Behaveslike:win32.trojan.downloader

Mityhril -  
 Mityhril -
Bonjour,

J'ai chope ce trojan hier soir et fait toutes les analyses necessaires. Je post les rapports j'aimerai savoir quoi faire par la suite.

AVG :

D:\System Volume Information\_restore{C8181FA6-1B18-4F8E-80F6-CEABDF6A0C19}\RP835\A0071426.exe -> Adware.Relevant : Ignoré.
D:\Documents and Settings\All Users\Application Data\{BFB5F154-9212-46F3-B547-AC6106030A54}\tbu34A\toolbar.dll -> Adware.Softomate : Ignoré.
D:\Program Files\SFS Toolbar\toolbar.dll -> Adware.Softomate : Ignoré.
D:\Documents and Settings\All Users\Application Data\{BFB5F154-9212-46F3-B547-AC6106030A54}\spyrem.exe -> Adware.SpywareRem : Ignoré.
D:\Documents and Settings\All Users\Application Data\{BFB5F154-9212-46F3-B547-AC6106030A54}\tbu34A\spyrem.exe -> Adware.SpywareRem : Ignoré.
D:\Documents and Settings\All Users\Application Data\{BFB5F154-9212-46F3-B547-AC6106030A54}\tbu34A\tbhelper.dll -> Not-A-Virus.Adware.Agent : Ignoré.
D:\Program Files\SFS Toolbar\tbhelper.dll -> Not-A-Virus.Adware.Agent : Ignoré.
:mozilla.67:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.68:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.69:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.70:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.710:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.71:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.72:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.73:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.830:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Adjuggler : Ignoré.
:mozilla.213:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Adobe : Ignoré.
:mozilla.214:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Adobe : Ignoré.
:mozilla.215:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Adobe : Ignoré.
:mozilla.243:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Adtech : Ignoré.
:mozilla.244:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Adtech : Ignoré.
:mozilla.18:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.19:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.20:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.20:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.21:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.21:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.22:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.25:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.83:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Atdmt : Ignoré.
D:\Documents and Settings\mityhril\Cookies\mityhril@atdmt[2].txt -> TrackingCookie.Atdmt : Ignoré.
:mozilla.101:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Bluestreak : Ignoré.
:mozilla.27:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies.txt -> TrackingCookie.Bluestreak : Ignoré.
D:\Documents and Settings\mityhril\Cookies\mityhril@bluestreak[1].txt -> TrackingCookie.Bluestreak : Ignoré.
:mozilla.841:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Burstnet : Ignoré.
:mozilla.207:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Casalemedia : Ignoré.
:mozilla.208:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Casalemedia : Ignoré.
:mozilla.840:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Clickhype : Ignoré.
:mozilla.679:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Clickzs : Ignoré.
:mozilla.680:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Clickzs : Ignoré.
:mozilla.715:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Clickzs : Ignoré.
:mozilla.716:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Clickzs : Ignoré.
:mozilla.16:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Doubleclick : Ignoré.
:mozilla.26:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies.txt -> TrackingCookie.Doubleclick : Ignoré.
:mozilla.262:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Estat : Ignoré.
:mozilla.198:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.199:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.200:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.811:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Googleadservices : Ignoré.
:mozilla.812:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Googleadservices : Ignoré.
:mozilla.671:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Hitbox : Ignoré.
:mozilla.681:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Hitbox : Ignoré.
:mozilla.22:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Imrworldwide : Ignoré.
:mozilla.23:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Imrworldwide : Ignoré.
:mozilla.895:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Liveperson : Ignoré.
:mozilla.896:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Liveperson : Ignoré.
:mozilla.111:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Mediaplex : Ignoré.
:mozilla.387:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Msn : Ignoré.
:mozilla.719:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Msn : Ignoré.
:mozilla.720:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Msn : Ignoré.
:mozilla.721:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Msn : Ignoré.
:mozilla.317:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Myaffiliateprogram : Ignoré.
:mozilla.405:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Netflame : Ignoré.
:mozilla.406:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Netflame : Ignoré.
:mozilla.100:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.95:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.96:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.97:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.98:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.99:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.400:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Skype : Ignoré.
:mozilla.481:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Skype : Ignoré.
:mozilla.150:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.151:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.152:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.153:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.154:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.201:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Statcounter : Ignoré.
:mozilla.204:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Statcounter : Ignoré.
:mozilla.197:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Tribalfusion : Ignoré.
:mozilla.269:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.270:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.271:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.247:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Webtrends : Ignoré.
:mozilla.249:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Webtrends : Ignoré.
:mozilla.278:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Yadro : Ignoré.
:mozilla.188:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.189:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.190:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.191:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.192:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.194:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Zedo : Ignoré.
:mozilla.195:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Zedo : Ignoré.
:mozilla.196:D:\Documents and Settings\mityhril\Application Data\Mozilla\Firefox\Profiles\x5cww44n.default\cookies-1.txt -> TrackingCookie.Zedo : Ignoré.

