-16 01:54 37376]
"Proc Deaf Delete Peak"="C:\Documents and Settings\All Users.WINDOWS\Application Data\file joy proc deaf\Settings Trans.exe" [2008-03-18 15:06 569344]
"Flash Media"="" []

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [2004-12-01 01:25 32768]

C:\Documents and Settings\All Users.WINDOWS\Menu D‚marrer\Programmes\D‚marrage\
Rappels du Calendrier Microsoft Works.lnk - C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe [2001-10-05 17:51:52 24633]
Windows Desktop Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe [2007-02-05 14:40:46 118784]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2007-02-05 14:39 294400]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Démarrer^Programmes^Démarrage^Ask Larousse Chambers.lnk]
path=C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage\Ask Larousse Chambers.lnk
backup=C:\WINDOWS\pss\Ask Larousse Chambers.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Démarrer^Programmes^Démarrage^ATI CATALYST System Tray.lnk]
path=C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage\ATI CATALYST System Tray.lnk
backup=C:\WINDOWS\pss\ATI CATALYST System Tray.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Démarrer^Programmes^Démarrage^BlueSoleil.lnk]
path=C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage\BlueSoleil.lnk
backup=C:\WINDOWS\pss\BlueSoleil.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk]
path=C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk
backup=C:\WINDOWS\pss\Microsoft Office.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Démarrer^Programmes^Démarrage^Outil de mise à jour Google.lnk]
path=C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage\Outil de mise à jour Google.lnk
backup=C:\WINDOWS\pss\Outil de mise à jour Google.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MediaDico]
--a------ 2002-01-09 17:53 197632 C:\Program Files\Micro Application\MediaDICO\LanceMediaDICO.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\oouserv6.exe]
--a------ 2003-06-30 09:00 256000 C:\Program Files\OFFICE ONE6.5\program\oouserv6.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shareaza]
--a------ 2007-02-05 03:05 4354048 C:\Program Files\Shareaza\Shareaza.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
--a------ 2007-06-21 20:39 68856 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Shareaza\\Shareaza.exe"=
"C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"=
"C:\\Program Files\\eMule\\eMule.exe"=
"C:\\Program Files\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"C:\\WINDOWS\\system32\\PnkBstrA.exe"=
"C:\\WINDOWS\\system32\\PnkBstrB.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\WINDOWS\\system32\\xczywez.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=

R3 SNPHV71;i-CAM VC USB Camera (MC-310);C:\WINDOWS\system32\DRIVERS\snphv71.sys [2002-11-29 11:51]
S2 nvcap;nVidia WDM Video Capture (universal);C:\WINDOWS\system32\DRIVERS\nvcap.sys [2006-03-21 14:27]
S3 ASPI;Advanced SCSI Programming Interface Driver;C:\WINDOWS\System32\DRIVERS\ASPI32.sys [2002-07-17 10:05]
S3 hitmanpro2;Hitman Pro 2 Driver;C:\Program Files\Hitman Pro\hitmanpro2.sys [2006-11-03 14:02]

.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-03-18 12:00:02 C:\WINDOWS\Tasks\AEFA2270910DDEAC.job"
- c:\docume~1\tardiv~2\applic~1\filebl~1\Idol Download Chic.exe
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-18 15:24:10
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
Temps d'accomplissement: 2008-03-18 15:25:32
ComboFix-quarantined-files.txt 2008-03-18 12:25:24
.
2008-03-12 16:05:05 --- E O F ---


-----------------------[ Lop S&D 4.0.8 XP/Vista ]----------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Tardivel Anne Sophie ] [ "C:\Lop SD" ]
[ 18/03/2008 | 14:43:23,73 ] [ PC : SOPHIE ]
[ MAJ : 17-03-2008 | 21:50 ]

-------------[ Listing des dossiers dans Application Data ]------------

[31/03/2007|18:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\.
[31/03/2007|18:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\..
[31/03/2007|18:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[31/03/2007|18:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[31/03/2007|18:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[30/03/2007|15:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[30/03/2007|15:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[28/03/2007|20:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bluetooth
[30/03/2007|15:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[26/03/2007|18:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[27/03/2007|17:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[30/03/2007|15:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[30/03/2007|15:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec

[17/03/2008|20:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\.
[17/03/2008|20:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\..
[09/11/2007|18:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\.zreglib
[20/11/2007|21:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Bluetooth
[31/03/2007|19:06] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\CyberLink
[31/03/2007|18:01] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\desktop.ini
[03/08/2007|17:16] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Emjysoft
[17/03/2008|14:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\file joy proc deaf
[07/01/2008|20:37] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
[17/03/2008|17:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google Updater
[17/03/2008|13:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Messenger Plus!
[10/10/2007|20:51] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[29/02/2008|22:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\QuickTime
[07/11/2007|11:57] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\SlySoft
[17/03/2008|21:24] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Spybot - Search & Destroy
[29/06/2007|20:57] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[16/03/2008|20:32] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WindowsLiveInstaller
[16/03/2008|20:48] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller

[26/03/2007|18:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[26/03/2007|18:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[26/03/2007|18:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[26/03/2007|17:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[31/03/2007|18:01] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\.
[31/03/2007|18:01] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\..
[31/03/2007|18:01] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\desktop.ini
[01/12/2007|12:23] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

[26/03/2007|17:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[26/03/2007|17:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[26/03/2007|17:14] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[31/03/2007|18:16] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\.
[31/03/2007|18:16] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\..
[10/10/2007|20:56] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft

[26/03/2007|17:17] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[26/03/2007|17:17] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[26/03/2007|17:14] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[10/10/2007|20:52] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\.
[10/10/2007|20:52] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\..
[10/10/2007|20:52] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Identities
[01/12/2007|12:22] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft

[17/03/2008|20:32] C:\DOCUME~1\TARDIV~2\APPLIC~1\.
[17/03/2008|20:32] C:\DOCUME~1\TARDIV~2\APPLIC~1\..
[21/02/2008|19:15] C:\DOCUME~1\TARDIV~2\APPLIC~1\Adobe
[31/03/2007|18:26] C:\DOCUME~1\TARDIV~2\APPLIC~1\ATI
[01/04/2007|15:15] C:\DOCUME~1\TARDIV~2\APPLIC~1\CyberLink
[31/03/2007|18:01] C:\DOCUME~1\TARDIV~2\APPLIC~1\desktop.ini
[17/03/2008|15:00] C:\DOCUME~1\TARDIV~2\APPLIC~1\File Blah Nurb
[17/01/2008|20:06] C:\DOCUME~1\TARDIV~2\APPLIC~1\GDIPFONTCACHEV1.DAT
[06/03/2008|22:01] C:\DOCUME~1\TARDIV~2\APPLIC~1\Google
[02/04/2007|11:11] C:\DOCUME~1\TARDIV~2\APPLIC~1\Help
[31/03/2007|18:26] C:\DOCUME~1\TARDIV~2\APPLIC~1\Identities
[30/10/2007|22:11] C:\DOCUME~1\TARDIV~2\APPLIC~1\InterTrust
[07/02/2008|22:30] C:\DOCUME~1\TARDIV~2\APPLIC~1\Jasc
[06/10/2007|08:31] C:\DOCUME~1\TARDIV~2\APPLIC~1\ma-config.com
[02/04/2007|11:28] C:\DOCUME~1\TARDIV~2\APPLIC~1\Macromedia
[17/03/2008|17:13] C:\DOCUME~1\TARDIV~2\APPLIC~1\Microsoft
[17/01/2008|19:08] C:\DOCUME~1\TARDIV~2\APPLIC~1\OFFICE One v6
[17/01/2008|19:04] C:\DOCUME~1\TARDIV~2\APPLIC~1\OFFICE One v6response.oon
[05/03/2008|16:58] C:\DOCUME~1\TARDIV~2\APPLIC~1\PnkBstrK.sys
[02/07/2007|21:39] C:\DOCUME~1\TARDIV~2\APPLIC~1\Real
[02/11/2007|22:21] C:\DOCUME~1\TARDIV~2\APPLIC~1\Sun
[17/01/2008|19:08] C:\DOCUME~1\TARDIV~2\APPLIC~1\sversion.ini
[19/12/2007|20:05] C:\DOCUME~1\TARDIV~2\APPLIC~1\vlc
[04/11/2007|13:19] C:\DOCUME~1\TARDIV~2\APPLIC~1\vmntoolbar
[11/01/2008|16:11] C:\DOCUME~1\TARDIV~2\APPLIC~1\Vso
[10/02/2008|19:40] C:\DOCUME~1\TARDIV~2\APPLIC~1\Winamp
[11/10/2007|10:15] C:\DOCUME~1\TARDIV~2\APPLIC~1\Windows Desktop Search
[17/07/2007|21:39] C:\DOCUME~1\TARDIV~2\APPLIC~1\WinRAR

