virus infectant windows live messenger Résolu/Fermé

Question

bonjour

tout a commencer lorsque un de mes contact "ma envoyer" un fichier appelé "photo album 2007.zip" pensant que cela provenait de lui je l'est accepter et ouvert mais en realiter ce fichier etait un virus qui infecte msn/wlm en fait il ouvre tour a tour les fenetre de conversation des contact connecté et envoi le fichier en mettant une phrase en anglais disant a peu pres (c'est les photos des mes vacance) et ce probleme revient tres regulierement et il me ferme mes fenetres de conversation ouverte et me rend impossible de les r'ouvrirs

que puis-je faire pour règler ce probleme ?
merci de bien vouloir m'aider

vin110

seb · Answer

bonjour,
tu as essayé ton antivirus ou un antivirus en ligne, un anti spy (spybot) un anti adware (ad-aware), netoyage de disque, vidage des dossiers de fichiers temporaire (easy cleaner) puis hijackthis qui trouveras surement quelque chose (colle le log sur hijackthis.de)
et finalement desinstal et reinstall live messenger
a tout a l'heure

vin110 · Answer

voici mon rapport bit defender si cela peut servir



BitDefender Online Scanner
Rapport d'analyse généré à: Sun, Apr 08, 2007 - 19:45:40
Voie d'analyse: A:\;C:\;D:\;E:\;F:\;G:\;H:\;I:\;J:\; 
 
Statistiques
 
Temps
 02:14:17
 
Fichiers
 360864
 
Directoires
 9616
 
Secteurs de boot
 2
 
Archives
 3357
 
Paquets programmes
 24209
 
 
Résultats
 
Virus identifiés
 2
 
Fichiers infectés
 9
 
Fichiers suspects
 0
 
Avertissements
 0
 
Désinfectés
 0
 
Fichiers effacés
 8
 
  
Info sur les moteurs
 
Définition virus
 484235
 
Version des moteurs
 AVCORE v1.0 (build 2397) (i386) (Feb 8 2007 14:24:08)
 
Analyse des plugins
 14
 
Archive des plugins
 38
 
Unpack des plugins
 6
 
E-mail plugins
 6
 
Système plugins
 1
 
 
Paramètres d'analyse
 
Première action
 Désinfecté
 
Seconde Action
 Supprimé
 
Heuristique
 Oui
 
Acceptez les avertissements
 Oui
 
Extensions analysées
 *;
 
Excludez les extensions
  
 
Analyse d'emails
 Oui
 
Analyse des Archives
 Oui
 
Analyser paquets programmes
 Oui
 
Analyse des fichiers
 Oui
 
Analyse de boot
 Oui
 
 
  Fichier analysé
  Statut
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152837.dll
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152838.dll
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152839.dll
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152840.dll
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152841.dll
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152842.dll
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152843.dll
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152844.dll
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152845.dll
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152846.dll
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152847.dll
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152848.dll
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152849.ico
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152850.dll
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152851.dll
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP409\A0152852.cfg
 Nettoyé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP441\A0157643.exe
 Infecté par: Trojan.FatObfus.Gen
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP441\A0157643.exe
 Echec de la désinfection
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP441\A0157643.exe
 Supprimé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP444\A0158837.exe=>(Instyler o)=>(Instyler Module 78)
 Infecté par: Trojan.FatObfus.Gen
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP444\A0158837.exe=>(Instyler o)=>(Instyler Module 78)
 Echec de la désinfection
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP444\A0158837.exe=>(Instyler o)=>(Instyler Module 78)
 Supprimé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP444\A0158837.exe=>(Instyler o)
 Echec de la mise à jour
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP447\A0159128.exe
 Infecté par: Trojan.FatObfus.Gen
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP447\A0159128.exe
 Echec de la désinfection
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP447\A0159128.exe
 Supprimé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP447\A0159129.exe
 Infecté par: Trojan.FatObfus.Gen
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP447\A0159129.exe
 Echec de la désinfection
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP447\A0159129.exe
 Supprimé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP447\A0159130.exe
 Infecté par: Trojan.FatObfus.Gen
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP447\A0159130.exe
 Echec de la désinfection
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP447\A0159130.exe
 Supprimé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP447\A0159131.exe
 Infecté par: Trojan.FatObfus.Gen
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP447\A0159131.exe
 Echec de la désinfection
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP447\A0159131.exe
 Supprimé
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP467\A0162781.pif
 Infecté par: Worm.Sedoubot.A
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP467\A0162781.pif
 Echec de la désinfection
 
C:\System Volume Information\_restore{6B96564A-A9C2-4705-ABBB-CF7B9B11BD40}\RP467\A0162781.pif
 Supprimé
 
