gael108

Membres

Afficher le profil Afficher son activité

Compteur de contenus
7
Inscription
le 2 octobre 2006
Dernière visite
le 16 octobre 2006

Autres informations

Mes langues
Français et Anglais

gael108's Achievements

Junior Member (3/12)

Réputation sur la communauté

virus véhiculé par msn/windows messenger

gael108 a répondu à un(e) sujet de gael108 dans Analyses et éradication malwares

Bonjour Charles Ingals, Désolé mais j'avais pas eu le temps de me pencher les problemes de mon pc ces derniers jours ... Enfin voilà qui est fait et donc voici les raports que tu m'as demandé: Rapport Daighelp hercher v1.0.1 par Malekal_morte http://www.malekal.com C:\WINDOWS\System32\wpa.dbl -->10/10/2006 23:07:01 C:\WINDOWS\System32\nvapps.xml -->10/10/2006 23:06:31 C:\WINDOWS\System32\urlmsnlink.dat -->10/10/2006 18:12:55 C:\WINDOWS\System32\msnlog.log -->09/10/2006 17:26:36 C:\WINDOWS\System32\rmoc3260.dll -->03/10/2006 14:53:26 C:\WINDOWS\System32\pndx5032.dll -->03/10/2006 14:53:10 C:\WINDOWS\System32\pndx5016.dll -->03/10/2006 14:53:10 C:\WINDOWS\System32\pncrt.dll -->03/10/2006 14:53:05 C:\WINDOWS\System32\118290.54 -->30/09/2006 13:59:48 C:\WINDOWS\System32\LuResult.txt -->27/09/2006 12:08:03 C:\WINDOWS\System32\lvcoinst.log -->16/09/2006 19:23:28 C:\WINDOWS\System32\MRT.exe -->11/09/2006 19:37:21 C:\WINDOWS\System32\vxblock.dll -->25/08/2006 05:47:00 C:\WINDOWS\System32\pxwave.dll -->25/08/2006 05:47:00 C:\WINDOWS\System32\pxsfs.dll -->25/08/2006 05:47:00 C:\WINDOWS\System32\pxmas.dll -->25/08/2006 05:47:00 C:\WINDOWS\System32\pxinsi64.exe -->25/08/2006 05:47:00 C:\WINDOWS\System32\pxinsa64.exe -->25/08/2006 05:47:00 C:\WINDOWS\System32\pxhpinst.exe -->25/08/2006 05:47:00 C:\WINDOWS\System32\pxdrv.dll -->25/08/2006 05:47:00 C:\WINDOWS\System32\pxcpya64.exe -->25/08/2006 05:47:00 C:\WINDOWS\System32\pxafs.dll -->25/08/2006 05:47:00 C:\WINDOWS\System32\fltlib.dll -->21/08/2006 14:26:15 C:\WINDOWS\System32\fltmc.exe -->21/08/2006 11:14:58 C:\WINDOWS\System32\capicom.dll -->03/08/2006 17:29:28 C:\WINDOWS\WindowsUpdate.log -->10/10/2006 23:13:37 C:\WINDOWS\0.log -->10/10/2006 23:06:42 C:\WINDOWS\wiadebug.log -->10/10/2006 23:06:41 C:\WINDOWS\ModemLog_Creatix V.9X DSP Data Fax Modem.txt -->10/10/2006 23:06:41 C:\WINDOWS\wiaservc.log -->10/10/2006 23:06:39 C:\WINDOWS\setupapi.log -->10/10/2006 23:06:37 C:\WINDOWS\bootstat.dat -->10/10/2006 23:06:26 C:\WINDOWS\SchedLgU.Txt -->10/10/2006 23:05:42 C:\WINDOWS\win.ini -->10/10/2006 23:04:59 C:\WINDOWS\system.ini -->10/10/2006 23:04:59 C:\WINDOWS\setupact.log -->10/10/2006 22:59:54 C:\WINDOWS\wmsetup.log -->10/10/2006 13:20:43 C:\WINDOWS\LUINSTALL.LOG -->02/10/2006 15:08:15 C:\WINDOWS\regopt.log -->30/09/2006 18:38:20 C:\WINDOWS\118294.78 -->30/09/2006 13:59:49 C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe |08/09/2006 13:13:43 C:\WINDOWS\bwUnin-7.2.0.157-8876480SL.exe |16/09/2006 20:18:02 C:\WINDOWS\CMIRMDRV.EXE |10/02/2004 13:15:43 C:\WINDOWS\CmiRmRedundDir.exe |10/02/2004 13:15:42 C:\WINDOWS\CMIUninstall.exe |10/02/2004 13:15:42 C:\WINDOWS\Dit.exe |10/02/2004 13:09:16 C:\WINDOWS\DitExp.exe |10/02/2004 13:09:16 C:\WINDOWS\Unwise.exe |10/02/2004 14:01:07 C:\WINDOWS\CMIRmDriver.dll |10/02/2004 13:15:42 C:\WINDOWS\CMIRMDRV.DLL |10/02/2004 13:15:43 C:\WINDOWS\CNYUSB.dll |15/03/2004 19:08:04 C:\WINDOWS\Dit.DLL |10/02/2004 13:09:16 C:\WINDOWS\HIDMNT.dll |15/03/2004 19:08:04 C:\WINDOWS\HKCYDLL.dll |15/03/2004 19:08:04 C:\WINDOWS\PIC.dll |15/03/2004 19:08:04 C:\WINDOWS\system32\append.exe |09/02/2004 23:37:56 C:\WINDOWS\system32\cmirmdrv.exe |10/02/2004 13:15:43 C:\WINDOWS\system32\debug.exe |09/02/2004 23:37:59 C:\WINDOWS\system32\dosx.exe |09/02/2004 23:38:00 C:\WINDOWS\system32\dvdplay.exe |23/08/2001 19:47:34 C:\WINDOWS\system32\edlin.exe |09/02/2004 23:38:07 C:\WINDOWS\system32\exe2bin.exe |09/02/2004 23:38:08 C:\WINDOWS\system32\fastopen.exe |09/02/2004 23:38:08 C:\WINDOWS\system32\keystone.exe |01/06/2006 17:22:00 C:\WINDOWS\system32\Machnm1.exe |30/09/2006 13:59:45 C:\WINDOWS\system32\mem.exe |09/02/2004 23:38:12 C:\WINDOWS\system32\mscdexnt.exe |09/02/2004 23:38:13 C:\WINDOWS\system32\nlsfunc.exe |09/02/2004 23:38:15 C:\WINDOWS\system32\nvappbar.exe |10/02/2004 00:52:56 C:\WINDOWS\system32\nvdspsch.exe |01/06/2006 17:22:00 C:\WINDOWS\system32\nwiz.exe |10/02/2004 00:52:56 