[30/03/2007|15:38] C:\DOCUME~1\TARDIV~1\APPLIC~1\.
[30/03/2007|15:38] C:\DOCUME~1\TARDIV~1\APPLIC~1\..
[26/03/2007|17:24] C:\DOCUME~1\TARDIV~1\APPLIC~1\ATI
[26/03/2007|18:01] C:\DOCUME~1\TARDIV~1\APPLIC~1\desktop.ini
[26/03/2007|17:18] C:\DOCUME~1\TARDIV~1\APPLIC~1\Identities
[29/03/2007|23:35] C:\DOCUME~1\TARDIV~1\APPLIC~1\Macromedia
[30/03/2007|15:33] C:\DOCUME~1\TARDIV~1\APPLIC~1\Microsoft
[30/03/2007|15:38] C:\DOCUME~1\TARDIV~1\APPLIC~1\Symantec

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[18/03/2008 14:00][--ah-----] C:\WINDOWS\tasks\AEFA2270910DDEAC.job
[18/03/2008 14:39][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/09/2001 15:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[18/03/2008|12:08] C:\Program Files\.
[18/03/2008|12:08] C:\Program Files\..
[15/04/2007|00:17] C:\Program Files\4Musics Multiformat Converter
[08/12/2007|22:16] C:\Program Files\Activision
[30/10/2007|22:11] C:\Program Files\Adobe
[16/03/2008|21:04] C:\Program Files\Adverts
[31/03/2007|19:03] C:\Program Files\Ahead
[01/10/2007|11:56] C:\Program Files\Alwil Software
[17/03/2008|20:31] C:\Program Files\a-squared Free
[26/03/2007|17:22] C:\Program Files\ATI Technologies
[22/09/2007|20:42] C:\Program Files\Audacity
[31/03/2007|18:33] C:\Program Files\AvRack
[30/03/2007|13:17] C:\Program Files\Canon
[17/03/2008|14:58] C:\Program Files\Circle Developement
[26/03/2007|17:11] C:\Program Files\ComPlus Applications
[31/03/2007|19:06] C:\Program Files\CyberLink
[31/03/2007|19:04] C:\Program Files\DivX
[23/01/2008|13:51] C:\Program Files\Doom 3
[20/12/2007|18:48] C:\Program Files\EA GAMES
[17/05/2007|21:06] C:\Program Files\Easy CD-DA Extractor 10
[03/08/2007|17:16] C:\Program Files\Emjysoft
[15/12/2007|10:28] C:\Program Files\eMule
[20/11/2007|20:53] C:\Program Files\Fichiers communs
[17/03/2008|14:59] C:\Program Files\File Blah Nurb
[02/11/2007|22:14] C:\Program Files\GeoGebra
[06/03/2008|22:00] C:\Program Files\Google
[06/10/2007|08:27] C:\Program Files\HardwareDetection
[18/03/2008|11:01] C:\Program Files\Hitman Pro
[29/05/2007|17:21] C:\Program Files\Ideazon
[17/05/2007|18:12] C:\Program Files\Illustrate
[12/07/2007|21:02] C:\Program Files\IncrediMail
[28/02/2008|21:39] C:\Program Files\InstallShield Installation Information
[16/02/2008|08:44] C:\Program Files\Internet Explorer
[27/06/2007|12:36] C:\Program Files\IrfanView
[28/03/2007|20:41] C:\Program Files\IVT Corporation
[07/02/2008|22:30] C:\Program Files\Jasc Software Inc
[02/11/2007|22:20] C:\Program Files\Java
[08/04/2007|20:04] C:\Program Files\Larousse Multim‚dia
[06/10/2007|08:27] C:\Program Files\ma-config.com
[29/06/2007|20:24] C:\Program Files\Messenger
[17/03/2008|14:58] C:\Program Files\Messenger Plus! Live
[11/08/2007|10:00] C:\Program Files\Micro Application
[26/06/2007|16:07] C:\Program Files\Microsoft ActiveSync
[01/05/2007|17:27] C:\Program Files\Microsoft Encarta
[26/03/2007|17:14] C:\Program Files\microsoft frontpage
[13/06/2007|17:46] C:\Program Files\Microsoft Office
[10/10/2007|20:52] C:\Program Files\Microsoft SQL Server Compact Edition
[13/06/2007|17:46] C:\Program Files\Microsoft Visual Studio
[01/05/2007|17:19] C:\Program Files\Microsoft Works
[01/05/2007|17:13] C:\Program Files\Microsoft Works Suite 2002
[14/04/2007|22:52] C:\Program Files\Mihov Image Resizer
[29/06/2007|20:21] C:\Program Files\Movie Maker
[08/08/2007|19:14] C:\Program Files\MP3Gain
[31/03/2007|18:10] C:\Program Files\MSN
[26/03/2007|17:10] C:\Program Files\MSN Gaming Zone
[16/03/2008|20:50] C:\Program Files\MSN Messenger
[29/06/2007|20:21] C:\Program Files\NetMeeting
[30/03/2007|20:11] C:\Program Files\Oberon Media
[17/01/2008|19:07] C:\Program Files\OFFICE ONE6.5
[26/03/2007|17:11] C:\Program Files\Online Services
[01/07/2007|19:47] C:\Program Files\Outlook Express
[29/02/2008|22:45] C:\Program Files\QuickTime
[02/07/2007|21:38] C:\Program Files\Real
[26/03/2007|17:28] C:\Program Files\Realtek Sound Manager
[26/06/2007|16:07] C:\Program Files\Resco
[07/02/2008|22:27] C:\Program Files\Seagrand
[26/03/2007|17:12] C:\Program Files\Services en ligne
[12/05/2007|19:16] C:\Program Files\Shareaza
[09/11/2007|19:09] C:\Program Files\SlySoft
[05/08/2007|16:00] C:\Program Files\SM
[17/03/2008|20:39] C:\Program Files\Spybot - Search & Destroy
[18/03/2008|12:08] C:\Program Files\Trend Micro
[31/10/2007|11:33] C:\Program Files\Ubisoft
[18/07/2007|21:11] C:\Program Files\Ulead Systems
[11/08/2007|10:03] C:\Program Files\Uninstall Information
[19/12/2007|20:02] C:\Program Files\VideoLAN
[18/07/2007|20:34] C:\Program Files\Visicom Media
[04/11/2007|13:19] C:\Program Files\vmntoolbar
[26/06/2007|16:17] C:\Program Files\VSO
[11/02/2008|12:11] C:\Program Files\Winamp
[10/10/2007|20:51] C:\Program Files\Windows Desktop Search
[16/03/2008|20:49] C:\Program Files\Windows Live
[14/03/2008|14:54] C:\Program Files\Windows Live Safety Center
[02/07/2007|17:44] C:\Program Files\Windows Media Connect 2
[02/07/2007|17:44] C:\Program Files\Windows Media Player
[29/06/2007|20:21] C:\Program Files\Windows NT
[31/03/2007|19:40] C:\Program Files\WindowsUpdate
[17/07/2007|21:39] C:\Program Files\WinRAR
[15/04/2007|13:26] C:\Program Files\WinZip 8.1 Fr
[01/05/2007|16:01] C:\Program Files\xat.com JPEG Optimizer
[26/03/2007|17:14] C:\Program Files\xerox
[07/08/2007|17:43] C:\Program Files\ZW Photo Printer