C:\WINDOWS\system32\rdihost.dll
 Infecté par: Worm.Sedoubot.A
 
C:\WINDOWS\system32\rdihost.dll
 Echec de la désinfection
 
C:\WINDOWS\system32\rdihost.dll
 Echec de la suppression
 
C:\Program Files\Adverts\uninst.exe
 Infecté par: Trojan.FatObfus.Gen
 
C:\Program Files\Adverts\uninst.exe
 Echec de la désinfection
 
C:\Program Files\Adverts\uninst.exe
 Supprimé

vin110 · Answer

up

vin110 · Answer

personne ne peut m'aider ???

tomasi · Answer

bonjour, 

je vous ecris car j'ai aussi ete infecté par ce virus, le pb c'est que je ne peux pas faire les manip que vous indiquez ! en effet, voyant le virus j'ai eu la mauvaise idée de vouloir l'exterminer en faisant une restauration destructrice de ma partition principale . et j'ignore s'il s'est propagé dans la partie caché de mon disque destiné a la restauration.

de plus des que je suis sur windows vista, le systeme s'allume, et quelques minutes apres un ecran bleu (avec des traies blanc) et l'ordi s'etteind ...aidez moi svppp !!!

civicvtec73 · Answer

Logfile of HijackThis v1.99.1
Scan saved at 22:02:21, on 17/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\csrss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
D:\Program Files\Alwil Software\Avast4\ashServ.exe
D:\WINDOWS\system32\spoolsv.exe
d:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
D:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
D:\WINDOWS\system32\slserv.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Windows Media Player\WMPNetwk.exe
D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
D:\WINDOWS\System32\alg.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\MessengerPlus! 3\MsgPlus.exe
D:\WINDOWS\SOUNDMAN.EXE
D:\WINDOWS\ALCWZRD.EXE
D:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\apps\Powercinema\PCMService.exe
D:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
D:\Program Files\iTunes\iTunesHelper.exe
D:\WINDOWS\system32\dla	fswctrl.exe
D:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
D:\Program Files\Macrogaming\SweetIM\SweetIM.exe
D:\WINDOWS\system32\USBPlug.exe
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
D:\Program Files\Logitech\QuickCam10\QuickCam10.exe
D:\Program Files\HP\HP Software Update\HPWuSchd2.exe
D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
D:\Program Files\SuperCopier2\SuperCopier2.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Windows Media Player\WMPNSCFG.exe
D:\program files\steam\steam.exe
D:\Program Files\Messenger\msmsgs.exe
D:\Program Files\Picasa2\PicasaMediaDetector.exe
D:\Program Files\MessengerSkinner\MessengerSkinner.exe
D:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
D:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
D:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe
D:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
D:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe
D:\Program Files\MSN Messenger\usnsvc.exe
D:\Program Files\Java\jre1.5.0_10\bin\jucheck.exe
D:\WINDOWS\system\lsass.exe
D:\DOCUME~1\patrick\LOCALS~1\Temp\Rar$DI08.719\img0012-www.photostorage.com
D:\DOCUME~1\patrick\LOCALS~1\Temp\Rar$DI11.984\img0012-www.photostorage.com
D:\DOCUME~1\patrick\LOCALS~1\Temp\Rar$DI00.016\img0012-www.photostorage.com
D:\Program Files\MSN Messenger\msnmsgr.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\Documents and Settings\patrick\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - D:\Program Files\Macrogaming\SweetIMBarForIE	oolbar.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - D:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - D:\PROGRA~1\MACROG~1\SWEETI~1	oolbar.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - D:\WINDOWS\system32\dla	fswshx.dll
O2 - BHO: OpinionBar IE monitor - {6607C683-AE7C-11D4-ACD7-0050DAC291A2} - D:\PROGRA~1\OPINIO~1\MYIEMO~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - D:\Program Files\Macrogaming\SweetIMBarForIE	oolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - D:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [MessengerPlus3] "D:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAShCut.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ATIPTA] "D:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [PCMService] "c:\apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [LogitechVideo[inspector]] D:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] D:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [dla] D:\WINDOWS\system32\dla	fswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "D:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [Adobe Photo Downloader] "D:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SweetIM] D:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKLM\..\Run: [dscService] D:\WINDOWS\system32\USBPlug.exe
O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "D:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "D:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [HP Software Update] D:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Windows Lsass Services] D:\WINDOWS\system\lsass.exe
O4 - HKCU\..\Run: [LDM] D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "D:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [SweetIM] D:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKCU\..\Run: [SuperCopier2.exe] D:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WMPNSCFG] D:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Steam] "d:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Picasa Media Detector] D:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKCU\..\Run: [msnmsgr] ~"D:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [messengerskinner] D:\Program Files\MessengerSkinner\MessengerSkinner.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = D:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = D:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = D:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Groom - {66F83792-DAE1-4823-8F20-ADA94B33A4FF} - D:\Program Files\Toox\Groom\Groom.exe (HKCU)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by117fd.bay117.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {5F4D3335-3194-4167-85AE-E7325F2695EF} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1068_em_XP.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypix.com/fr/fr/importer/ImageUploader4.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{EE65D175-1A43-4130-A260-7F9C173CC884}: NameServer = 212.30.96.108,212.203.124.146
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: MsgPlusLoader.dll
O20 - Winlogon Notify: WgaLogon - D:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - D:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - D:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - D:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - D:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LVCOMSer - Logitech Inc. - D:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - d:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - D:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - D:\WINDOWS\SYSTEM32\slserv.exe