BITDEFENDER :

D:\Documents and Settings\mityhril\Bureau\fpktqk.exe Suspect avec: BehavesLike:Win32.Trojan.Downloader
D:\Documents and Settings\mityhril\Bureau\fpktqk.exe Copié
D:\Documents and Settings\mityhril\Bureau\rxqwmu.exe Suspect avec: BehavesLike:Win32.Trojan.Downloader
D:\Documents and Settings\mityhril\Bureau\rxqwmu.exe Copié
D:\Documents and Settings\mityhril\Local Settings\Temp\Rar$DR00.766\Crack - Warcraft Iii 3 Keygen\wc3cdgen.exe Infecté avec: Trojan.Dropper.Agent.BPE
D:\Documents and Settings\mityhril\Local Settings\Temp\Rar$DR00.766\Crack - Warcraft Iii 3 Keygen\wc3cdgen.exe Désinfection impossible
D:\Documents and Settings\mityhril\Local Settings\Temp\Rar$DR00.766\Crack - Warcraft Iii 3 Keygen\wc3cdgen.exe Déplacé
D:\Documents and Settings\mityhril\Local Settings\Temporary Internet Files\Content.IE5\E6EXHH4M\adv[1].exe Suspect avec: BehavesLike:Win32.Trojan.Downloader
D:\Documents and Settings\mityhril\Local Settings\Temporary Internet Files\Content.IE5\E6EXHH4M\adv[1].exe Copié
D:\Documents and Settings\mityhril\Local Settings\Temporary Internet Files\Content.IE5\GR816N49\adv[1].exe Suspect avec: BehavesLike:Win32.Trojan.Downloader
D:\Documents and Settings\mityhril\Local Settings\Temporary Internet Files\Content.IE5\GR816N49\adv[1].exe Copié


HIJACK

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:59:07, on 26/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\csrss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\System32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\System32\wdfmgr.exe
D:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
D:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
D:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\Explorer.EXE
D:\PROGRA~1\softwin\BITDEF~1\bdmcon.exe
D:\Program Files\Softwin\BitDefender9\bdoesrv.exe
D:\PROGRA~1\softwin\BITDEF~1\bdnagent.exe
D:\PROGRA~1\softwin\BITDEF~1\bdswitch.exe
D:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
D:\WINDOWS\System32\LVCOMSX.EXE
D:\Program Files\Logitech\Video\LogiTray.exe
D:\Program Files\iTunes\iTunesHelper.exe
D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
D:\Program Files\Logitech\Video\FxSvr2.exe
D:\Program Files\Softwin\BitDefender9\vsserv.exe
D:\WINDOWS\System32\alg.exe
D:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\MSN Messenger\usnsvc.exe
D:\WINDOWS\system32\wuauclt.exe
I:\eMule\emule.exe
D:\WINDOWS\system32\wscntfy.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
D:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
D:\Program Files\MSN Messenger\msnmsgr.exe
D:\Program Files\Trend Micro\HijackThis\HijackThis.exe
D:\WINDOWS\notepad.exe
D:\WINDOWS\System32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.neo.cx
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: (no name) - {BFB5F154-9212-46F3-B547-AC6106030A54} - (no file)
O4 - HKLM\..\Run: [BDMCon] d:\PROGRA~1\softwin\BITDEF~1\bdmcon.exe
O4 - HKLM\..\Run: [BDOESRV] "D:\Program Files\Softwin\BitDefender9\bdoesrv.exe"
O4 - HKLM\..\Run: [BDNewsAgent] "D:\PROGRA~1\softwin\BITDEF~1\bdnagent.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] "D:\PROGRA~1\softwin\BITDEF~1\bdswitch.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIPTA] "D:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] D:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [LVCOMSX] D:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] D:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] D:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [VideoraiPodConverter] D:\Program Files\VideoraiPodConverter\VideoraiPodConverter.exe -t
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "D:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [LDM] D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [Skype] "D:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [msnmsgr] "D:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Windows Live Messenger.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D6FCA8ED-4715-43DE-9BD2-2789778A5B09} (NPKCX Control) - https://nprotect.ncsoft.co.kr/nProtect/keycrypt/npkcx.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O18 - Protocol: bw+0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - D:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - D:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - D:\Program Files\iPod\bin\iPodService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - D:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: npkcsvc - INCA Internet Co., Ltd. - D:\WINDOWS\System32\npkcsvc.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - D:\Program Files\Softwin\BitDefender9\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - D:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe

Merci d'avance

5 réponses

Réponse 1 / 5
tristan07 Messages postés 899 Statut Membre 35
 
recommence ton scan AVG mais cette fois commence par faire d'abord dans l'onglet analyse puis parametres choisis dans comment reagir ?
Définir definir l'action par default pour les logiciels maleveillants détectes tu regardes juste dessous tu as ignoré tu clic dessus et tu fais supprimer ou en sont tes soucis ?
0
Réponse 2 / 5
Mityhril
 