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[20/11/2007|20:53] C:\Program Files\Fichiers communs\.
[20/11/2007|20:53] C:\Program Files\Fichiers communs\..
[23/11/2007|20:16] C:\Program Files\Fichiers communs\Adobe
[30/03/2007|15:44] C:\Program Files\Fichiers communs\Ahead
[30/03/2007|15:29] C:\Program Files\Fichiers communs\Designer
[26/03/2007|19:40] C:\Program Files\Fichiers communs\InstallShield
[02/11/2007|22:16] C:\Program Files\Fichiers communs\Java
[20/11/2007|20:54] C:\Program Files\Fichiers communs\Microsoft Shared
[26/03/2007|17:12] C:\Program Files\Fichiers communs\MSSoap
[30/03/2007|20:11] C:\Program Files\Fichiers communs\Oberon Media
[26/03/2007|18:02] C:\Program Files\Fichiers communs\ODBC
[02/07/2007|21:39] C:\Program Files\Fichiers communs\Real
[26/03/2007|17:12] C:\Program Files\Fichiers communs\Services
[26/03/2007|18:02] C:\Program Files\Fichiers communs\SpeechEngines
[30/03/2007|15:38] C:\Program Files\Fichiers communs\Symantec Shared
[01/07/2007|19:47] C:\Program Files\Fichiers communs\System
[20/11/2007|20:54] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[02/07/2007|21:39] C:\Program Files\Fichiers communs\xing shared

