Sujet Précédent Sujet Suivant

Infecté par will polo

Fermé
beka - 12 nov. 2007 à 16:23
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 - 12 nov. 2007 à 16:48
Bonjour,
j'ai un problème de virus.
mon poste s'arrête sans cesse

4 réponses

Réponse 1 / 4
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
12 nov. 2007 à 16:29
slt,


colle un rapport hijackthis

http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download

manuel :

https://leblogdeclaude.blogspot.com/2006/10/informatique-section-hijackthis.html


Je conseille de renomer Hijackthis, pour contrer une éventuelle infection de Vundo.

ex:Renomme le fichier HijackThis.exe en eden.exe pour cela, fais un clic droit sur le fichier HijackThis.exe et choisis renommer dans la liste

Ensuite avec Explorer créer un dossier c:\hijackthis
Décompresser Hijackthis dans ce dossier.
C'est important pour les sauvegardes."
0
Réponse 2 / 4
beka
12 nov. 2007 à 16:30
Bonjour,
Voici le rapport

Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 16:04:49, on 12/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\VTtrayp.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Documents and Settings\Administrateur\Mes documents\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Eric Gnassounou\Bureau\Nouveau dossier\abcde.exe.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Mswinword] C:\Windows\EMBARRAS.exe
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKCU\..\Run: [LDM] C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - Global Startup: DSLMON.lnk = ?
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Documents and Settings\Administrateur\Mes documents\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - http://ipgweb.cce.hp.com/rdqemea/downloads/sysinfo.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{4C254629-A2A5-4247-A5E8-4D7E75176542}: NameServer = 213.136.96.2 213.136.96.37
O18 - Protocol: bw+0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
0
Réponse 3 / 4
beka
12 nov. 2007 à 16:35
voici mon rapport

Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 16:04:49, on 12/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\VTtrayp.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Documents and Settings\Administrateur\Mes documents\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Eric Gnassounou\Bureau\Nouveau dossier\abcde.exe.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Mswinword] C:\Windows\EMBARRAS.exe
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKCU\..\Run: [LDM] C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - Global Startup: DSLMON.lnk = ?
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Documents and Settings\Administrateur\Mes documents\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - http://ipgweb.cce.hp.com/rdqemea/downloads/sysinfo.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{4C254629-A2A5-4247-A5E8-4D7E75176542}: NameServer = 213.136.96.2 213.136.96.37
O18 - Protocol: bw+0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {3AF73467-7B13-4312-BD67-805ED52889DC} - C:\Documents and Settings\Administrateur\Mes documents\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
0
Réponse 4 / 4
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
12 nov. 2007 à 16:48
# Téléchargez ce toolde de sUBs: http://www.techsupportforum.com/sectools/sUBs/Flash_Disinfector.exe

# Double-cliquez dessus et laissez-vous guider.

______________________

ensuite lance:

AVG antispyware

https://www.01net.com/telecharger/

Tuto :
http://www.kachouri.com/tuto/tuto-161-avg-anti-spyware-75-pour-votre-securite.html


->Relance AVG AS -> "Analyse" ->"Paramètres"

Sous la question "Comment réagir ?" :

-> clique sur "Actions recommandées" et choisis "Quarantaines"
-> Re-clique sur l'onglet "Analyse" puis réalise une "Analyse complète du système"

Si un fichier est infecté en fin d'analyse

->Clique sur "Appliquer toutes les actions "

->Clique sur "Enregistrer le rapport" puis sur "Enregistrer le rapport sous".

->Enregistre ce fichier texte sur ton bureau ensuite colle le rapport ici

______________________


Colle le rapport :
Clean permettra de faire du nettoyage et supprimer des fichiers que des anti-virus et anti-spywares n'ont pas pu trouver. Le logiciel est régulièrement mis à jour, vous devrez donc le re-téléchargé pour obtenir une version plus récente.

 Téléchargez clean.zip, décompressez-le sur votre bureau (clic droit / extraire tout), vous obtenez alors un dossier clean
 Démarrez Windows en mode sans échec : Guide pour redémarrer en mode sans échec
 Ouvrez le dossier clean qui se trouve sur ton bureau, et double-cliquez sur clean.cmd, une fenêtre noire va apparaître pendant un instant, laissez la ouverte jusqu'à ce qu'elle se ferme.
Manuel de clean :
http://kerio.probb.fr/tuto-Clean-h37.html

______________________


colle le rapport d'un scan en ligne
avec un des suivants:


bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html

Panda en ligne :
http://pandasoftware.fr

secuser en ligne :
http://www.secuser.com/outils/antivirus.htm

scan en ligne firefox

https://www.trendmicro.com/fr_fr/business.html
0

Discussions similaires

Site frauduleux vendant des polo Ralph Laureen a 25€ !!!!
farfale78 -
Gf -

16 réponses
Menace détectée TrojanSMS-PA sur Google Huawei/Android
Outmost -
bazfile -

6 réponses
Virus détecté
Koony -
MisteryBean -

6 réponses
Fiabilité d'un site de vente de polo Ralph Lauren
Striker Milan66 -
Afrikarnak -

5 réponses
IMPOSSIBLE DE LANCER FORTNITE/The application has hung and will now close. We ap
skemat -
Hehe -

19 réponses