C:\WINDOWS\system32\PSDrvCheck.exe |10/11/2003 17:06:08 C:\WINDOWS\system32\redir.exe |09/02/2004 23:38:19 C:\WINDOWS\system32\setver.exe |09/02/2004 23:38:21 C:\WINDOWS\system32\share.exe |09/02/2004 23:38:21 C:\WINDOWS\system32\amstream.dll |12/12/2002 01:14:32 C:\WINDOWS\system32\cmirmdrv.dll |10/02/2004 13:15:43 C:\WINDOWS\system32\compatui.dll |09/02/2004 23:37:59 C:\WINDOWS\system32\encdec.dll |26/11/2002 16:15:52 C:\WINDOWS\system32\ieencode.dll |20/08/2004 01:09:27 C:\WINDOWS\system32\indounin.dll |27/01/1999 13:39:06 C:\WINDOWS\system32\ir32_32.dll |09/02/2004 23:38:10 C:\WINDOWS\system32\IVIresize.dll |10/02/2004 13:56:19 C:\WINDOWS\system32\IVIresizeA6.dll |10/02/2004 13:56:19 C:\WINDOWS\system32\IVIresizeM6.dll |10/02/2004 13:56:19 C:\WINDOWS\system32\IVIresizeP6.dll |10/02/2004 13:56:19 C:\WINDOWS\system32\IVIresizePX.dll |10/02/2004 13:56:19 C:\WINDOWS\system32\IVIresizeW7.dll |10/02/2004 13:56:19 C:\WINDOWS\system32\Iyvu9_32.dll |13/06/1997 07:56:08 C:\WINDOWS\system32\msdmo.dll |12/12/2002 01:14:32 C:\WINDOWS\system32\msencode.dll |09/02/2004 23:38:13 C:\WINDOWS\system32\nvapi.dll |01/06/2006 17:22:00 C:\WINDOWS\system32\nvhwvid.dll |01/06/2006 17:22:00 C:\WINDOWS\system32\nview.dll |10/02/2004 00:52:56 C:\WINDOWS\system32\nvnt4cpl.dll |01/06/2006 17:22:00 C:\WINDOWS\system32\nvshell.dll |10/02/2004 00:52:56 C:\WINDOWS\system32\nvwdmcpl.dll |10/02/2004 00:52:31 C:\WINDOWS\system32\nvwimg.dll |01/06/2006 17:22:00 C:\WINDOWS\system32\paqsp.dll |23/08/2001 19:47:16 C:\WINDOWS\system32\psisdecd.dll |21/07/2006 16:58:49 C:\WINDOWS\system32\qedwipes.dll |12/12/2002 01:14:32 C:\WINDOWS\system32\sbe.dll |26/11/2002 16:15:50 C:\WINDOWS\system32\tsd32.dll |09/02/2004 23:38:25 C:\WINDOWS\system32\win87em.dll |09/02/2004 23:38:27 C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe |08/09/2006 13:13:43 C:\WINDOWS\bwUnin-7.2.0.157-8876480SL.exe |16/09/2006 20:18:02 C:\WINDOWS\Dit.exe |10/02/2004 13:09:16 C:\WINDOWS\DitExp.exe |10/02/2004 13:09:16 C:\WINDOWS\Unwise.exe |10/02/2004 14:01:07 C:\WINDOWS\CMIRmDriver.dll |10/02/2004 13:15:42 C:\WINDOWS\CMIRMDRV.DLL |10/02/2004 13:15:43 C:\WINDOWS\CNYUSB.dll |15/03/2004 19:08:04 C:\WINDOWS\Dit.DLL |10/02/2004 13:09:16 C:\WINDOWS\HIDMNT.dll |15/03/2004 19:08:04 C:\WINDOWS\HKCYDLL.dll |15/03/2004 19:08:04 C:\WINDOWS\PIC.dll |15/03/2004 19:08:04 C:\WINDOWS\system32\append.exe |09/02/2004 23:37:56 C:\WINDOWS\system32\debug.exe |09/02/2004 23:37:59 C:\WINDOWS\system32\dosx.exe |09/02/2004 23:38:00 C:\WINDOWS\system32\edlin.exe |09/02/2004 23:38:07 C:\WINDOWS\system32\exe2bin.exe |09/02/2004 23:38:08 C:\WINDOWS\system32\fastopen.exe |09/02/2004 23:38:08 C:\WINDOWS\system32\keystone.exe |01/06/2006 17:22:00 C:\WINDOWS\system32\Machnm1.exe |30/09/2006 13:59:45 C:\WINDOWS\system32\mem.exe |09/02/2004 23:38:12 C:\WINDOWS\system32\mscdexnt.exe |09/02/2004 23:38:13 C:\WINDOWS\system32\nlsfunc.exe |09/02/2004 23:38:15 C:\WINDOWS\system32\nvappbar.exe |10/02/2004 00:52:56 C:\WINDOWS\system32\nvdspsch.exe |01/06/2006 17:22:00 C:\WINDOWS\system32\nwiz.exe |10/02/2004 00:52:56 C:\WINDOWS\system32\redir.exe |09/02/2004 23:38:19 C:\WINDOWS\system32\setver.exe |09/02/2004 23:38:21 C:\WINDOWS\system32\share.exe |09/02/2004 23:38:21 C:\WINDOWS\system32\amstream.dll |12/12/2002 01:14:32 C:\WINDOWS\system32\cmirmdrv.dll |10/02/2004 13:15:43 C:\WINDOWS\system32\encdec.dll |26/11/2002 16:15:52 C:\WINDOWS\system32\ieencode.dll |20/08/2004 01:09:27 C:\WINDOWS\system32\indounin.dll |27/01/1999 13:39:06 C:\WINDOWS\system32\ir32_32.dll |09/02/2004 23:38:10 C:\WINDOWS\system32\IVIresize.dll |10/02/2004 13:56:19 C:\WINDOWS\system32\IVIresizeA6.dll |10/02/2004 13:56:19 C:\WINDOWS\system32\IVIresizeM6.dll |10/02/2004 13:56:19 C:\WINDOWS\system32\IVIresizeP6.dll |10/02/2004 13:56:19 C:\WINDOWS\system32\IVIresizePX.dll |10/02/2004 13:56:19 C:\WINDOWS\system32\IVIresizeW7.dll |10/02/2004 13:56:19 C:\WINDOWS\system32\Iyvu9_32.dll |13/06/1997 07:56:08 C:\WINDOWS\system32\msdmo.dll |12/12/2002 01:14:32 C:\WINDOWS\system32\msencode.dll |09/02/2004 23:38:13 C:\WINDOWS\system32\nvapi.dll |01/06/2006 17:22:00 C:\WINDOWS\system32\nvhwvid.dll |01/06/2006 17:22:00 C:\WINDOWS\system32\nview.dll |10/02/2004 00:52:56 C:\WINDOWS\system32\nvnt4cpl.dll |01/06/2006 17:22:00 C:\WINDOWS\system32\nvshell.dll |10/02/2004 00:52:56 C:\WINDOWS\system32\nvwdmcpl.dll |10/02/2004 00:52:31 C:\WINDOWS\system32\nvwimg.dll |01/06/2006 17:22:00 C:\WINDOWS\system32\psisdecd.dll |21/07/2006 16:58:49 C:\WINDOWS\system32\qedwipes.dll |12/12/2002 01:14:32 C:\WINDOWS\system32\sbe.dll |26/11/2002 16:15:50 C:\WINDOWS\system32\tsd32.dll |09/02/2004 23:38:25 C:\WINDOWS\system32\win87em.dll |09/02/2004 23:38:27 Le volume dans le lecteur C s'appelle BOOT Le numéro de série du volume est 4468-4F2D Répertoire de C:\WINDOWS\system 27/11/2003 18:52 1 454 080 SmWizard.exe 1 fichier(s) 1 454 080 octets 0 Rép(s) 47 767 470 080 octets libres Le volume dans le lecteur C s'appelle BOOT Le numéro de série du volume est 4468-4F2D Répertoire de C:\WINDOWS\system32 20/08/2004 01:09 6 144 csrss.exe 1 fichier(s) 6 144 octets 0 Rép(s) 47 767 470 080 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C s'appelle BOOT Le numéro de série du volume est 4468-4F2D Répertoire de C:\WINDOWS\Downloaded Program Files 29/09/2006 12:08 <REP> . 29/09/2006 12:08 <REP> .. 09/02/2004 23:48 65 desktop.ini 14/10/1997 19:52 697 DirectAnimation Java Classes.osd 28/03/2002 17:05 1 268 erma.inf 25/08/2003 19:12 1 096 iuctl.inf 20/01/2000 16:25 1 162 Microsoft XML Parser for Java.osd 20/06/2006 15:44 379 704 MsnPUpld.dll 19/06/2006 14:40 393 MsnPUpld.inf 22/08/2003 22:10 226 opuc.inf 20/06/2006 15:44 117 560 PURen-us.dll 31/05/2002 09:20 117 328 purfr-fr.dll 15/10/2004 07:59 110 592 PURfr-xx.dll 22/06/2006 11:41 5 032 swflash.inf 12 fichier(s) 735 123 octets Total des fichiers listés : 12 fichier(s) 735 123 octets 2 Rép(s) 47 767 470 080 octets libres Recherche de rootkit (merci S!Ri !) Liste des programmes installes Ad-Aware SE Personal Adobe Flash Player 9 ActiveX Adobe Reader 7.0.8 - Français Adobe Shockwave Player AVG Anti-Spyware 7.5 Azureus C-Media 3D Audio CA Licensing ccCommon Correctif Windows XP - KB873339 Correctif Windows XP - KB885835 Correctif Windows XP - KB885836 Correctif Windows XP - KB885884 Correctif Windows XP - KB886185 Correctif Windows XP - KB887472 Correctif Windows XP - KB888113 Correctif Windows XP - KB888302 Correctif Windows XP - KB890859 Correctif Windows XP - KB891781 Disc2Phone DVD Shrink 3.2 Extension HighMAT pour l'Assistant Graver un CD de Microsoft Windows XP Freeplayer Google Desktop Google Toolbar for Internet Explorer GrabIt 1.6.0 Beta (build 928) GTK+ 2.8.18-1 runtime environment HijackThis 1.99.1 InstantCopy InterVideo HomeCinema for Medion Media Center InterVideo WinDVD Creator for Medion Media Center InterVideo WinDVD Recorder for Medion Media Center InterVideo WinRip for Medion Media Center J2SE Runtime Environment 5.0 Update 7 LiveReg (Symantec Corporation) LiveUpdate 3.0 (Symantec Corporation) Logiciel QuickCam de Logitech Logitech Desktop Messenger Medion Flash XL Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 French Language Pack Microsoft .NET Framework 1.1 Hotfix (KB886903) Microsoft Office XP Professional avec FrontPage Microsoft Works 7.0 Mise à jour de sécurité pour Lecteur Windows Media (KB911564) Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734) Mise à jour de sécurité pour Step by Step Interactive Training (KB898458) Mise à jour de sécurité pour Windows XP (KB890046) Mise à jour de sécurité pour Windows XP (KB893756) Mise à jour de sécurité pour Windows XP (KB896358) Mise à jour de sécurité pour Windows XP (KB896423) Mise à jour de sécurité pour Windows XP (KB896424) Mise à jour de sécurité pour Windows XP (KB896428) Mise à jour de sécurité pour Windows XP (KB899587) Mise à jour de sécurité pour Windows XP (KB899591) Mise à jour de sécurité pour Windows XP (KB900725) Mise à jour de sécurité pour Windows XP (KB901017) Mise à jour de sécurité pour Windows XP (KB901214) Mise à jour de sécurité pour Windows XP (KB902400) Mise à jour de sécurité pour Windows XP (KB904706) Mise à jour de sécurité pour Windows XP (KB905414) Mise à jour de sécurité pour Windows XP (KB905749) Mise à jour de sécurité pour Windows XP (KB908519) Mise à jour de sécurité pour Windows XP (KB911562) Mise à jour de sécurité pour Windows XP (KB911567) Mise à jour de sécurité pour Windows XP (KB911927) Mise à jour de sécurité pour Windows XP (KB912919) Mise à jour de sécurité pour Windows XP (KB913580) Mise à jour de sécurité pour Windows XP (KB914388) Mise à jour de sécurité pour Windows XP (KB914389) Mise à jour de