Se connecter / S'enregistrer
Votre question

probleme Win32:TratBHO [Trj] (RESOLU)

Tags :
  • Windows
  • Sécurité
Dernière réponse : dans Sécurité et virus
8 Janvier 2008 11:34:22

Bonjour a tous,

Voici mon probleme j'ai mon avast détecte un virus Win32:TratBHO [Trj] qui m'est inpossible de l'elever avec avast j'ai deja essayer de chercher un peut sur le net mais j'ai rien trouver qui eut vrament m'aider alors je fait appele a vous et j'espere que vous trouver une solucion qui m'aide.
Merci d'avance pour tous ce qui veulent bien m'aider.
je vous met ici mon rapport HijackThis:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:23:46, on 08/01/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16575)
Boot mode: Normal

Running processes:
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Windows\System32\rundll32.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier .exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer .exe
C:\Program Files\Internet Download Manager\IDMan .exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Windows\system32\conime.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.fr/spbasic.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.pt.lu/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
F3 - REG:win.ini: load=C:\Windows\system32\hgdcb.exe
O1 - Hosts: ::1 localhost
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1ACC08D0-5583-4F54-8DA9-9729A213D01F} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: (no name) - {F05828EC-038C-4840-B22A-3310D914078A} - C:\Windows\system32\hgdcb.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: MEDIADICO Familial - {CEDDA62B-5FBE-4AB2-AE2E-5E069F444444} - C:\Program Files\LAventure\MDToolbar\MdToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan .exe /onboot
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_15\bin\npjpi142_15.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_15\bin\npjpi142_15.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

--
End of file - 7994 bytes

Autres pages sur : probleme win32 tratbho trj resolu

8 Janvier 2008 22:36:16

up
9 Janvier 2008 00:26:46


Bonsoir :) 

Le premier que je vois sur un Vista , on va voir si on peut le virer

Désactive tes protections Antivirus et Spybot

Désactive l'UAC ( Menu Démarrer \ Panneau de Configuration \ Comptes d'utilisateurs et protection des utilisateurs \ Comptes d'utilisateurs \ Activer ou désactiver le contrôle des comptes d'utilisateurs \ décoche la case Utiliser le contrôle ... et valide par OK , il te sera demandé de redémarrer , fais le )

Télécharge ComboFix [:eric_71] < ici

Enregistre le sur ton Bureau et pas ailleurs !
Double clique combofix.exe ( le .exe peut ne pas apparaitre )
Pour démarrer , tape [1] puis valide , attend la fin du scan
il peut y avoir un Redémarrage du PC !

Copie / Colle le rapport généré ( C:\Combofix.txt )

Réactive tes protection , je verrais le rapport demain ( soir )
Contenus similaires
10 Janvier 2008 23:21:27

salut merci pour vouloir m'aider j'ai maleureusemoment du du formater mon pc mais comme j'ai pas fait de formatage compet ce se peux te le cheval de trois ou virus soit encore la alors je te poste un nouveau rapport HijackThis en esperons que tu trouve rien de mal.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:15:06, on 10/01/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16575)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\Windows\System32\ElkCtrl.exe
C:\Windows\System32\LVCOMSX.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Users\Frederico\Documents\Downloads\Compressed\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [CamWizard] C:\Program Files\Common Files\Logitech\QCDRV\BIN\CamWizard.exe
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\Windows\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [LVCOMSX] C:\Windows\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechRegisterVideoApplications] "C:\Program Files\Logitech\Video\InstallHelper.exe" /register /runnow
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Backward &Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cac&hed Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Si&milar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O13 - Gopher Prefix:
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O18 - Protocol: bw+0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {A39F4277-E850-46F8-943C-9A38F1CD5BFF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe

--
End of file - 17815 bytes
11 Janvier 2008 12:49:13

up
11 Janvier 2008 13:20:01


J'attends le rapport de Combofix
11 Janvier 2008 15:05:28

Voici le rapport et désolé pour le retard:

ComboFix 08-01-10.2 - Frederico 2008-01-11 15:00:15.1 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6000.0.1252.1.1036.18.473 [GMT 1:00]
Running from: C:\Users\Frederico\Desktop\ComboFix.exe
* Created a new restore point
.

