Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  SECURITE


|||-  

Problème avec Win32

 

dom974 et 1 utilisateur anonyme
Ajouter une réponse
 

 
Page photos
 
     
Vider la liste des messages à citer
 
 Page :
1
Auteur
 Sujet :

Problème avec Win32

Prévenir les modérateurs en cas d'abus 
Joeboo
joeboo
  1. Posté le 21/05/2006 à 17:46:08  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonjour, je suis au prise avec trois virus...

 Win32:Adloader-AC [Trj]

 Win32:Zlob-BN [Trj]

 Win32:Trojano-CL [Trj]

 J'ai effectué Spybot, Ad-Aware, Avast, Ewido.. Malgré cela, impossible de supprimer ces virus.. En faite, Avast réussis a les trouver, a les supprimer mais ils reviennent toujours.. Comment les supprimers définitivement.. ??

 Merci

 PS: Désolé si mon message n'est pas édité je sais pas comment ..

did71
Tu cartonnes ! (de 500 à 999 messages postés)
  1. Posté le 21/05/2006 à 17:53:18  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
bonjour,

 télécharge ewido :

 http://www.ewido.net/en/download/

 installes le, met le à jour et scan
 (Important: pendant l'installation, sur la page "Additional Options" décoche les deux options "Install background guard" et "Install scan via context menu" ).

 télécharge HijackThis, clique sur do a system scan and save a log file:
 http://www.merijn.org/files/hijackthis.zip


 Poste le rapport ewido et hijackthis.

 a+


---------------
[/url]
(Publicité)
joeboo
  1. Posté le 21/05/2006 à 18:21:18  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Re-bonjour... Voici les résultat des scan demandé:

 ------------------------------​---------------------------
 ewido anti-malware - Rapport de scan
 ------------------------------​---------------------------

 + Créé le:  13:18:04, 2006-05-21
 + Somme de contrôle: DD4730B

 + Résultats du scan:

  C:\Documents and Settings\Stephane  Dupont\Cookies\stephane  dupont@doubleclick[2].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
  C:\Documents and Settings\Stephane  Dupont\Cookies\stephane  dupont@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
  C:\Documents and Settings\Stephane  Dupont\Cookies\stephane  dupont@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
  C:\Documents and Settings\Stephane  Dupont\Cookies\stephane  dupont@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder


 ::Fin du rapport


 Logfile of HijackThis v1.99.1
 Scan saved at 13:19:09, on 2006-05-21
 Platform: Windows XP SP2 (WinNT 5.01.2600)
 MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 Running processes:
 C:\WINDOWS\System32\smss.exe
 C:\WINDOWS\system32\winlogon.e​xe
 C:\WINDOWS\system32\services.e​xe
 C:\WINDOWS\system32\lsass.exe
 C:\WINDOWS\system32\Ati2evxx.e​xe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\System32\svchost.ex​e
 C:\WINDOWS\system32\spoolsv.ex​e
 C:\WINDOWS\system32\Ati2evxx.e​xe
 C:\WINDOWS\Explorer.EXE
 C:\PROGRA~1\ALWILS~1\Avast4\as​hDisp.exe
 C:\Program Files\Java\jre1.5.0_06\bin\jus​ched.exe
 C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
 C:\Program Files\iTunes\iTunesHelper.exe
 C:\Program Files\QuickTime\qttask.exe
 C:\Program Files\Winamp\winampa.exe
 C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe
 C:\Program Files\MSN Messenger\MsnMsgr.Exe
 C:\PROGRA~1\HEWLET~1\HPSHAR~1\​hpgs2wnf.exe
 C:\Program Files\Skype\Phone\Skype.exe
 C:\Program Files\Hewlett-Packard\AiO\hp psc 700 series\Bin\hpobrt07.exe
 C:\PROGRA~1\HEWLET~1\AiO\Share​d\Bin\hpoevm07.exe
 C:\Program Files\Hewlett-Packard\AiO\Shar​ed\bin\hpOSTS07.exe
 C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
 C:\Program Files\Alwil Software\Avast4\ashServ.exe
 C:\WINDOWS\system32\drivers\CD​AC11BA.EXE
 C:\WINDOWS\system32\svchost.ex​e
 C:\Program Files\iPod\bin\iPodService.exe
 C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
 C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\System32\svchost.ex​e
 C:\Program Files\Internet Explorer\IEXPLORE.EXE
 C:\Program Files\ewido anti-malware\ewidoctrl.exe
 C:\WINDOWS\system32\NOTEPAD.EX​E
 C:\Documents and Settings\Stephane  Dupont\Bureau\HijackThis.exe