sécurité pour Windows XP (KB916281) Mise à jour de sécurité pour Windows XP (KB917159) Mise à jour de sécurité pour Windows XP (KB917344) Mise à jour de sécurité pour Windows XP (KB917422) Mise à jour de sécurité pour Windows XP (KB917953) Mise à jour de sécurité pour Windows XP (KB918899) Mise à jour de sécurité pour Windows XP (KB919007) Mise à jour de sécurité pour Windows XP (KB920214) Mise à jour de sécurité pour Windows XP (KB920670) Mise à jour de sécurité pour Windows XP (KB920683) Mise à jour de sécurité pour Windows XP (KB920685) Mise à jour de sécurité pour Windows XP (KB921398) Mise à jour de sécurité pour Windows XP (KB921883) Mise à jour de sécurité pour Windows XP (KB922616) Mise à jour de sécurité pour Windows XP (KB925486) Mise à jour pour Windows XP (KB898461) Mise à jour pour Windows XP (KB900485) Mise à jour pour Windows XP (KB908531) Mise à jour pour Windows XP (KB910437) Mise à jour pour Windows XP (KB911280) Mise à jour pour Windows XP (KB916595) Mise à jour pour Windows XP (KB920872) Mise à jour pour Windows XP (KB922582) Mozilla Firefox (1.5.0.7) Mozilla Thunderbird (1.5.0.7) Multi Virus Cleaner 2006 Nero OEM Norton AntiVirus 2005 Norton AntiVirus 2005 (Symantec Corporation) Norton AntiVirus Help Norton AntiVirus Parent MSI Norton WMI Update NVIDIA Display Driver NVIDIA Drivers Outil de mise à jour Google Picasa 2 Programme de gestion Camera de Logitech® Project64 1.6 RealPlayer Shockwave SiSoftware Sandra Lite 2007 (Win64/32/CE) SPBBC Spybot - Search & Destroy 1.4 Symantec Symantec Script Blocking Installer SymNet The GIMP 2.2.11 USB Wireless Keyboard Driver Utilitaire de sauvegarde Windows VideoLAN VLC media player 0.8.5 Viewpoint Media Player Visionneuse Journal Windows Microsoft WebFldrs XP Winamp (remove only) Windows Genuine Advantage Notifications (KB905474) Windows Genuine Advantage Validation Tool (KB892130) Windows Installer 3.1 (KB893803) Windows Live Messenger Windows Media Format Runtime Windows XP Service Pack 2 WinRAR archiver X10 Hardware Liste des dossiers de C:\Program Files Le volume dans le lecteur C s'appelle BOOT Le numéro de série du volume est 4468-4F2D Répertoire de C:\Program Files 10/10/2006 22:58 <REP> . 10/10/2006 22:58 <REP> .. 30/09/2006 14:23 <REP> Ad-Aware SE Personal 16/07/2006 19:44 <REP> Adobe 10/02/2004 13:42 <REP> Ahead 14/09/2006 02:32 <REP> AxBx 02/09/2006 18:10 <REP> Azureus 10/02/2004 13:15 <REP> C-Media 3D Audio 10/02/2004 14:01 <REP> Common Files 09/02/2004 23:47 <REP> ComPlus Applications 30/09/2006 18:37 <REP> Defenza 22/07/2006 20:36 <REP> Disc2Phone 15/07/2006 11:54 <REP> DVD Shrink 03/10/2006 14:53 <REP> Fichiers communs 06/07/2006 13:48 <REP> Freeplayer 21/07/2006 16:50 <REP> Futuremark 14/07/2006 12:41 <REP> GIMP-2.0 02/10/2006 14:45 <REP> Google 17/09/2006 16:22 <REP> GrabIt 10/10/2006 20:26 <REP> Grisoft 10/02/2004 15:20 <REP> HighMAT CD Writing Wizard 02/10/2006 01:41 <REP> HijackThis 10/08/2006 01:23 <REP> Internet Explorer 10/02/2004 13:59 <REP> InterVideo 23/07/2006 20:31 <REP> Java 30/09/2006 14:23 <REP> Lavasoft 08/09/2006 13:14 <REP> Logitech 14/07/2006 11:58 <REP> Macrogaming 10/02/2004 13:11 <REP> Make bootable flashcards 09/02/2004 23:49 <REP> microsoft frontpage 05/07/2006 17:03 <REP> Microsoft Office 10/02/2004 13:54 <REP> Microsoft Works 21/07/2006 19:37 <REP> Movie Maker 10/10/2006 23:13 <REP> Mozilla Firefox 10/10/2006 14:28 <REP> Mozilla Thunderbird 09/02/2004 23:47 <REP> MSN Gaming Zone 30/09/2006 12:29 <REP> MSN Messenger 30/09/2006 18:19 <REP> Multi Virus Cleaner 2006 18/07/2006 12:53 <REP> Musicmatch 21/07/2006 19:35 <REP> NetMeeting 02/10/2006 14:59 <REP> Norton AntiVirus 15/03/2004 18:45 <REP> Nullsoft 15/03/2004 19:53 <REP> OfficeUpdate11 22/07/2006 01:13 <REP> Outlook Express 02/10/2006 14:46 <REP> Picasa2 10/02/2004 13:46 <REP> Pinnacle 05/09/2006 01:11 <REP> Project64 1.6 15/03/2004 18:45 <REP> Real 18/07/2006 12:15 <REP> Services en ligne 12/07/2006 19:08 <REP> SiSoftware 03/10/2006 12:04 <REP> Spybot - Search & Destroy 02/10/2006 14:57 <REP> Symantec 15/03/2004 19:08 <REP> USB Wireless Keyboard Driver 27/07/2006 12:00 <REP> VideoLAN 05/10/2006 14:38 <REP> Winamp 10/02/2004 13:39 <REP> Windows Journal Viewer 21/07/2006 19:37 <REP> Windows Media Player 21/07/2006 19:35 <REP> Windows NT 26/07/2006 16:17 <REP> WinRAR 10/02/2004 14:01 <REP> X10 Hardware 09/02/2004 23:49 <REP> xerox 0 fichier(s) 0 octets 61 Rép(s) 47 767 400 448 octets libres Le volume dans le lecteur C s'appelle BOOT Le numéro de série du volume est 4468-4F2D Répertoire de C:\Program Files\fichiers communs 03/10/2006 14:53 <REP> . 