virus détecter par avast win32 trojan-genRésolu/Fermé

Question

bonjour à tous ,
voilà j'ai un gros problème ,il y as un trojan qui cours sur mon pc ,je suis pas super douée je ne touche à un pc que depuis 5 mois ,j'est l'abithude de néttoyer avec CC.cleaner, avec spyboot search & destroy il néttoyait plein de conneries avast n'as rien trouver jusqu'à hier ,depuis que j'ai entièrement tout scanner avec avast il ne l'enlève malgrer tout pas  ,je vous envoi un rapport que j'est tirer de hijjacktis je sais pas si c'est ca ,j'y connaît pas grand chose


Logfile of HijackThis v1.99.1
Scan saved at 15:49:17, on 13/02/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Symantec\Norton Ghost 2003\GhostStartService.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCTserv.exe
C:\WINDOWS\system32\lxctcoms.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32
vsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\system32\wwSecure.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Symantec\Norton Ghost 2003\GhostStartTrayApp.exe
C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\Program Files\Lexmark 5400 Series\lxctmon.exe
C:\Program Files\Lexmark 5400 Series\ezprint.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Belgacom\bin\sprtcmd.exe
F:\Documents and Settings\PDVDServ.exe
C:\Program Files\SPYWAREfighter\spftray.exe
C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\ISP Monitor\isp.exe
C:\Program Files\Logitech\Profiler\lwemon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SPYWAREfighter\spfprc.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\User\LOCALS~1\Temp\Rar$EX00.641\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\pchealth\helpctr\System\panels\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE	oolbar.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Lexmark Barre d'outils - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar	oolband.dll
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1	oolbar.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE	oolbar.dll
O3 - Toolbar: Lexmark Barre d'outils - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar	oolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Control Center] C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [GhostStartTrayApp] C:\Program Files\Symantec\Norton Ghost 2003\GhostStartTrayApp.exe
O4 - HKLM\..\Run: [Ulead AutoDetector] C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [lxctmon.exe] "C:\Program Files\Lexmark 5400 Series\lxctmon.exe"
O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 5400 Series\ezprint.exe"
O4 - HKLM\..\Run: [LXCTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCTtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [Belgacom] "C:\Program Files\Belgacom\bin\sprtcmd.exe" /P Belgacom
O4 - HKLM\..\Run: [RemoteControl] "F:\Documents and Settings\PDVDServ.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [spywarefighterguard] C:\Program Files\SPYWAREfighter\spftray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKLM\..\RunOnce: [WIAWizardMenu] RUNDLL32.EXE C:\WINDOWS\system32\sti_ci.dll,WiaCreateWizardMenu
O4 - HKCU\..\Run: [LDM] C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [ISPMonitor] C:\Program Files\ISP Monitor\isp.exe
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKCU\..\Run: [Start WingMan Profiler] "C:\Program Files\Logitech\Profiler\lwemon.exe" /noui
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exe
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZN
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-be\msntabres.dll.mui/229?b754b49c2ca44feda0fbe5e50acba1cd
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-be\msntabres.dll.mui/230?b754b49c2ca44feda0fbe5e50acba1cd
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {1358E11F-ADE8-4D2B-9135-1A4CB9A23D7B} (Install Class) - https://genius.belgacom.be/esupport/download/IPGInstaller.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0) - http://javadl-esd.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586-jc.cab
O18 - Protocol: bw+0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\FICHIE~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: GhostStartService - Symantec Corporation - C:\Program Files\Symantec\Norton Ghost 2003\GhostStartService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LXCTCustomerConnect - Lexmark International Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCTserv.exe
O23 - Service: lxct_device -   - C:\WINDOWS\system32\lxctcoms.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32
vsvc32.exe
O23 - Service: SPYWAREfighterRP - SpamFighter APS - C:\Program Files\SPYWAREfighter\spfprc.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: Washer Security Access (wwSecSvc) - Webroot Software, Inc. - C:\WINDOWS\system32\wwSecure.exe

Utilisateur anonyme · Answer

Bonjour 


Poste aussi ce rapport 

Télécharge DiagHelp.zip (de Malekal_Morte) sur ton bureau 
http://www.malekal.com/download/DiagHelp.zip 
- Fais un clic droit sur le fichier et extraire tout 
- Un nouveau dossier chercher va être créé DiagHelp 
- Ouvre le et double-clic sur go.cmd (le .cmd peut ne pas apparaître) 
- Une fenêtre va s'ouvrir, choisis l'option 1 
- L'analyse va commencer, ceci peut durer quelques minutes, laisse faire et appuie sur une touche quand on te le demande 
- A la fin de l'analyse, il te sera redemandé de redémarrer l'ordinateur... Une fois l'ordinateur redémarré le rapport va apparaître sur le bloc-note.. Ce dernier se trouve sur C:\resultat.txt 
- Copie/colle le contenu du bloc-note qui s'ouvre, pour cela : 
-- Dans le bloc-note, cliquez sur le menu Edition / Selectionner tout 
-- A nouveau menu Edition / copier 
-- Dans un nouveau message ici, faire un clic droit / coller

Utilisateur anonyme · Answer

Re


Quand tu mets le 1, est ce que tu clique sur Entrée ensuite ?

mousty · Answer

up

Utilisateur anonyme · Answer

Re


Tant pis pour DiagHelp.


Une partie de la procédure se déroulera sans avoir accès à internet, prière d'imprimer ces instructions, ou de les coller dans un fichier texte, pour lecture durant cette désinfection.
Les  manipulations sont à faire sans interruption et dans l'ordre.
Si tu ne comprends pas quelque chose, demande des explications avant de commencer.