----------------------[ Recherche avec S_Lop ]---------------------

C:\DOCUME~1\TARDIV~2\LOCALS~1\Temp\bisBC.exe

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\File Joy Proc Deaf
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\File Joy Proc Deaf\Settings Trans.exe

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:32:04, on 18/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\explorer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [Proc Deaf Delete Peak] C:\Documents and Settings\All Users.WINDOWS\Application Data\file joy proc deaf\Settings Trans.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [GreatDeaf] C:\DOCUME~1\TARDIV~2\APPLIC~1\FILEBL~1\less axis.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-18\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime (User 'Default user')
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la Liste à Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.wanadoo.fr/
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/window [...] 5359387125
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://charon777.free.fr/plugins/h [...] _0_4_9.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/bina [...] b56649.cab
O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://bmm.imgag.com/imgag/cp/install/crusher-fr.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/sh [...] wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{45B287AE-EA81-4D59-9DA0-91A64CC36131}: NameServer = 80.10.246.3,80.10.246.130,192.168.0.1
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe

Et maintenant qu'est ce que je dois faire???au secours!!Merci d'avance!!

Répondre à caramelgirl974
Angeldark   18-03-2008 à 19:34:39
- 0 +

Re,

Relance Lop S&D

  • Choisis cette fois ci l'Option 2 (Suppression)
  • Ne ferme pas la fenêtre lors de la suppression !
  • Poste le rapport généré (C:\lopR.txt)


(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)

------------------------------ Prévention & Protection||Vous m'aimez ? Cliquez :o
 Répondre à Angeldark
florine59960   19-03-2008 à 13:40:14
- 0 +

Euh ... C'est moi qui dois faire ça ?
Je ne comprends plus rien maintenant .

Répondre à florine59960
Angeldark   19-03-2008 à 16:33:40
- 0 +

Il y a eu de l'incrust de sujet, désolé.
Tu as déjà fait un Hijackthis, c'est la même procédure.

------------------------------ Prévention & Protection||Vous m'aimez ? Cliquez :o
 Répondre à Angeldark
florine59960   19-03-2008 à 18:48:09
- 0 +

Ok, pas de soucis, j'ai fait ce que je pense être bon ;)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:47, on 2008-03-19
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\arservice.exe
C:\Program Files\NavNT\defwatch.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\NavNT\rtvscan.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\MsgSys.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\ARPWRMSG.EXE
C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
C:\Program Files\Java\jre1.5.0_05\bin\jucheck.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\NavNT\vptray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Wanadoo\taskbaricon.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
c:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [Reminder] "C:\Windows\Creator\Remind_XP.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [vptray] C:\Program Files\NavNT\vptray.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\Program Files\Wanadoo\taskbaricon.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - Startup: PowerReg Scheduler.exe
O4 - Global Startup: Barre d'état système d'ATI CATALYST.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?7127fe19836a4129ba3a4a9afad64202
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?7127fe19836a4129ba3a4a9afad64202
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O9 - Extra button: Alice ADSL - {AD483C61-35FE-466B-BB6D-B892E3B9EE44} - http://www.aliceadsl.fr (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.aliceadsl.fr
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/window [...] 5221928803
O18 - Protocol: bw+0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {6C0EB19B-5AC2-432E-B660-5FCB8F845AFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: DefWatch - Symantec Corporation - C:\Program Files\NavNT\defwatch.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Norton AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\Program Files\NavNT\rtvscan.exe

--
End of file - 22930 bytes

Répondre à florine59960
Angeldark   19-03-2008 à 18:53:39
- 0 +

D'autres soucis ou questions ?

------------------------------ Prévention & Protection||Vous m'aimez ? Cliquez :o
 Répondre à Angeldark
florine59960   20-03-2008 à 20:06:00
- 0 +

Oh, alors c'est bon, je suis tranquille !

Merci beaucoup en tout cas, c'est super sympa d'aider les gens comme ça =)

Bonne continuation !

Répondre à florine59960
Créer un nouveau sujet Répondre
Tom's Guide > Forum > Sécurité - Virus > Virus MSN (que fais ta tof sur ce site).
Aller à :

Il y a 1325 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.

Plan du forum
Forum Bestofmedia ©
2000-2009 Bestofmedia Group
Page générée en 1,486 secondes
Attention

Vous allez répondre sur un sujet resté inactif pendant plus de 6 mois.
Assurez-vous d'apporter des éléments nouveaux à la discussion avant de poursuivre.

Répondre Annuler
Liens