03/10/2006 14:53 <REP> .. 10/02/2004 15:55 <REP> Adobe 10/02/2004 13:42 <REP> Ahead 15/03/2004 18:45 <REP> AOL 05/07/2006 17:04 <REP> Designer 14/07/2006 12:40 <REP> GTK 18/07/2006 12:51 <REP> InstallShield 10/02/2004 14:00 <REP> InterVideo 23/07/2006 20:30 <REP> Java 08/09/2006 13:15 <REP> Logitech 29/09/2006 23:32 <REP> Microsoft Shared 09/02/2004 23:47 <REP> MSSoap 09/02/2004 23:45 <REP> ODBC 03/10/2006 14:53 <REP> Real 09/02/2004 23:47 <REP> Services 09/02/2004 23:45 <REP> SpeechEngines 02/10/2006 15:07 <REP> Symantec Shared 22/07/2006 01:13 <REP> System 03/10/2006 14:53 <REP> xing shared 0 fichier(s) 0 octets 20 Rép(s) 47 767 400 448 octets libres Le volume dans le lecteur C s'appelle BOOT Le numéro de série du volume est 4468-4F2D Répertoire de C:\Program Files\common files 10/02/2004 14:01 <REP> . 10/02/2004 14:01 <REP> .. 10/02/2004 13:38 <REP> System 10/02/2004 14:01 <REP> X10 0 fichier(s) 0 octets 4 Rép(s) 47 767 400 448 octets libres c:\Documents and Settings\Gaël Canis-Constant\Application Data\Microsoft\Installer\{9559F7CA-5E34-4237-A2D9-D856464AD727}\ARPPRODUCTICON.exe c:\Documents and Settings\Gaël Canis-Constant\Application Data\Microsoft\Installer\{9559F7CA-5E34-4237-A2D9-D856464AD727}\NewShortcut1_9559F7CA5E344237A2D9D856464AD727.exe c:\Documents and Settings\Gaël Canis-Constant\Application Data\Microsoft\Installer\{9559F7CA-5E34-4237-A2D9-D856464AD727}\Uninstall_Project64__9559F7CA5E344237A2D9D856464AD727.exe c:\Documents and Settings\Gaël Canis-Constant\Bureau\ATF-Cleaner.exe c:\Documents and Settings\Gaël Canis-Constant\Bureau\ewido-signatures4-full-current.exe c:\Documents and Settings\Gaël Canis-Constant\Bureau\HijackThis.exe c:\Documents and Settings\Gaël Canis-Constant\Bureau\132 Nintendo 64 ROMs and 3 Emulators\1964_099.exe c:\Documents and Settings\Gaël Canis-Constant\Bureau\132 Nintendo 64 ROMs and 3 Emulators\project64_1.6.exe c:\Documents and Settings\Gaël Canis-Constant\Bureau\clean\pskill.exe c:\Documents and Settings\Gaël Canis-Constant\Bureau\diaghelp\FilesInfoCmd.exe c:\Documents and Settings\Gaël Canis-Constant\Bureau\diaghelp\Fport.exe c:\Documents and Settings\Gaël Canis-Constant\Bureau\diaghelp\grep.exe c:\Documents and Settings\Gaël Canis-Constant\Bureau\diaghelp\LFiles.exe c:\Documents and Settings\Gaël Canis-Constant\Bureau\diaghelp\LISTDLLS.exe c:\Documents and Settings\Gaël Canis-Constant\Bureau\diaghelp\pslist.exe c:\Documents and Settings\Gaël Canis-Constant\Bureau\diaghelp\streams.exe c:\Documents and Settings\Gaël Canis-Constant\Bureau\diaghelp\swreg.exe c:\Documents and Settings\Gaël Canis-Constant\Local Settings\Temp\diaghelp\FilesInfoCmd.exe c:\Documents and Settings\Gaël Canis-Constant\Local Settings\Temp\diaghelp\Fport.exe c:\Documents and Settings\Gaël Canis-Constant\Local Settings\Temp\diaghelp\grep.exe c:\Documents and Settings\Gaël Canis-Constant\Local Settings\Temp\diaghelp\LFiles.exe c:\Documents and Settings\Gaël Canis-Constant\Local Settings\Temp\diaghelp\LISTDLLS.exe c:\Documents and Settings\Gaël Canis-Constant\Local Settings\Temp\diaghelp\pslist.exe c:\Documents and Settings\Gaël Canis-Constant\Local Settings\Temp\diaghelp\streams.exe c:\Documents and Settings\Gaël Canis-Constant\Local Settings\Temp\diaghelp\swreg.exe c:\Documents and Settings\Gaël Canis-Constant\Local Settings\Temp\ins1.tmp\LDMClient.exe c:\Documents and Settings\Gaël Canis-Constant\Mes documents\LSD\DXSETUP.exe c:\Documents and Settings\Gaël Canis-Constant\Mes documents\Terre Autrement\Guide des sites ECO\start.exe c:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\4WWGW0S3\iv_nt86[1].exe c:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\ARQYE7ZP\iv_nt86[1].exe c:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\ATO5ZNZM\ii_nt86[1].exe c:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\TIIE8B50\ii_nt86[1].exe c:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\TIIE8B50\ii_nt86[2].exe c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll c:\Documents and Settings\Gaël Canis-Constant\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll Rapport HijackThis : Logfile of HijackThis v1.99.1 Scan saved at 23:10:51, on 10/10/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\system32\spoolsv.exe c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\Dit.exe C:\Program Files\Fichiers communs\InterVideo\FastTVSync\FastTVSync.exe C:\Program Files\Fichiers communs\InterVideo\SchSvr\SchSvr.exe C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe C:\WINDOWS\mHotkey.exe C:\WINDOWS\CNYHKey.