Télécharge Brute Force Uninstaller (de Merijn)
http://www.merijn.org/files/bfu.zip
Créé un nouveau dossier directement sur le C:\ et nomme-le BFU. Décompresse le fichier téléchargé dans ce nouveau dossier (C:\BFU)


FAIS UN CLIC-DROIT sur le lien suivant
http://perso.orange.fr/Chercheur-perso/scripts/toolbar.bfu
et choisis "Enregistrer la cible sous..." afin de télécharger toolbar.bfu (de Chercheur). Sauvegarde dans le dossier créé (C:\BFU). **Note: si tu utlises Internet Explorer, lors de la sauvegarde, assure-toi que le champs "Type :" affiche "Tous les fichiers". Tu dois maintenant avoir deux fichiers dans le dossier C:\BFU : toolbar.bfu et BFU.exe (très important).


Redémarre en mode Sans Échec : au redémarrage, tapote immédiatement la touche F8 ou F5; tu verras un écran avec choix de démarrages apparaître. Utilisant les flèches du clavier, choisis "Mode Sans Échec" et valide avec "Entrée". Choisis ton compte usuel, et non Administrateur.


Démarre le "Brute Force Uninstaller" en double-cliquant BFU.exe (du dossier C:\BFU)
Clique sur le petit dossier jaune, à la droite de la boîte Scriptline to execute, et double-clique sur :

toolbar.bfu

Dans la boîte "Scriptline to execute", tu devrais maintenant voir ceci : C:\BFU	oolbar.bfu
Clique sur Execute et laisse-le faire son travail.
Attendre que Complete script execution apparaîsse et clique sur OK.
Clique Exit pour fermer le programme BFU.


Redémarre normalement et poste un nouveau hijackthis.

Utilisateur anonyme · Answer

Bonjour


Oui, poste un rapport Hijackthis après ces manips.

Même s'il n'y a plus rien d'infectieux, tu as des lignes inutiles qu'il est possible de supprimer.

Utilisateur anonyme · Answer

Re


Plus rien d'infectieux dans ce rapport, mais plusieurs lignes inutiles.

Relance un scan HijackThis et coche les lignes ci-dessous :

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\pchealth\helpctr\System\panels\blank.htm 
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) 
R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file) 
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll 
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - (no file) 
O3 - Toolbar: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file) 
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe 
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe 
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll 
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll 
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL 
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) 
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) 
O11 - Options group: [INTERNATIONAL] International* 
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0) - http://javadl-esd.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586-jc.cab 
O18 - Protocol: bw+0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw+0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw-0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw-0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw00 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw00s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw10 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw10s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw20 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw20s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw30 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw30s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw40 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw40s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw50 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw50s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw60 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw60s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw70 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw70s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw80 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw80s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw90 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bw90s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwa0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwa0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwb0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwb0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwc0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwc0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwd0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwd0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwe0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwe0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwf0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwf0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll 
O18 - Protocol: bwg0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwg0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwh0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwh0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwi0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwi0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwj0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwj0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwk0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwk0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwl0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwl0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwm0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwm0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwn0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwn0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwo0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwo0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwp0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwp0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwq0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwq0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwr0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwr0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bws0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bws0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwt0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwt0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwu0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwu0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwv0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwv0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bww0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bww0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwx0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwx0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwy0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwy0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwz0 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: bwz0s - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O18 - Protocol: offline-8876480 - {D68C9849-220D-43E5-9DD8-56678934143E} - C:\Documents and Settings\User\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll 
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\ 

Ferme toutes les fenêtres Windows, Internet explorer, Outlook,sauf le logiciel Hijackthis et clique sur « Fix checked »



As tu encore des dysfonctionnements ?

Utilisateur anonyme · Answer

Bonsoir

Bon. Reprenons.

Hijackthis est propre.

Fais une analyse antivirus en ligne sur Kaspersky
https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
Sélectionne le poste de travail comme analyse.
Colle son rapport ici.

Utilisateur anonyme · Answer

Bonjour


Plus de signe s'infection dans ces rapports.