((((((((((((((((((((((((((((( Fichiers créés 2007-12-11 to 2008-01-11 ))))))))))))))))))))))))))))))))))))
.

2008-01-11 14:55 . 2000-08-31 08:00 51,200 --a------ C:\Windows\NirCmd.exe
2008-01-11 13:41 . 2006-11-29 13:06 3,426,072 --a------ C:\Windows\System32\d3dx9_32.dll
2008-01-11 13:22 . 2008-01-11 13:22 <REP> d-------- C:\Program Files\Electronic Arts
2008-01-11 12:33 . 2008-01-11 12:33 <REP> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-01-11 12:32 . 2008-01-11 12:32 <REP> d-------- C:\Program Files\MSXML 4.0
2008-01-11 12:30 . 2008-01-11 12:30 <REP> d-------- C:\Users\All Users\Google
2008-01-10 23:12 . 2008-01-10 23:12 262,144 --a------ C:\Windows\System32\wrap_oal.dll
2008-01-10 23:12 . 2008-01-10 23:12 86,016 --a------ C:\Windows\System32\OpenAL32.dll
2008-01-10 23:08 . 2008-01-10 23:08 <REP> d-------- C:\Windows\System32\Futuremark
2008-01-10 23:08 . 2004-10-25 20:02 21,664 --a------ C:\Windows\System32\drivers\Entech.sys
2008-01-10 23:08 . 1999-11-02 10:01 6,173 --a------ C:\Windows\System32\drivers\Entech.vxd
2008-01-10 23:08 . 2004-06-22 15:44 5,632 --a------ C:\Windows\System32\drivers\Entech64.sys
2008-01-10 23:08 . 2001-11-19 19:05 3,972 --a------ C:\Windows\System32\drivers\PciBus.sys
2008-01-10 23:05 . 2008-01-10 23:05 <REP> d-------- C:\Program Files\Futuremark
2008-01-10 22:59 . 2008-01-10 22:59 <REP> d-------- C:\Users\Frederico\AppData\Roaming\PeerNetworking
2008-01-10 22:42 . 2008-01-11 14:54 <REP> d-------- C:\Users\Frederico\AppData\Roaming\DMCache
2008-01-10 22:42 . 2008-01-10 22:42 <REP> d-------- C:\Program Files\Internet Download Manager
2008-01-10 13:31 . 2005-12-06 04:28 1,103,488 --a------ C:\Windows\System32\drivers\lvuvc.sys
2008-01-10 13:31 . 2005-12-06 04:26 380,928 --a------ C:\Windows\System32\LVUI2RC.dll
2008-01-10 13:31 . 2003-02-21 13:42 348,160 --a------ C:\Windows\system\msvcr71.dll
2008-01-10 13:31 . 2005-12-06 04:25 217,088 --a------ C:\Windows\System32\LVUI2.dll
2008-01-10 13:31 . 2005-12-06 04:25 204,800 --a------ C:\Windows\System32\lvcodec2.dll
2008-01-10 13:31 . 2005-12-06 04:28 142,848 --a------ C:\Windows\System32\drivers\lvmjpeg.sys
2008-01-10 13:31 . 2005-12-06 04:22 110,592 --a------ C:\Windows\System32\lvcoinst.dll
2008-01-10 13:31 . 2005-12-06 04:26 39,424 --a------ C:\Windows\System32\drivers\LVUSBSta.sys
2008-01-10 13:31 . 2005-12-06 03:28 13,126 --a------ C:\Windows\System32\lvcoinst.ini
2008-01-10 13:31 . 2005-12-06 03:27 2,112 --a------ C:\Windows\System32\Repository.reg
2008-01-10 13:30 . 2005-12-06 04:26 2,010,240 --a------ C:\Windows\System32\drivers\lvpopflt.sys
2008-01-10 13:26 . 2005-12-09 15:31 719 -ra------ C:\Windows\System32\InstExec.ini
2008-01-10 13:25 . 2003-03-18 20:14 499,712 --a------ C:\Windows\System32\msvcp71.dll
2008-01-10 13:25 . 2003-02-21 04:42 348,160 --a------ C:\Windows\System32\msvcr71.dll
2008-01-10 13:24 . 2003-03-18 21:20 1,060,864 --a------ C:\Windows\System32\MFC71.dll