 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://www.yahoo.ca/
 R1 - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings,ProxyOverride = localhost
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me =
 R3 - URLSearchHook: (no name) - <default> - (no file)
 O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7​D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
 O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7​942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.​dll
 O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF​1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv​.dll
 O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
 O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.​exe
 O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\as​hDisp.exe
 O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jus​ched.exe
 O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
 O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
 O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe"  -osboot
 O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
 O4 - HKCU\..\Run: [DVDXGhost] C:\Program Files\DVD X Ghost\DVDXGhost.EXE
 O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
 O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adob​e Gamma Loader.exe
 O4 - Global Startup: HPAiODevice(hp psc 700 series) - 1.lnk = C:\Program Files\Hewlett-Packard\AiO\hp psc 700 series\Bin\hpobrt07.exe
 O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
 O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Off​ice10\EXCEL.EXE/3000
 O8 - Extra context menu item: Web Rebates. - file://C:\Program Files\WebRebates4\websrebates\​webtrebates\toprC0.htm
 O14 - IERESET.INF: START_PAGE_URL=http://www.info​click.ca
 O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04​F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840 [...] scan53.cab
 O18 - Protocol: bw+0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw+0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9​B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305​202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.​dll" (file missing)
 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305​202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.​dll" (file missing)
 O18 - Protocol: offline-8876480 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
 O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.e​xe
 O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.e​xe
 O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
 O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
 O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
 O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CD​AC11BA.EXE
 O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1​1\Intel 32\IDriverT.exe
 O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - C:\Program Files\RealVNC\VNC4\WinVNC4.exe​" -service (file missing)

 Voilà...

 A plus et merci

did71
Tu cartonnes ! (de 500 à 999 messages postés)
  1. Posté le 21/05/2006 à 18:31:08  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
re,

 rien de bien méchant dans hijackthis.

 relance hijackthis, coche les lignes citées ci dessous et fix checked (toutes fenêtres IE fermées) :

 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me =
 R3 - URLSearchHook: (no name) - <default> - (no file)
 O8 - Extra context menu item: Web Rebates. - file://C:\Program Files\WebRebates4\websrebates\​webtrebates\toprC0.htm
 O18 - Protocol: bw+0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw+0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9​B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0s - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305​202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.​dll" (file missing)
 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305​202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.​dll" (file missing)
 O18 - Protocol: offline-8876480 - {4231684A-66C7-40E2-8B52-A289A​572B8BF} - C:\Program Files\Logitech\Desktop

 passe ensuite un scan en ligne ici:

 http://webscanner.kaspersky.fr/

 poste le rapport kaspersky et un nouveau hijackthis

 a+


---------------
[/url]
joeboo
  1. Posté le 21/05/2006 à 22:40:17  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Re :)

 Voici donc les résultat apres le scan :)

 Logfile of HijackThis v1.99.1
 Scan saved at 17:37:52, on 2006-05-21
 Platform: Windows XP SP2 (WinNT 5.01.2600)
 MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 Running processes:
 C:\WINDOWS\System32\smss.exe
 C:\WINDOWS\system32\winlogon.e​xe
 C:\WINDOWS\system32\services.e​xe
 C:\WINDOWS\system32\lsass.exe
 C:\WINDOWS\system32\Ati2evxx.e​xe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\System32\svchost.ex​e
 C:\WINDOWS\system32\spoolsv.ex​e
 C:\WINDOWS\system32\Ati2evxx.e​xe
 C:\WINDOWS\Explorer.EXE
 C:\PROGRA~1\ALWILS~1\Avast4\as​hDisp.exe
 C:\Program Files\Java\jre1.5.0_06\bin\jus​ched.exe
 C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
 C:\Program Files\iTunes\iTunesHelper.exe
 C:\Program Files\QuickTime\qttask.exe
 C:\Program Files\Winamp\winampa.exe
 C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe
 C:\Program Files\MSN Messenger\MsnMsgr.Exe
 C:\PROGRA~1\HEWLET~1\HPSHAR~1\​hpgs2wnf.exe
 C:\Program Files\Skype\Phone\Skype.exe
 C:\Program Files\Hewlett-Packard\AiO\hp psc 700 series\Bin\hpobrt07.exe
 C:\PROGRA~1\HEWLET~1\AiO\Share​d\Bin\hpoevm07.exe
 C:\Program Files\Hewlett-Packard\AiO\Shar​ed\bin\hpOSTS07.exe
 C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
 C:\Program Files\Alwil Software\Avast4\ashServ.exe
 C:\WINDOWS\system32\drivers\CD​AC11BA.EXE
 C:\WINDOWS\system32\svchost.ex​e
 C:\Program Files\iPod\bin\iPodService.exe
 C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
 C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\System32\svchost.ex​e
 C:\Program Files\ewido anti-malware\ewidoctrl.exe
 C:\WINDOWS\system32\hpoipm07.e​xe
 C:\Program Files\Internet Explorer\IEXPLORE.EXE
 C:\Documents and Settings\Stephane  Dupont\Bureau\HijackThis.exe