pierre_71 · Answer

bonjour a tous et a toutes! bon et bien , il se trouve que moi aussi j'ai attrapé cette saleté de virus , alors je vous envoie mes resultats de diaghelp ainsi ceux de hijackthis , merci de votre contribution diaghelp : C:\WINDOWS\System32/drivers\ativvpxx.vp -->2007-02-02 15:48:07 C:\WINDOWS\System32/drivers\ati2mtag.sys -->2007-02-02 15:03:25 C:\WINDOWS\System32/drivers\ati2erec.dll -->2007-02-02 14:35:12 C:\WINDOWS\System32/drivers\PxHelp20.sys -->2007-01-25 20:19:00 C:\WINDOWS\System32/drivers\cdralw2k.sys -->2007-01-25 20:19:00 C:\WINDOWS\System32/drivers\cdr4_xp.sys -->2007-01-25 20:19:00 C:\WINDOWS\System32/drivers\ativcaxx.vp -->2007-01-19 15:35:53 C:\WINDOWS\WindowsUpdate.log -->2007-03-07 03:39:47 C:\WINDOWS\0.log -->2007-03-07 03:00:47 C:\WINDOWS\spupdsvc.log -->2007-03-07 03:00:29 C:\WINDOWS\bootstat.dat -->2007-03-07 03:00:07 C:\WINDOWS\SchedLgU.Txt -->2007-03-07 02:59:02 C:\WINDOWS\WgaNotify.log -->2007-03-07 02:58:06 C:\WINDOWS\updspapi.log -->2007-03-07 02:57:37 C:\WINDOWS\setupapi.log -->2007-03-07 02:57:31 C:\WINDOWS soc.log -->2007-03-07 02:55:26 C:\WINDOWS\ocmsn.log -->2007-03-07 02:55:26 C:\WINDOWS\ocgen.log -->2007-03-07 02:55:26 C:\WINDOWS tdtcsetup.log -->2007-03-07 02:55:26 C:\WINDOWS\msgsocm.log -->2007-03-07 02:55:26 C:\WINDOWS\KB931836.log -->2007-03-07 02:55:26 C:\WINDOWS\imsins.log -->2007-03-07 02:55:26 C:\WINDOWS\accesss.exe |17/01/2007 17:51:56 C:\WINDOWS\clrssn.exe |17/01/2007 17:51:57 C:\WINDOWS\cmuninst.exe |11/07/2002 11:24:50 C:\WINDOWS\CONSOLEP.EXE |27/08/2002 15:22:02 C:\WINDOWS\dialup.exe |17/01/2007 17:52:03 C:\WINDOWS\IsUn040c.exe |10/01/2006 16:10:03 C:\WINDOWS\IsUn0c0c.exe |15/01/2007 12:50:25 C:\WINDOWS\IsUninst.exe |15/01/2007 13:01:29 C:\WINDOWS\mixer.exe |15/10/2002 18:00:20 C:\WINDOWS\olehelp.exe |17/01/2007 17:51:59 C:\WINDOWS unwin32.exe |17/01/2007 17:52:03 C:\WINDOWS\SiSUSBrg.exe |10/01/2006 16:10:17 C:\WINDOWS\slrundll.exe |17/01/2007 13:10:04 C:\WINDOWS\systeem.exe |17/01/2007 17:51:59 C:\WINDOWS\systemcritical.exe |17/01/2007 17:51:59 C:\WINDOWS ime.exe |17/01/2007 17:51:59 C:\WINDOWS wunk_16.exe |28/08/2001 06:00:00 C:\WINDOWS wunk_32.exe |28/08/2001 06:00:00 C:\WINDOWS\users32.exe |17/01/2007 17:52:00 C:\WINDOWS\waol.exe |17/01/2007 17:52:00 C:\WINDOWS\win32e.exe |17/01/2007 17:52:00 C:\WINDOWS\win64.exe |17/01/2007 17:52:01 C:\WINDOWS\window.exe |17/01/2007 17:52:01 C:\WINDOWS\wininet32.exe |17/01/2007 17:52:03 C:\WINDOWS\winmgnt.exe |17/01/2007 17:52:01 C:\WINDOWS\x.exe |17/01/2007 17:52:02 C:\WINDOWS\y.exe |17/01/2007 17:52:02 C:\WINDOWS\SIS_LIB.DLL |10/01/2006 16:10:17 C:\WINDOWS wain.dll |28/08/2001 06:00:00 C:\WINDOWS wain_32.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\append.exe |28/08/2001 06:00:00 C:\WINDOWS\system32\aswBoot.exe |17/01/2007 18:17:57 C:\WINDOWS\system32\ati2evxx.exe |24/11/2004 09:12:36 C:\WINDOWS\system32\Ati2mdxx.exe |24/11/2004 09:14:46 C:\WINDOWS\system32\ati2sgag.exe |30/01/2007 17:44:56 C:\WINDOWS\system32\debug.exe |28/08/2001 06:00:00 C:\WINDOWS\system32\DivXCodecUpdateChecker.exe |12/12/2006 11:24:42 C:\WINDOWS\system32\DivXsm.exe |25/01/2007 20:19:04 C:\WINDOWS\system32\dosx.exe |28/08/2001 06:00:00 C:\WINDOWS\system32\dvdplay.exe |23/08/2001 12:47:34 C:\WINDOWS\system32\edlin.exe |28/08/2001 06:00:00 C:\WINDOWS\system32\exe2bin.exe |28/08/2001 06:00:00 C:\WINDOWS\system32\fastopen.exe |28/08/2001 06:00:00 C:\WINDOWS\system32\mem.exe |28/08/2001 06:00:00 C:\WINDOWS\system32\mscdexnt.exe |28/08/2001 06:00:00 C:\WINDOWS\system32 lsfunc.exe |28/08/2001 06:00:00 C:\WINDOWS\system32\perfont.exe |17/01/2007 17:52:12 C:\WINDOWS\system32\pxcpya64.exe |21/01/2007 23:01:51 C:\WINDOWS\system32\pxcpyi64.exe |21/01/2007 23:01:51 C:\WINDOWS\system32\pxhpinst.exe |21/01/2007 23:01:51 C:\WINDOWS\system32\pxinsa64.exe |21/01/2007 23:01:51 C:\WINDOWS\system32\pxinsi64.exe |21/01/2007 23:01:51 C:\WINDOWS\system32 edir.exe |28/08/2001 06:00:00 C:\WINDOWS\system32\setver.exe |28/08/2001 06:00:00 C:\WINDOWS\system32\share.exe |28/08/2001 06:00:00 C:\WINDOWS\system32\slrundll.exe |17/01/2007 13:10:04 C:\WINDOWS\system32\slserv.exe |17/01/2007 13:10:04 C:\WINDOWS\system32\usrmlnka.exe |23/08/2001 12:47:48 C:\WINDOWS\system32\usrprbda.exe |23/08/2001 