2008-01-10 13:24 . 2001-08-23 04:00 924,432 --a------ C:\Windows\System32\mfc49c7d.rra
2008-01-10 11:51 . 2008-01-10 11:52 <REP> d-------- C:\Program Files\Logitech
2008-01-10 11:51 . 2008-01-10 11:51 118,784 -r------- C:\Windows\bwUnin-7.2.0.137-8876480SL.exe
2008-01-10 11:50 . 2008-01-10 11:50 229,888 --a------ C:\Windows\System32\msshsq.dll
2008-01-10 11:45 . 2008-01-10 13:26 <REP> d-------- C:\Program Files\Common Files\Logitech
2008-01-10 11:45 . 2005-12-09 15:31 245,824 -ra------ C:\Windows\System32\InstExec.exe
2008-01-10 11:45 . 2005-12-09 15:35 245,824 -ra------ C:\Windows\Instexec.exe
2008-01-10 10:58 . 2008-01-10 23:24 <REP> d-------- C:\Users\All Users\Spybot - Search & Destroy
2008-01-10 10:58 . 2008-01-10 23:24 <REP> d-------- C:\ProgramData\Spybot - Search & Destroy
2008-01-10 10:56 . 2007-12-04 14:04 837,496 --a------ C:\Windows\System32\aswBoot.exe
2008-01-10 10:56 . 2004-01-09 10:13 380,928 --a------ C:\Windows\System32\actskin4.ocx
2008-01-10 10:56 . 2007-12-04 13:54 95,608 --a------ C:\Windows\System32\AVASTSS.scr
2008-01-10 10:56 . 2007-12-04 15:52 45,648 --a------ C:\Windows\System32\drivers\aswMonFlt.sys
2008-01-10 10:56 . 2007-12-04 15:51 42,912 --a------ C:\Windows\System32\drivers\aswTdi.sys
2008-01-10 10:56 . 2007-12-04 15:53 23,152 --a------ C:\Windows\System32\drivers\aswRdr.sys
2008-01-10 10:55 . 2008-01-10 10:55 <REP> d-------- C:\Program Files\Alwil Software
2008-01-10 10:44 . 2008-01-10 10:44 <REP> d-------- C:\Users\Frederico\AppData\Roaming\Media Player Classic
2008-01-10 10:44 . 2008-01-10 10:44 <REP> d-------- C:\Program Files\Combined Community Codec Pack
2008-01-10 10:40 . 2008-01-10 10:40 <REP> d-------- C:\Users\Frederico\AppData\Roaming\DivX
2008-01-10 10:38 . 2008-01-10 10:38 <REP> d-------- C:\Program Files\Common Files\PX Storage Engine
2008-01-09 23:18 . 2008-01-09 23:18 <REP> d-------- C:\Program Files\RivaTuner v2.01
2008-01-09 23:14 . 2008-01-09 23:14 <REP> d-------- C:\Program Files\Lavalys
2008-01-09 23:14 . 2008-01-11 12:29 <REP> d-------- C:\Program Files\Google
2008-01-09 23:12 . 2008-01-10 10:38 <REP> d-------- C:\Program Files\DivX
2008-01-09 23:08 . 2008-01-09 23:08 <REP> d-------- C:\Users\Frederico\AppData\Roaming\InstallShield
2008-01-09 23:08 . 2008-01-09 23:08 <REP> d-------- C:\Program Files\REALTEK RTL8187 Wireless LAN Driver
2008-01-09 23:08 . 2007-03-18 07:46 192,512 --a------ C:\Windows\System32\drivers\rtl8187.sys
2008-01-09 23:07 . 2008-01-09 23:07 <REP> d-------- C:\Program Files\Yahoo!
2008-01-09 23:07 . 2008-01-09 23:07 <REP> d-------- C:\Program Files\CCleaner
2008-01-09 23:05 . 2008-01-09 23:05 <REP> d-------- C:\Program Files\PlayOnline
2008-01-09 23:05 . 2008-01-10 23:05 <REP> d--h----- C:\Program Files\InstallShield Installation Information
2008-01-09 23:05 . 2008-01-09 23:05 <REP> d-------- C:\Program Files\Common Files\PlayOnline
2008-01-09 23:05 . 2008-01-09 23:05 4,096 --a------ C:\Windows\d3dx.dat
2008-01-09 22:55 . 2008-01-11 14:37 <REP> d-------- C:\Users\Frederico\BitTorrent Downloads