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\Program Files\Logitech\Video\CameraAssistant.exe C:\WINDOWS\system32\ElkCtrl.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\Program Files\Winamp\winampa.exe C:\WINDOWS\DitExp.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe C:\Program Files\Google\Google Updater\GoogleUpdater.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Norton AntiVirus\navapsvc.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe C:\WINDOWS\System32\svchost.exe C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\Documents and Settings\Gaël Canis-Constant\Bureau\HijackThis.exe R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [Dit] Dit.exe O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe O4 - HKLM\..\Run: [FastTVSync] "C:\Program Files\Fichiers communs\InterVideo\FastTVSync\FastTVSync.exe" O4 - HKLM\..\Run: [Home Theater SchSvr] "C:\Program Files\Fichiers communs\InterVideo\SchSvr\SchSvr.exe" O4 - HKLM\..\Run: [WINCINEMAMGR] "C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe" O4 - HKLM\..\Run: [CHotkey] mHotkey.exe O4 - HKLM\..\Run: [ledpointer] CNYHKey.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1 O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O14 - IERESET.INF: START_PAGE_URL=http://www.carrefour.fr/ O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gael108.spaces.live.com//PhotoUpload/MsnPUpld.cab O18 - Protocol: bw+0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: offline-8876480 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Client de licence CA (CA_LIC_CLNT) - Unknown owner - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe (file missing) O23 - Service: Serveur de licence CA (CA_LIC_SRVR) - Unknown owner - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe (file missing) O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: Event Log Watch (LogWatch) - Unknown owner - C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe (file missing) O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\Win32\RpcDataSrv.exe O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\RpcSandraSrv.exe O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe Rapport Antispyware: C:\System Volume Information\_restore{3B696C8C-B88F-4C0D-B2F9-16B897691B81}\RP162\A0031526.exe -> Adware.SaveNow : Ignoré. C:\System Volume Information\_restore{3B696C8C-B88F-4C0D-B2F9-16B897691B81}\RP22\A0011653.dll -> Adware.SaveNow : Ignoré. C:\System Volume Information\_restore{3B696C8C-B88F-4C0D-B2F9-16B897691B81}\RP22\A0011654.exe -> Adware.SaveNow : Ignoré. C:\System Volume Information\_restore{3B696C8C-B88F-4C0D-B2F9-16B897691B81}\RP22\A0011657.exe -> Adware.SaveNow : Ignoré. C:\System Volume Information\_restore{3B696C8C-B88F-4C0D-B2F9-16B897691B81}\RP25\A0012262.dll -> Adware.SaveNow : Ignoré. C:\System Volume Information\_restore{3B696C8C-B88F-4C0D-B2F9-16B897691B81}\RP25\A0012263.exe -> Adware.SaveNow : Ignoré. C:\System Volume Information\_restore{3B696C8C-B88F-4C0D-B2F9-16B897691B81}\RP25\A0012266.exe -> Adware.SaveNow : Ignoré. C:\System Volume Information\_restore{3B696C8C-B88F-4C0D-B2F9-16B897691B81}\RP175\A0036937.exe -> Downloader.Delf.aye : Ignoré. C:\WINDOWS\system32\icpldrvx.exe -> Logger.Banker.byu : Ignoré. Rapport Clean: Script clean par Malekal_morte - http://www.malekal.com Microsoft Windows XP [version 5.1.2600] Script execute en mode sans echec *** Suppression de fichiers sur C: *** Suppression des fichiers dans C:\WINDOWS\ *** Suppression des fichiers dans C:\WINDOWS\system32 C:\WINDOWS\system32\icpldrvx.exe FOUND C:\WINDOWS\system32\px.dll FOUND C:\WINDOWS\system32\drivers\etc\hosts.msn FOUND "C:\Program Files\ca\" FOUND "C:\Program Files\Viewpoint\" FOUND *** Suppression des clefs du registre effectuee..
- le 11 octobre 2006
- 15 réponses
virus véhiculé par msn/windows messenger