12:47:48 C:\WINDOWS\system32\usrshuta.exe |23/08/2001 12:47:48 C:\WINDOWS\system32\a3d.dll |23/11/2001 12:08:20 C:\WINDOWS\system32\ace16win.dll |17/01/2007 17:51:56 C:\WINDOWS\system32\amstream.dll |01/01/2007 22:59:15 C:\WINDOWS\system32\asgp32.dll |17/01/2007 17:50:53 C:\WINDOWS\system32\ati2cqag.dll |17/01/2007 13:08:30 C:\WINDOWS\system32\ati2dvaa.dll |17/01/2007 13:08:30 C:\WINDOWS\system32\ati2dvag.dll |17/01/2007 13:08:30 C:\WINDOWS\system32\ati2edxx.dll |24/11/2004 09:14:38 C:\WINDOWS\system32\ati2evxx.dll |24/11/2004 09:14:22 C:\WINDOWS\system32\ati3d1ag.dll |17/01/2007 13:08:30 C:\WINDOWS\system32\ati3duag.dll |17/01/2007 13:08:30 C:\WINDOWS\system32\ATIDDC.DLL |24/11/2004 09:12:06 C:\WINDOWS\system32\ATIDEMGR.dll |24/11/2004 11:26:20 C:\WINDOWS\system32\ATIDEMGX.dll |02/02/2007 15:04:44 C:\WINDOWS\system32\atiiiexx.dll |30/01/2007 17:44:48 C:\WINDOWS\system32\atikvmag.dll |16/12/2006 21:17:16 C:\WINDOWS\system32\atioglx1.dll |16/12/2006 21:23:32 C:\WINDOWS\system32\atioglxx.dll |24/11/2004 09:45:02 C:\WINDOWS\system32\atipdlxx.dll |24/11/2004 09:15:12 C:\WINDOWS\system32\atitvo32.dll |24/11/2004 08:42:22 C:\WINDOWS\system32\ativcoxx.dll |08/11/2001 22:01:04 C:\WINDOWS\system32\ativtmxx.dll |17/01/2007 13:08:31 C:\WINDOWS\system32\ativvaxx.dll |17/01/2007 13:08:31 C:\WINDOWS\system32\atmfd.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\atmlib.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\Audio3D.dll |23/11/2001 12:08:20 C:\WINDOWS\system32\cmnprop(2).dll |09/10/2002 09:38:24 C:\WINDOWS\system32\cmnprop.dll |09/10/2002 09:38:24 C:\WINDOWS\system32\compatui.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\dgrpsetu.dll |01/01/2007 16:00:21 C:\WINDOWS\system32\dgsetup.dll |01/01/2007 16:00:21 C:\WINDOWS\system32\DivX.dll |25/01/2007 20:13:40 C:\WINDOWS\system32\DivXWMPExtType.dll |12/12/2006 11:24:42 C:\WINDOWS\system32\divx_xx07.dll |25/01/2007 20:13:42 C:\WINDOWS\system32\divx_xx0c.dll |25/01/2007 20:13:40 C:\WINDOWS\system32\divx_xx11.dll |25/01/2007 20:13:40 C:\WINDOWS\system32\dpl100.dll |25/01/2007 20:13:45 C:\WINDOWS\system32\dpu10.dll |25/01/2007 20:13:44 C:\WINDOWS\system32\dpu11.dll |25/01/2007 20:13:44 C:\WINDOWS\system32\dpuGUI10.dll |25/01/2007 20:13:45 C:\WINDOWS\system32\dpuGUI11.dll |25/01/2007 20:13:44 C:\WINDOWS\system32\dpus11.dll |25/01/2007 20:13:44 C:\WINDOWS\system32\dpv11.dll |25/01/2007 20:13:44 C:\WINDOWS\system32\dtu100.dll |25/01/2007 20:13:45 C:\WINDOWS\system32\encdec.dll |19/08/2004 18:09:25 C:\WINDOWS\system32\EqnClass.Dll |01/01/2007 16:00:21 C:\WINDOWS\system32\hsfcisp2.dll |17/01/2007 13:09:53 C:\WINDOWS\system32\HSF_INST.dll |01/01/2007 16:02:21 C:\WINDOWS\system32\hticons.dll |01/01/2007 22:05:59 C:\WINDOWS\system32\hypertrm.dll |01/01/2007 22:05:59 C:\WINDOWS\system32\iccvid.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\ir32_32.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\ir41_qc.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\ir41_qcx.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\ir50_32.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\ir50_qc.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\ir50_qcx.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\isrdbg32.dll |01/01/2007 22:07:52 C:\WINDOWS\system32\jgaw400.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\jgdw400.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\jgmd400.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\jgpl400.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\jgsd400.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\jgsh400.