2008-01-09 22:53 . 2008-01-11 14:25 <REP> d-------- C:\Users\Frederico\AppData\Roaming\BitTorrent
2008-01-09 22:51 . 2008-01-09 23:03 <REP> d-------- C:\Program Files\BitTorrent
2008-01-09 22:42 . 2008-01-09 22:44 <REP> d-------- C:\Users\All Users\Adobe
2008-01-09 22:42 . 2008-01-09 22:43 <REP> d-------- C:\Program Files\Common Files\Adobe
2008-01-09 22:35 . 2008-01-09 22:35 <REP> d-------- C:\Windows\AS_SCRIPTS
2008-01-09 22:35 . 2004-04-27 08:26 5,824 --a------ C:\Windows\System32\drivers\ASUSHWIO.SYS
2008-01-09 22:35 . 2008-01-09 22:35 488 --a------ C:\Windows\Ascd_tmp.ini
2008-01-09 22:21 . 2008-01-09 22:21 <REP> d-------- C:\Windows\System32\Macromed
2008-01-09 13:23 . 2008-01-09 13:23 2,923,520 --a------ C:\Windows\explorer.exe
2008-01-09 13:22 . 2008-01-09 13:22 376,320 --a------ C:\Windows\System32\winsrv.dll
2008-01-09 13:22 . 2008-01-09 13:22 49,664 --a------ C:\Windows\System32\csrsrv.dll
2008-01-09 13:21 . 2008-01-09 13:21 802,816 --a------ C:\Windows\System32\drivers\tcpip.sys
2008-01-09 13:21 . 2008-01-09 13:21 374,456 --a------ C:\Windows\System32\mcupdate_GenuineIntel.dll
2008-01-09 13:21 . 2008-01-09 13:21 216,760 --a------ C:\Windows\System32\drivers\netio.sys
2008-01-09 13:21 . 2008-01-09 13:21 167,424 --a------ C:\Windows\System32\tcpipcfg.dll
2008-01-09 13:21 . 2008-01-09 13:21 24,064 --a------ C:\Windows\System32\netcfg.exe
2008-01-09 13:21 . 2008-01-09 13:21 22,016 --a------ C:\Windows\System32\netiougc.exe
2008-01-09 13:20 . 2008-01-09 13:20 8,147,968 --a------ C:\Windows\System32\wmploc.DLL
2008-01-09 13:20 . 2008-01-09 13:20 414,208 --a------ C:\Windows\System32\msscp.dll
2008-01-09 13:20 . 2008-01-09 13:20 356,864 --a------ C:\Windows\System32\MediaMetadataHandler.dll
2008-01-09 13:20 . 2008-01-09 13:20 7,680 --a------ C:\Windows\System32\spwmp.dll
2008-01-09 13:20 . 2008-01-09 13:20 4,096 --a------ C:\Windows\System32\msdxm.ocx
2008-01-09 13:20 . 2008-01-09 13:20 4,096 --a------ C:\Windows\System32\dxmasf.dll
2008-01-09 13:19 . 2008-01-09 13:19 396,800 --a------ C:\Windows\System32\MPSSVC.dll
2008-01-09 13:19 . 2008-01-09 13:19 392,192 --a------ C:\Windows\System32\FirewallAPI.dll
2008-01-09 13:19 . 2008-01-09 13:19 178,688 --a------ C:\Windows\System32\iphlpsvc.dll
2008-01-09 13:19 . 2008-01-09 13:19 86,016 --a------ C:\Windows\System32\icfupgd.dll
2008-01-09 13:19 . 2008-01-09 13:19 63,488 --a------ C:\Windows\System32\drivers\mpsdrv.sys
2008-01-09 13:19 . 2008-01-09 13:19 61,952 --a------ C:\Windows\System32\cmifw.dll
2008-01-09 13:19 . 2008-01-09 13:19 23,040 --a------ C:\Windows\System32\drivers\tunnel.sys
2008-01-09 13:19 . 2008-01-09 13:19 16,896 --a------ C:\Windows\System32\wfapigp.dll
2008-01-09 13:19 . 2008-01-09 13:19 15,360 --a------ C:\Windows\System32\drivers\TUNMP.SYS
2008-01-09 13:18 . 2008-01-09 13:18 4,247,552 --a------ C:\Windows\System32\GameUXLegacyGDFs.dll
2008-01-09 13:18 . 2008-01-09 13:18 1,686,016 --a------ C:\Windows\System32\gameux.dll