 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://www.yahoo.ca/
 R1 - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings,ProxyOverride = localhost
 O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7​D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
 O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7​942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.​dll
 O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF​1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv​.dll
 O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
 O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.​exe
 O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\as​hDisp.exe
 O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jus​ched.exe
 O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
 O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
 O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe"  -osboot
 O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
 O4 - HKCU\..\Run: [DVDXGhost] C:\Program Files\DVD X Ghost\DVDXGhost.EXE
 O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
 O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adob​e Gamma Loader.exe
 O4 - Global Startup: HPAiODevice(hp psc 700 series) - 1.lnk = C:\Program Files\Hewlett-Packard\AiO\hp psc 700 series\Bin\hpobrt07.exe
 O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
 O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Off​ice10\EXCEL.EXE/3000
 O14 - IERESET.INF: START_PAGE_URL=http://www.info​click.ca
 O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C​29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr [...] nicode.cab
 O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04​F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840 [...] scan53.cab
 O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
 O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.e​xe
 O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.e​xe
 O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
 O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
 O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
 O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CD​AC11BA.EXE
 O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1​1\Intel 32\IDriverT.exe
 O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - C:\Program Files\RealVNC\VNC4\WinVNC4.exe​" -service (file missing)


 Et avec Kaspersky :


 Paramètres d'analyse
 Analyser avec la base antivirus suivante standard
 Analyser les archives vrai
 Analyser les bases de messagerie. vrai
 
 Cible de l'analyse Poste de travail
 A:\
 C:\
 D:\
 E:\  
 
 Statistiques de l'analyse
 Total d'objets analysés : 79396
 Nombre de virus trouvés 2
 Nombre d'objets infectés 2
 Nombre d'objets suspects 0
 Durée de l'analyse 00:33:15

 Nom de l'objet infecté Nom du virus Dernière action
 C:\WINDOWS\system32\regperf.ex​e  Infecté: Trojan-Downloader.Win32.Zlob.p​h  ignoré  
 
 C:\WINDOWS\system32\unlpsvcs.e​xe  Infecté: Trojan.Win32.Crypt.t  ignoré  
 
 Analyse terminée.


 Voilà...Je dois dire qu'il y a tout de même amélioration :)

(Publicité)
did71
Tu cartonnes ! (de 500 à 999 messages postés)
  1. Posté le 22/05/2006 à 17:50:57  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
bonjour,

 recherche et supprime en mode sans échec si nécessaire, les fichiers en gras ci dessous :

 C:\WINDOWS\system32\regperf.exe
 C:\WINDOWS\system32\unlpsvcs.exe

 repasse kaspersky et poste le rapport

 a+


---------------
[/url]
joeboo
  1. Posté le 22/05/2006 à 18:49:18  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Voila cé fait...Rapport Kaspersky, aucun malware ou virus détecté...

 MErci pour tout :)

 Joeboo :)

did71
Tu cartonnes ! (de 500 à 999 messages postés)
  1. Posté le 22/05/2006 à 18:53:10  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
re,

 de rien!

 Peux tu rajouter résolu au titre de ton message

 a+


---------------
[/url]
(Publicité)
 Page :
1

Aller à :
 

Sujets relatifs
problème avec Ccleaner [Résolu] probleme clavier (virus possible)
win32.downloader.gen (MalwareC) Problème de lenteur avec PC Samsung
problème depuis mise à jour Avast (résolu) Ai supprimé toolbar depuis problème avec barre d'outils IE10
backdoor.win32.hupigon problème résolu Impossible de mettre à jour mon PC
une variante de Win32/Bundled.Toolbar.Ask Application Connexion wifi se coupe après 3 secondes suite à problème avec Avast
Plus de sujets relatifs à : Problème avec Win32

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
iworm_attck_v122.02a svp de l'aide!!! 11
Au secours !!! 4
Yazzle Sudoku 18
aide pour dialer 12
Virus et System Alert 42