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\lfacs13n.dll |27/06/2003 12:42:38 C:\WINDOWS\system32\lfAFP13n.dll |17/10/2003 16:50:00 C:\WINDOWS\system32\lfani13n.dll |17/10/2003 16:13:46 C:\WINDOWS\system32\lfavi13n.dll |17/10/2003 16:13:48 C:\WINDOWS\system32\lfawd13n.dll |17/10/2003 16:13:50 C:\WINDOWS\system32\lfbmp13n.dll |17/10/2003 16:13:54 C:\WINDOWS\system32\lfcal13n.dll |17/10/2003 16:13:58 C:\WINDOWS\system32\Lfcgm13n.dll |17/10/2003 16:45:00 C:\WINDOWS\system32\lfclp13n.dll |17/10/2003 16:14:02 C:\WINDOWS\system32\LFCMP13n.DLL |17/10/2003 16:48:16 C:\WINDOWS\system32\Lfcmx13n.dll |27/06/2003 12:42:48 C:\WINDOWS\system32\lfCUT13n.dll |17/10/2003 16:14:06 C:\WINDOWS\system32\Lfdgn13n.dll |17/10/2003 16:19:46 C:\WINDOWS\system32\lfdrw13n.dll |17/10/2003 16:19:50 C:\WINDOWS\system32\lfdwf13n.dll |17/10/2003 16:45:50 C:\WINDOWS\system32\lfdwg13n.dll |17/10/2003 16:20:00 C:\WINDOWS\system32\lfdxf13n.dll |20/10/2003 14:59:22 C:\WINDOWS\system32\lfeps13n.dll |20/10/2003 14:59:04 C:\WINDOWS\system32\lffax13n.dll |17/10/2003 16:13:42 C:\WINDOWS\system32\lfflc13n.dll |17/10/2003 16:14:14 C:\WINDOWS\system32\lffpx13n.dll |17/10/2003 16:14:18 C:\WINDOWS\system32\lffpx7.dll |12/04/2000 15:24:10 C:\WINDOWS\system32\lfgbr13n.dll |17/10/2003 16:47:16 C:\WINDOWS\system32\lfgif13n.dll |17/10/2003 16:14:22 C:\WINDOWS\system32\lfica13n.dll |17/10/2003 16:14:28 C:\WINDOWS\system32\lfiff13n.dll |17/10/2003 16:14:34 C:\WINDOWS\system32\lfimg13n.dll |17/10/2003 16:14:36 C:\WINDOWS\system32\lfitg13n.dll |17/10/2003 16:14:40 C:\WINDOWS\system32\lfkodak.dll |12/04/2000 15:28:12 C:\WINDOWS\system32\lflma13n.dll |17/10/2003 16:14:50 C:\WINDOWS\system32\lflmb13n.dll |17/10/2003 16:14:54 C:\WINDOWS\system32\lfmac13n.dll |17/10/2003 16:14:56 C:\WINDOWS\system32\lfmpg13n.dll |17/10/2003 16:15:12 C:\WINDOWS\system32\lfmsp13n.dll |17/10/2003 16:15:16 C:\WINDOWS\system32\lfpcd13n.dll |17/10/2003 16:15:26 C:\WINDOWS\system32\lfPCL13n.dll |17/10/2003 16:50:24 C:\WINDOWS\system32\Lfpct13n.dll |17/10/2003 16:15:20 C:\WINDOWS\system32\lfpcx13n.dll |17/10/2003 16:15:24 C:\WINDOWS\system32\lfpdf13n.dll |17/10/2003 16:16:18 C:\WINDOWS\system32\Lfpng13n.dll |17/10/2003 16:51:38 C:\WINDOWS\system32\LFPNM13n.dll |17/10/2003 16:15:30 C:\WINDOWS\system32\lfpsd13n.dll |17/10/2003 16:15:36 C:\WINDOWS\system32\LFPTK13n.dll |17/10/2003 16:50:28 C:\WINDOWS\system32\lfras13n.dll |17/10/2003 16:15:38 C:\WINDOWS\system32\lfRaw13n.dll |17/10/2003 16:16:20 C:\WINDOWS\system32\lfsct13n.dll |17/10/2003 16:50:04 C:\WINDOWS\system32\lfsgi13n.dll |17/10/2003 16:15:40 C:\WINDOWS\system32\lfshp13n.dll |17/10/2003 16:50:06 C:\WINDOWS\system32\LFSMP13n.dll |14/08/2003 16:54:22 C:\WINDOWS\system32\LFSVG13n.dll |17/10/2003 16:46:58 C:\WINDOWS\system32\lftga13n.dll |17/10/2003 16:15:46 C:\WINDOWS\system32\lftif13n.dll |17/10/2003 16:47:30 C:\WINDOWS\system32\lfvec13n.dll |17/10/2003 16:47:08 C:\WINDOWS\system32\lfvpg13n.dll |17/10/2003 16:47:04 C:\WINDOWS\system32\lfwfx13n.dll |17/10/2003 16:15:48 C:\WINDOWS\system32\Lfwmf13n.dll |17/10/2003 16:50:14 C:\WINDOWS\system32\lfwmp13n.dll |17/10/2003 16:50:18 C:\WINDOWS\system32\lfwpg13n.dll |17/10/2003 16:15:50 C:\WINDOWS\system32\lfXbm13n.dll |17/10/2003 16:15:56 C:\WINDOWS\system32\lfXpm13n.dll |17/10/2003 16:16:00 C:\WINDOWS\system32\lfxwd13n.dll |17/10/2003 16:16:02 C:\WINDOWS\system32\libdivx.dll |25/01/2007 20:18:54 C:\WINDOWS\system32\LTDIS13n.dll |17/10/2003 16:12:06 C:\WINDOWS\system32\LTDLG13n.dll |17/10/2003 16:44:56 C:\WINDOWS\system32\LTEFX13n.dll |06/10/2003 14:42:44 C:\WINDOWS\system32\LTFIL13n.dll |17/10/2003 16:12:20 C:\WINDOWS\system32\LTIMG13n.dll |17/10/2003 16:13:12 C:\WINDOWS\system32\LTKRN13n.dll |17/10/2003 16:12:02 C:\WINDOWS\system32\LTLST13n.dll |17/10/2003 16:13:32 C:\WINDOWS\system32\LTTWN13n.dll |06/10/2003 14:42:48 C:\WINDOWS\system32\LVKRN13n.dll |17/10/2003 16:18:18 C:\WINDOWS\system32\mdmxsdk.dll |17/01/2007 13:09:56 C:\WINDOWS\system32\mdwmdmsp.dll |23/08/2001 12:47:06 C:\WINDOWS\system32\msdmo(2).dll |01/01/2007 22:59:16 C:\WINDOWS\system32\msdmo.dll |01/01/2007 22:59:16 C:\WINDOWS\system32\msencode.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\mtxparhd.dll |17/01/2007 13:09:57 C:\WINDOWS\system32 v4_disp.dll |10/12/2005 03:06:00 C:\WINDOWS\system32\Oemdspif.dll |24/11/2004 09:14:56 C:\WINDOWS\system32\paqsp.dll |23/08/2001 12:47:16 C:\WINDOWS\system32\PCDLIB32.DLL |02/05/2000 03:17:00 C:\WINDOWS\system32\psisdecd.dll |01/01/2007 22:59:17 C:\WINDOWS\system32\px.dll |21/01/2007 23:01:50 C:\WINDOWS\system32\pxafs.dll |28/01/2007 18:35:37 C:\WINDOWS\system32\pxdrv.dll |21/01/2007 23:01:51 C:\WINDOWS\system32\pxmas.dll |21/01/2007 23:01:51 C:\WINDOWS\system32\pxsfs.dll |28/01/2007 18:35:37 C:\WINDOWS\system32\pxwave.dll |21/01/2007 23:01:51 C:\WINDOWS\system32\qedwipes.dll |01/01/2007 22:59:16 C:\WINDOWS\system32\qt-dx331.dll |25/01/2007 20:19:02 C:\WINDOWS\system32\s3gnb.dll |17/01/2007 13:10:03 C:\WINDOWS\system32\sbe.dll |19/08/2004 18:09:39 C:\WINDOWS\system32\slbcsp.