netbus · Answer

essaye subseven  tres efficace mais bon cela vient peut etre aussi de ta connerie

piksounette · Answer

bon ba moi aussi je viens de recevoir un virus quand j'était sur msn je ne suis pas très forte en informatique donc si quelqu'un pourrait m'aider sa serait sympa merci d'avance

stenso · Answer

voila j'ai fais ce qu'il es dit
et maintenant svp ???




Logfile of HijackThis v1.99.1
Scan saved at 13:59:54, on 05/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device 

Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\System32
vsvc32.exe
C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
C:\WINDOWS\system32\ps2.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\adiras.exe
C:\WINDOWS\system32undll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\PROGRA~1\PRESAR~1\Presario\XPHWWRP4

\plugin\bin\pchbutton.exe
C:\WINDOWS\system32undll32.exe
C:\Program Files\Shareaza\Shareaza.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\WINDOWS\system32egscan.exe
C:\Program 

Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\SAGEM\SAGEM F@st 800-908\dslmon.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows 

Live\WLLoginProxy.exe
C:\Documents and Settings\Propriétaire\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet 

Explorer\Main,Default_Page_URL = http://qfr10.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet 

Explorer\Main,Default_Search_URL = http://srch-

qfr10.hpwis.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page 

= https://www.free.fr/freebox/index.html
R1 - HKLM\Software\Microsoft\Internet 

Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar 

= http://srch-qfr10.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search 

Page = http://srch-qfr10.hpwis.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page 

= http://www.ustart.org
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet 

Settings,ProxyOverride = ;*.free.*;*.online.*;;<local>
R0 - HKCU\Software\Microsoft\Internet 

Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32

\userinit.exe,C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\services.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-

7695ECA05670} - C:\Program Files\Yahoo!

\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-

784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0

\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: URLLink - {4A2AACF3-ADF6-11D5-98A9-00E018981B9E} - 

C:\Program Files\NewDotNet
ewdotnet7_22.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-

D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-

8ECC-5164760863C6} - C:\Program Files\Fichiers 

communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - 

C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: (no name) - {9F911C46-D698-87AC-AE60-0F4CFF705351} - 

C:\DOCUME~1\PROPRI~1\APPLIC~1\ACTIVE~1\mpeg idle.exe (file 

missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-

CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-

B6FA-CE66B5AD205D} - C:\Program 

Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-

64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN 

Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - 

C:\Program Files\MSN Apps\MSN Toolbar\MSN 

Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-

0090271D4F88} - C:\Program Files\Yahoo!

\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} 

- c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [CamMonitor] c:\Program Files\HP\Digital 

Imaging\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers 

communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE 

C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded 

/nodetect
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [Microsoft Explorer] mssgms.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program 

Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [RealTray] C:\Program 

Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [adiras] adiras.exe
O4 - HKLM\..\Run: [OylRXfa7] C:\WINDOWS\hvnydi.exe
O4 - HKLM\..\Run: [Á³# K"h'þ9Óœ÷3rÅWC:\Program 

Files\ISTsvc\istsvc.exe] C:\WINDOWS\hvnydi.exe
O4 - HKLM\..\Run: [IST Service] C:\Program Files\ISTsvc\
O4 - HKLM\..\Run: [New.net Startup] rundll32 C:\PROGRA~1

\NEWDOT~1\NEWDOT~2.DLL,ClientStartup -s
O4 - HKLM\..\Run: [Microsoft Windows System] a.exe
O4 - HKLM\..\Run: [CLOCKTICKLIVEINFO] C:\Documents and 

Settings\All Users\Application 

Data\litehtmclocktick\IsoSixth.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe 

bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program 

Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program 

Files\Java\jre1.6.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [Flash Media] C:\DOCUME~1\PROPRI~1\LOCALS~1