Ouais j'avais pas vu mais j'ai tout supprimer a la fin. Pour ce qui est du soucis ca me creer des fichiers exe que je peux aps supprimer sur mon bureau et ca envoi le trojan a tous les contacts co sur msn des que je me connecte. Je ne sais pas quelle lignes faut suppri sur hijack ou non. C'est pour ca que j'attend une reponse permettant de supprimer cette connerie
0
Réponse 3 / 5
Mityhril
 
Svp vraiment personne ? je repost un hijack si qqun peut me dire ce qu'il faut reparer

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:47:32, on 27/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\System32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\Explorer.EXE
D:\PROGRA~1\softwin\BITDEF~1\bdmcon.exe
D:\Program Files\Softwin\BitDefender9\bdoesrv.exe
D:\PROGRA~1\softwin\BITDEF~1\bdnagent.exe
D:\PROGRA~1\softwin\BITDEF~1\bdswitch.exe
D:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
D:\WINDOWS\System32\LVCOMSX.EXE
D:\Program Files\Logitech\Video\LogiTray.exe
D:\Program Files\iTunes\iTunesHelper.exe
D:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
D:\Program Files\Logitech\Video\FxSvr2.exe
D:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
D:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
D:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
D:\Program Files\Softwin\BitDefender9\vsserv.exe
D:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\MSN Messenger\usnsvc.exe
D:\WINDOWS\system32\wscntfy.exe
D:\WINDOWS\system32\wuauclt.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.neo.cx
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: (no name) - {BFB5F154-9212-46F3-B547-AC6106030A54} - (no file)
O4 - HKLM\..\Run: [BDMCon] d:\PROGRA~1\softwin\BITDEF~1\bdmcon.exe
O4 - HKLM\..\Run: [BDOESRV] "D:\Program Files\Softwin\BitDefender9\bdoesrv.exe"
O4 - HKLM\..\Run: [BDNewsAgent] "D:\PROGRA~1\softwin\BITDEF~1\bdnagent.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] "D:\PROGRA~1\softwin\BITDEF~1\bdswitch.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIPTA] "D:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] D:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [LVCOMSX] D:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] D:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] D:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [VideoraiPodConverter] D:\Program Files\VideoraiPodConverter\VideoraiPodConverter.exe -t
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "D:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [LDM] D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [Skype] "D:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [msnmsgr] "D:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Windows Live Messenger.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D6FCA8ED-4715-43DE-9BD2-2789778A5B09} (NPKCX Control) - https://nprotect.ncsoft.co.kr/nProtect/keycrypt/npkcx.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O18 - Protocol: bw+0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {0FA41890-5667-48CD-9B59-0B434A08AFBE} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - D:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - D:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - D:\Program Files\iPod\bin\iPodService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - D:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: npkcsvc - INCA Internet Co., Ltd. - D:\WINDOWS\System32\npkcsvc.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - D:\Program Files\Softwin\BitDefender9\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - D:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
0
Réponse 4 / 5
tristan07 Messages postés 899 Statut Membre 35
 
tiens scan avec msn fix : http://sosvirus.changelog.fr/MSNFix.zip fais tout ce qui est expliquer ici :https://www.malekal.com/supprimer-virus-desinfecter-pc/
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 5
Mityhril
 
Voila c'est fait. J'avais bien infection j'ai repare et voici le rapport.

MSNFix 1.644

D:\Documents and Settings\mityhril\Bureau\MSNFix\MSNFix
Fix exécuté le 27/01/2008 - 15:40:41,15 By mityhril
mode normal

************************ Recherche les fichiers présents

... D:\WINDOWS\explorer.exe.tmp
... D:\DOCUME~1\mityhril\LOCALS~1\Temp\*.dmp
... D:\WINDOWS\b???.exe
... D:\WINDOWS\IFinst27.exe

************************ Recherche les dossiers présents

... D:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft\Network\Downloader\
... D:\Install\




************************ Suppression des fichiers

.. OK ... D:\WINDOWS\explorer.exe.tmp
.. OK ... D:\DOCUME~1\mityhril\LOCALS~1\Temp\*.dmp
.. OK ... D:\WINDOWS\b???.exe
.. OK ... D:\WINDOWS\IFinst27.exe


************************ Suppression des dossiers

/!\ ... D:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft\Network\Downloader\
/!\ ... D:\Install\


************************ Nettoyage du registre



************************ Fichiers suspects

Aucun Fichier trouvé


Les fichiers et clés de registre supprimés ont été sauvegardés dans le fichier 27012008_15441360.zip
0

Discussions similaires

Virus BehavesLike:Win32.ExplorerHijack
pilotepoisson -
gui -

7 réponses