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\slbiop.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\slbrccsp.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\slcoinst.dll |17/01/2007 13:10:03 C:\WINDOWS\system32\slextspk.dll |17/01/2007 13:10:03 C:\WINDOWS\system32\slgen.dll |17/01/2007 13:10:03 C:\WINDOWS\system32\spnike.dll |23/08/2001 12:47:18 C:\WINDOWS\system32\sprio600.dll |23/08/2001 12:47:18 C:\WINDOWS\system32\sprio800.dll |23/08/2001 12:47:18 C:\WINDOWS\system32\spxcoins.dll |01/01/2007 16:00:21 C:\WINDOWS\system32\ssldivx.dll |25/01/2007 20:18:54 C:\WINDOWS\system32 sd32.dll |28/08/2001 06:00:00 C:\WINDOWS\system32\usrcntra.dll |23/08/2001 12:47:20 C:\WINDOWS\system32\usrcoina.dll |23/08/2001 12:47:20 C:\WINDOWS\system32\usrdpa.dll |23/08/2001 12:47:20 C:\WINDOWS\system32\usrdtea.dll |23/08/2001 12:47:20 C:\WINDOWS\system32\usrfaxa.dll |23/08/2001 12:47:20 C:\WINDOWS\system32\usrlbva.dll |23/08/2001 12:47:20 C:\WINDOWS\system32\usrrtosa.dll |23/08/2001 12:47:20 C:\WINDOWS\system32\usrsdpia.dll |23/08/2001 12:47:20 C:\WINDOWS\system32\usrsvpia.dll |23/08/2001 12:47:20 C:\WINDOWS\system32\usrv42a.dll |23/08/2001 12:47:20 C:\WINDOWS\system32\usrv80a.dll |23/08/2001 12:47:20 C:\WINDOWS\system32\usrvoica.dll |23/08/2001 12:47:20 C:\WINDOWS\system32\usrvpa.dll |23/08/2001 12:47:20 C:\WINDOWS\system32\vxblock.dll |21/01/2007 23:01:51 C:\WINDOWS\system32\W007T32W.DLL |08/05/2000 11:43:14 C:\WINDOWS\system32\win87em.dll |28/08/2001 06:00:00 Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E477-EF3D Répertoire de C:\WINDOWS\system32 2004-08-19 18:09 6 144 csrss.exe 1 fichier(s) 6 144 octets 0 Rép(s) 15 215 222 784 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E477-EF3D Répertoire de C:\WINDOWS\Downloaded Program Files 2006-01-10 15:14 . 2006-01-10 15:14 .. 2005-03-22 15:13 77 824 asusTek_sys_ctrl.dll 2004-09-13 16:48 241 asusTek_sys_ctrl.inf 2006-01-10 15:15 CONFLICT.1 2007-01-01 22:09 65 desktop.ini 2006-11-07 17:22 353 968 FPDC.dll 2006-11-09 14:36 5 019 swflash.inf 2005-05-26 04:19 291 wuweb.inf 6 fichier(s) 437 408 octets Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.1 2006-01-10 15:15 . 2006-01-10 15:15 .. 2005-03-22 15:13 77 824 asusTek_sys_ctrl.dll 2004-09-13 16:48 241 asusTek_sys_ctrl.inf 2 fichier(s) 78 065 octets Total des fichiers listés : 8 fichier(s) 515 473 octets 5 Rép(s) 15 215 222 784 octets libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues Liste des programmes installes 3DSexVilla-029.001 AC3Filter (remove only) Ad-Aware SE Personal Adobe Flash Player 9 ActiveX Adobe Reader 8 Archiveur WinRAR ATI - Software Uninstall Utility ATI Catalyst Control Center ATI Control Panel ATI Display Driver ATI HYDRAVISION µTorrent AutoUpdate avast! Antivirus Catalyst Control Center Core Implementation Catalyst Control Center Graphics Full Existing Catalyst Control Center Graphics Full New Catalyst Control Center Graphics Light Catalyst Control Center Graphics Previews Common ccc-core-static ccc-utility CCC Help English Correctif Windows XP - KB885836 DivX Codec DivX Content Uploader DivX Player DivX Web Player GTK+ 2.4.14 runtime environment HijackThis 1.99.1 Hotfix for Windows XP (KB915865) Hotfix for Windows XP (KB926239) Lecteur Windows Media 11 Machine Check Analysis Tool Macromedia Extension Manager Macromedia Flash 8 Macromedia Flash 8 Video Encoder Macromedia Flash Player 8 Macromedia Flash Player 8 Plugin Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Hotfix (KB886903) Microsoft .NET Framework 2.0 Microsoft .NET Framework 2.0 Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Internationalized Domain Names Mitigation APIs Microsoft National Language Support Downlevel APIs Microsoft Office PowerPoint Viewer 2003 Microsoft User-Mode Driver Framework Feature Pack 1.0 Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969) Mise à jour de sécurité pour Windows XP (KB918118) Mise à jour de sécurité pour Windows XP (KB924667) Mise à jour de sécurité pour Windows XP (KB925454) Mise à jour de sécurité pour Windows XP (KB926436) Mise à jour de