\Temp\services.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4

\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program 

Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\RunServices: [Microsoft Explorer] mssgms.exe
O4 - HKLM\..\RunServices: [Microsoft Windows System] a.exe
O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - HKCU\..\Run: [Microsoft Explorer] mssgms.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1

\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\PRESAR~1

\Presario\XPHWWRP4\plugin\bin\pchbutton.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program 

Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [OM_Monitor] C:\Program 

Files\OLYMPUS\OLYMPUS Master\Monitor.exe -NoStart
O4 - HKCU\..\Run: [Skype] "C:\Program 

Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Shareaza] "C:\Program 

Files\Shareaza\Shareaza.exe" -tray
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program 

Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [Regscan] C:\WINDOWS\system32egscan.exe
O4 - HKCU\..\Run: [swg] C:\Program 

Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN 

Messenger\msnmsgr.exe" /background
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers 

communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: IMVU.lnk = C:\Program Files\IMVU\IMVUClient.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM 

F@st 800-908\dslmon.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - 

res://C:\Program Files\AOL Toolbar	oolbar.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-

00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-

4FCB-11CF-AAA5-00401C608501} - C:\Program 

Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Créer un Favori de l'appareil mobile - 

{2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program 

Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-

00C04FAE2D4F} - C:\Program Files\Microsoft 

ActiveSync\inetrepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil 

mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - 

C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-

00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-

4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!

\Common\yhexbmesfr.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-

00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-

00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-

a92d743db949} - C:\Documents and Settings\Propriétaire\Menu 

Démarrer\Programmes\IMVU\Run IMVU.lnk (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-

00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-

F110-11d2-BB9E-00C04F795683} - C:\Program 

Files\Messenger\msmsgs.exe
O9 - Extra button: Allocam Multi Vision - {2D6B57BF-71FA-41A3

-BDC5-3B5A25813D2E} - C:\PROGRA~1\ALLOCA~1\allocam.exe (file 

missing) (HKCU)
O9 - Extra 'Tools' menuitem: Allocam Multi Vision - {2D6B57BF

-71FA-41A3-BDC5-3B5A25813D2E} - C:\PROGRA~1\ALLOCA~1

\allocam.exe (file missing) (HKCU)
O14 - IERESET.INF: START_PAGE_URL=https://www.free.fr/freebox/index.html
O15 - Trusted Zone: www.secuser.com
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers 

Class) - 

http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} 

(MessengerStatsClient Class) - 

http://messenger.zone.msn.com/binary/MessengerStatsPAClient.ca

b31267.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers 

Class) - 

http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} 

(YInstStarter Class) - C:\Program Files\Yahoo!

\Common\yinsthelper.dll
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl 

Class) - http://messenger.zone.msn.com/FR-FR/a-

UNO1/GAME_UNO1.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall 

Control) - 

http://a840.g.akamai.net/7/840/537/2005111401/housecall.trendm

icro.com/housecall/xscan53.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} 

(MessengerStatsClient Class) - 

http://messenger.zone.msn.com/binary/MessengerStatsClient.cab3

1267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} 

(MsnMessengerSetupDownloadControl Class) - 

http://messenger.msn.com/download/msnmessengersetupdownloader.

cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - 

Installer) - 

http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} 

(MessengerStatsClient Class) - 

http://messenger.zone.msn.com/binary/MessengerStatsPAClient.ca

b56907.cab
O16 - DPF: {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} (CamfrogWEB 

Advanced Unicode Control) - 

https://www.bobtv.fr/download/cfweb_www.bobtv.fr-

download_instmodule.exe
O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} 

(IMDownloader Class) - 

http://www2.incredimail.com/contents/setup/downloader/imloader

.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper 

Flags Class) - 

http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire 

Showdown Class) - 

http://messenger.zone.msn.com/binary/SolitaireShowdown.cab3126

7.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-

8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} 

- C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32

\igfxsrvc.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-

94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program 

Files\Fichiers communs\Adobe Systems 

Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program 

Files\Fichiers communs\Apple\Mobile Device 

Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL 

Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - 

C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program 

Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - 

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service 

(file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program 

Files\Alwil Software\Avast4\ashWebSv.exe" /service (file 

missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - 

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program 

Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - 

C:\Program Files\Google\Common\Google 

Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - 

C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA 

Corporation - C:\WINDOWS\System32
vsvc32.exe
O23 - Service: Planificateur PC-BaX - Unknown owner - 

C:\Documents and Settings\Propriétaire\Application 

Data\Cristie\PC-BaX 4.30.1\_BSSVC.EXE

jh · Answer

picsounette explique moi ton probleme stp

Virus infectant windows live messenger

10 réponses

Discussions similaires