gael108 a répondu à un(e) sujet de gael108 dans Analyses et éradication malwares

Merci a seb57 et Charles Ingals Désolé mais je n'arrive pas a me séparer de mon virus et ne sait quoi faire ... Peut etre que l'un de vous pourra m'en dire plus je vais faire un nouveau HijackThis sans la précédure de pré-nettoyage et peut etre y verrez vous quelque chose... Logfile of HijackThis v1.99.1 Scan saved at 00:39:11, on 05/10/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe C:\WINDOWS\Dit.exe C:\Program Files\Fichiers communs\InterVideo\FastTVSync\FastTVSync.exe C:\Program Files\Fichiers communs\InterVideo\SchSvr\SchSvr.exe C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe C:\WINDOWS\mHotkey.exe C:\WINDOWS\CNYHKey.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\Program Files\Logitech\Video\CameraAssistant.exe C:\WINDOWS\system32\ElkCtrl.exe C:\WINDOWS\system32\icpldrvx.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\WINDOWS\DitExp.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe C:\Program Files\Norton AntiVirus\navapsvc.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe C:\Program Files\Google\Google Updater\GoogleUpdater.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Gaël\Bureau\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.carrefour.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.carrefour.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [Dit] Dit.exe O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe O4 - HKLM\..\Run: [FastTVSync] "C:\Program Files\Fichiers communs\InterVideo\FastTVSync\FastTVSync.exe" O4 - HKLM\..\Run: [Home Theater SchSvr] "C:\Program Files\Fichiers communs\InterVideo\SchSvr\SchSvr.exe" O4 - HKLM\..\Run: [WINCINEMAMGR] "C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe" O4 - HKLM\..\Run: [CHotkey] mHotkey.exe O4 - HKLM\..\Run: [ledpointer] CNYHKey.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation O4 - HKLM\..\Run: [Avg Antivirus] C:\WINDOWS\system32\icpldrvx.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1 O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O14 - IERESET.INF: START_PAGE_URL=http://www.carrefour.fr/ O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gael108.spaces.live.com//PhotoUpload/MsnPUpld.cab O18 - Protocol: bw+0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: offline-8876480 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Client de licence CA (CA_LIC_CLNT) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe O23 - Service: Serveur de licence CA (CA_LIC_SRVR) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: Event Log Watch (LogWatch) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\Win32\RpcDataSrv.exe O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\RpcSandraSrv.exe O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
- le 4 octobre 2006
- 15 réponses
virus véhiculé par msn/windows messenger