sécurité pour Windows XP (KB927779) Mise à jour de sécurité pour Windows XP (KB927802) Mise à jour de sécurité pour Windows XP (KB928255) Mise à jour de sécurité pour Windows XP (KB928843) Mise à jour pour Windows XP (KB898461) Mise à jour pour Windows XP (KB931836) Mozilla Firefox (2.0) PCI Audio Driver Security Update for Microsoft .NET Framework 2.0 (KB917283) Security Update pour Microsoft .NET Framework 2.0 (KB922770) Silkroad SiSAGP driver Skins Spybot - Search & Destroy 1.4 Steam TeamSpeak 2 RC2 Ventrilo Client VideoLAN VLC media player 0.8.6a WebFldrs XP Windows Genuine Advantage Notifications (KB905474) Windows Genuine Advantage Validation Tool (KB892130) Windows Installer 3.1 (KB893803) Windows Internet Explorer 7 Windows Live Messenger Windows Live Sign-in Assistant Windows Media Format 11 runtime Windows Media Format 11 runtime Windows Media Player 11 Windows XP Service Pack 2 WinZip World of Warcraft Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E477-EF3D Répertoire de C:\Program Files 2007-03-07 03:15 . 2007-03-07 03:15 .. 2007-01-28 19:39 AC3Filter 2007-03-07 03:15 ACW 2006-01-10 15:29 Adobe 2007-01-17 18:17 Alwil Software 2007-03-06 11:32 AMD 2007-03-06 11:46 ATI Technologies 2007-01-01 22:47 C-Media 2007-01-01 22:07 ComPlus Applications 2007-02-01 22:51 DivX 2007-03-07 02:55 Fichiers communs 2007-03-07 02:56 GIMP-2.0 2007-03-07 02:59 Internet Explorer 2007-01-17 18:00 Lavasoft 2007-01-18 16:38 Macromedia 2007-01-19 08:48 MagicDisc 2007-03-07 02:52 MagicISO 2007-01-22 19:52 Messenger 2007-01-01 22:10 microsoft frontpage 2007-01-28 19:09 Microsoft Office 2007-01-17 13:24 Movie Maker 2007-01-31 16:28 Mozilla Firefox 2007-01-01 22:06 MSN 2007-01-01 22:06 MSN Gaming Zone 2007-01-17 13:42 MSN Messenger 2006-01-10 14:34 MSN Messenger(2) 2007-03-07 01:10 NetMeeting 2006-01-10 14:37 NimoCodec Pack 2007-01-22 19:59 Outlook Express 2006-01-10 14:43 PCI Audio Applications 2007-01-17 22:33 RegCleaner 2007-01-01 22:08 Services en ligne 2007-03-06 10:48 Silkroad 2006-01-10 14:43 Silkroad(2) 2007-01-15 13:23 sisagp 2007-01-17 21:23 Skype 2007-01-25 09:49 Spybot - Search & Destroy 2007-02-04 09:27 Steam 2007-02-05 20:22 Teamspeak2_RC2 2007-01-02 23:52 thriXXX 2007-01-14 23:43 uTorrent 2007-01-01 22:41 Ventrilo 2007-01-28 20:23 VideoLAN 2007-01-30 05:49 Voyage Century Online 2007-01-18 15:08 Windows Media Connect 2 2007-01-22 19:55 Windows Media Player 2007-01-17 13:21 Windows NT 2007-01-19 08:59 WinRAR 2007-01-19 08:33 WinZip 2007-03-06 11:58 World of Warcraft 2007-01-01 22:10 xerox 0 fichier(s) 0 octets 52 Rép(s) 15 215 443 968 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E477-EF3D Répertoire de C:\Program Files\fichiers communs 2007-03-07 02:55 . 2007-03-07 02:55 .. 2006-01-10 15:29 Adobe 2007-01-30 06:01 Blizzard Entertainment 2007-02-01 00:06 GTK 2007-01-30 17:42 InstallShield 2007-01-18 16:40 Macromedia 2007-01-01 22:39 Microsoft Shared 2007-01-01 22:07 MSSoap 2007-01-01 16:00 ODBC 2007-01-01 22:07 Services 2007-01-01 16:00 SpeechEngines 2007-01-22 19:59 System 2007-03-06 11:31 Wise Installation Wizard 0 fichier(s) 0 octets 14 Rép(s) 15 215 443 968 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E477-EF3D Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders 2007-01-01 22:14 . 2007-01-01 22:14 .. 2001-05-18 17:57 561 209 MSONSEXT.DLL 1999-06-03 14:09 122 937 MSOWS409.DLL 2001-03-07 09:00 127 033 MSOWS40c.DLL 3 fichier(s) 811 179 octets 2 Rép(s) 15 215 443 968 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E477-EF3D Répertoire de C:\ 2001-11-11 00:00 68 096 diff.exe 2006-08-27 14:10 103 424 grep.exe 2005-02-16 11:06 218 112 HijackThis.exe 3 fichier(s) 389 632 octets 0 Rép(s) 15 215 443 968 octets libres c:\Documents and Settings\Propriétaire\Application Data\Microsoft\Installer\{410DB4DE-354D-F472-F66D-FCFF345A8960}\ARPPRODUCTICON.exe c:\Documents and Settings\Propriétaire\Application Data\Microsoft\Installer\{7191C910-3F72-B2CA-0FA5-F0E78F5F8FD2}\ARPPRODUCTICON.exe c:\Documents and Settings\Propriétaire\Application Data\Microsoft\Installer\{885A63EA-382B-4DD4-A755-14809B8557D6}\ARPPRODUCTICON.exe c:\Documents and Settings\Propriétaire\Application Data\Microsoft\Installer\{91057632-CA70-413C-B628-2D3CDBBB906B}\ARPPRODUCTICON.exe c:\Documents and Settings\Propriétaire\Bureau\CWShredder.exe c:\Documents and Settings\Propriétaire\Bureau\HijackThis.exe c:\Documents and Settings\Propriétaire\Bureau\DiagHelp\diff.exe c:\Documents and Settings\Propriétaire\Bureau\DiagHelp\dumphive.exe c:\Documents and Settings\Propriétaire\Bureau\DiagHelp\FilesInfoCmd.exe c:\Documents and Settings\Propriétaire\Bureau\DiagHelp\Fport.exe c:\Documents and Settings\Propriétaire\Bureau\DiagHelp\grep.exe c:\Documents and Settings\Propriétaire\Bureau\DiagHelp\LFiles.exe c:\Documents and Settings\Propriétaire\Bureau\DiagHelp\LISTDLLS.exe c:\Documents and Settings\Propriétaire\Bureau\DiagHelp\pslist.exe c:\Documents and Settings\Propriétaire\Bureau\DiagHelp\streams.exe c:\Documents and Settings\Propriétaire\Bureau\DiagHelp\swreg.exe c:\Documents and Settings\Propriétaire\Local Settings\Temp\GLB1A2B.EXE c:\Documents and Settings\Propriétaire\Local Settings\Temp\Install_Messenger.exe c:\Documents and Settings\Propriétaire\Local Settings\Temp\setup_wm.exe c:\Documents and Settings\Propriétaire\Local Settings\Temp\Div4.tmp\DivXInstaller.exe c:\Documents and Settings\Propriétaire\Local Settings\Temp\pft14~tmp\iu2indrv.exe c:\Documents and Settings\Propriétaire\Local Settings\Temp\pft5~tmp\_ISDel.exe c:\Documents and Settings\Propriétaire\Local Settings\Temp\pft5~tmp\Setup.exe c:\Documents and Settings\Propriétaire\Local Settings\Temp\pft8~tmp\Setup.exe c:\Documents and Settings\Propriétaire\Local Settings\Temp\Répertoire temporaire 1 pour AGP_1170.zip\AGP\SETUP.EXE c:\Documents and Settings\Propriétaire\Local Settings\Temp\{43709BD8-A284-4F40-BAB6-8BFC1D6317A1}\{EFB7D050-CAD2-11D4-B34D-00105A1C23DD}\NVUninst.exe c:\Documents and Settings\Propriétaire\Local Settings\Temp\{43709BD8-A284-4F40-BAB6-8BFC1D6317A1}\{EFB7D050-CAD2-11D4-B34D-00105A1C23DD} vuninst-amd64.exe c:\Documents and Settings\Propriétaire\Local Settings\Temp\{43709BD8-A284-4F40-BAB6-8BFC1D6317A1}\{EFB7D050-CAD2-11D4-B34D-00105A1C23DD} vuninst-ia64.exe c:\Documents and Settings\Propriétaire\Local Settings\Temp\{43709BD8-A284-4F40-BAB6-8BFC1D6317A1}\{EFB7D050-CAD2-11D4-B34D-00105A1C23DD} vupnp-amd64.exe c:\Documents and Settings\Propriétaire\Local Settings\Temp\{43709BD8-A284-4F40-BAB6-8BFC1D6317A1}\{EFB7D050-CAD2-11D4-B34D-00105A1C23DD} vupnpbr.exe c:\Documents and Settings\Propriétaire\Local Settings\Temp\{43709BD8-A284-4F40-BAB6-8BFC1D6317A1}\{EFB7D050-CAD2-11D4-B34D-00105A1C23DD} vupnp-ia64.exe c:\Documents and Settings\Propriétaire\Local Settings\Temp\{CF596506-7A0E-4297-B968-0E9B4803C120}\Downloadexe.exe c:\Documents and Settings\Propriétaire\Mes documents\HijackThis\HijackThis.exe c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll c:\Documents and Settings\Propriétaire\Local Settings\Application Data\Macromedia\Flash 8\en\Configuration\External Libraries\FLfile.dll hijackthis: Logfile of HijackThis v1.99.1 Scan saved at 12:33:46, on 2007-03-07 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16414) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\Mixer.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\WinRAR\WinRAR.exe C:\WINDOWS\System32\WScript.exe C:\Program Files\Windows NT\Accessoires\WORDPAD.EXE C:\WINDOWS\system32\cmd.exe C:\WINDOWS\system32 otepad.exe C:\Documents and Settings\Propriétaire\Bureau\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.thottbot.com/?s= R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - Startup: MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader eader_sl.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options group: [INTERNATIONAL] International* O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/common/asusTek_sys_ctrl.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/... O17 - HKLM\System\CCS\Services\Tcpip\..\{6F385647-4343-4C8F-AA47-237E858BD2BC}: NameServer = 67.69.184.79 206.47.244.89 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~2\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~2\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) je vous remecie tous a l'avance a tous ceux qui prendront le temps de se penché sur mon probleme :)

Virus détecter par avast win32 trojan-gen

9 réponses

Discussions similaires

Newsletters