gael108 a répondu à un(e) sujet de gael108 dans Analyses et éradication malwares

Merci a seb57 et Charles Ingals Désolé mais je n'arrive pas a me séparer de mon virus et ne sait quoi faire ... Peut que l'un de vous pourra m'en dire plus je vais faire un nouveau HijackThis sans la précédure de pré-nettoyage et peut etre y verrez vous quelque chose...
- le 4 octobre 2006
- 15 réponses
virus véhiculé par msn/windows messenger

gael108 a répondu à un(e) sujet de gael108 dans Analyses et éradication malwares

Salut, Le scan ad-ware n'a rien donné mais spybot a l'air d'avoir bouté dehors le méchant malware mais rien de sur car je n'ai pas parlé a d'autre contacts... mais je te tiens au courant. Merci de t'en être inquiété... A +
- le 3 octobre 2006
- 15 réponses
virus véhiculé par msn/windows messenger

gael108 a répondu à un(e) sujet de gael108 dans Analyses et éradication malwares

Salut et merci seb57 comme tu vas je t'ai répondu dans la même fenêtre ... suis pas trop habité au forum...
- le 2 octobre 2006
- 15 réponses
virus véhiculé par msn/windows messenger

gael108 a répondu à un(e) sujet de gael108 dans Analyses et éradication malwares

Salut seb57, Merci pour avoir analysé mon rapport... En fait j'avais suivi la procédure de pré-nettoyage car sinon j'ai norton en firewall et pareil en antivirus la version updaté de 2005... J'ai encore parlé sur windows live messenger et meme chose le lien porteur du virus se post toujours dans les fenetres de discution voici le nom du lien : festas092006.fateback.com/fotos.exe précédé de http://(surtout attention a ne pas le transformer en lien !!!)
- le 2 octobre 2006
- 15 réponses
virus véhiculé par msn/windows messenger

gael108 a posté un sujet dans Analyses et éradication malwares

Bonjour, Voilà quelques jours, un de mes contact msn m'a refilé un type de virus qui se transmet par msn/windows live messenger et depuis a chaque fois que je veux parler avec un des mes contact, le vilain virus fait pareil et se démultiplie en tentant d'infecter mon entourage car j'ai oublié de préciser au c'est un lien qui s'interpose durant la conversation sur lequel il faut cliquer (écrit en espagnol et finissant par fotos.exe) ... Pouvez vous m'aider a le virer?!! Voici mon "HijackThis" Merci beaucoup Logfile of HijackThis v1.99.1 Scan saved at 01:47:24, on 02/10/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\Dit.exe C:\Program Files\Fichiers communs\InterVideo\FastTVSync\FastTVSync.exe C:\Program Files\Fichiers communs\InterVideo\SchSvr\SchSvr.exe C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe C:\WINDOWS\mHotkey.exe C:\WINDOWS\CNYHKey.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\Program Files\Logitech\Video\CameraAssistant.exe C:\WINDOWS\system32\ElkCtrl.exe C:\WINDOWS\system32\icpldrvx.exe C:\WINDOWS\DitExp.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\DOCUME~1\GALCAN~1\LOCALS~1\Temp\Rar$EX01.750\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.carrefour.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.carrefour.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [Dit] Dit.exe O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe O4 - HKLM\..\Run: [FastTVSync] "C:\Program Files\Fichiers communs\InterVideo\FastTVSync\FastTVSync.exe" O4 - HKLM\..\Run: [Home Theater SchSvr] "C:\Program Files\Fichiers communs\InterVideo\SchSvr\SchSvr.exe" O4 - HKLM\..\Run: [WINCINEMAMGR] "C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe" O4 - HKLM\..\Run: [CHotkey] mHotkey.exe O4 - HKLM\..\Run: [ledpointer] CNYHKey.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation O4 - HKLM\..\Run: [Avg Antivirus] C:\WINDOWS\system32\icpldrvx.exe O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1 O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O14 - IERESET.INF: START_PAGE_URL=http://www.carrefour.fr/ O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gael108.spaces.live.com//PhotoUpload/MsnPUpld.cab O18 - Protocol: bw+0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: offline-8876480 - {86D99B09-FA50-410A-B111-58CB394EE63B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Client de licence CA (CA_LIC_CLNT) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe O23 - Service: Serveur de licence CA (CA_LIC_SRVR) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe O23 - Service: Event Log Watch (LogWatch) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\Win32\RpcDataSrv.exe O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007\RpcSandraSrv.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
- le 2 octobre 2006
- 15 réponses

Connexion

gael108

Compteur de contenus

Inscription

Dernière visite

Autres informations

gael108's Achievements

Junior Member (3/12)

Réputation sur la communauté

virus véhiculé par msn/windows messenger

virus véhiculé par msn/windows messenger

virus véhiculé par msn/windows messenger

virus véhiculé par msn/windows messenger

virus véhiculé par msn/windows messenger

virus véhiculé par msn/windows messenger

virus véhiculé par msn/windows messenger

Zebulon

Outils en ligne

Naviguer