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-01-11 11:24 0 ----a-w C:\Windows\system32\drivers\lvuvc.hs
2008-01-09 16:52 174 --sha-w C:\Program Files\desktop.ini
2008-01-09 16:50 --------- d-----w C:\Program Files\Windows Sidebar
2008-01-09 16:50 --------- d-----w C:\Program Files\Windows Mail
2008-01-09 16:50 --------- d-----w C:\Program Files\Windows Defender
2008-01-09 16:50 --------- d-----w C:\Program Files\Windows Calendar
2008-01-09 12:24 87,040 ----a-w C:\Windows\System32\msoert2.dll
2008-01-09 12:24 8,192 ----a-w C:\Windows\System32\riched32.dll
2008-01-09 12:24 77,824 ----a-w C:\Windows\System32\rascfg.dll
2008-01-09 12:24 70,144 ----a-w C:\Windows\system32\drivers\pacer.sys
2008-01-09 12:24 694,784 ----a-w C:\Windows\System32\localspl.dll
2008-01-09 12:24 619,008 ----a-w C:\Windows\system32\drivers\dxgkrnl.sys
2008-01-09 12:24 61,952 ----a-w C:\Windows\system32\drivers\wanarp.sys
2008-01-09 12:24 52,736 ----a-w C:\Windows\System32\rasdiag.dll
2008-01-09 12:24 48,640 ----a-w C:\Windows\system32\drivers\ndproxy.sys
2008-01-09 12:24 39,424 ----a-w C:\Windows\System32\ACCTRES.dll
2008-01-09 12:24 384,000 ----a-w C:\Windows\System32\netcfgx.dll
2008-01-09 12:24 36,864 ----a-w C:\Windows\System32\cdd.dll
2008-01-09 12:24 33,280 ----a-w C:\Windows\System32\traffic.dll
2008-01-09 12:24 32,768 ----a-w C:\Windows\System32\rasmxs.dll
2008-01-09 12:24 286,208 ----a-w C:\Windows\System32\ipnathlp.dll
2008-01-09 12:24 22,016 ----a-w C:\Windows\System32\rasser.dll
2008-01-09 12:24 205,824 ----a-w C:\Windows\System32\msoeacct.dll
2008-01-09 12:24 20,480 ----a-w C:\Windows\system32\drivers\ndistapi.sys
2008-01-09 12:24 15,360 ----a-w C:\Windows\System32\pacerprf.dll
2008-01-09 12:24 134,656 ----a-w C:\Windows\System32\dps.dll
2008-01-09 12:24 13,824 ----a-w C:\Windows\System32\wshqos.dll
2008-01-09 12:24 13,824 ----a-w C:\Windows\System32\icsunattend.exe
2008-01-09 12:23 81,592 ----a-w C:\Windows\system32\drivers\sbp2port.sys
2008-01-09 12:23 704,000 ----a-w C:\Windows\System32\PhotoScreensaver.scr
2008-01-09 12:23 67,584 ----a-w C:\Windows\System32\wlanhlp.dll
2008-01-09 12:23 542,720 ----a-w C:\Windows\System32\sysmain.dll
2008-01-09 12:23 502,784 ----a-w C:\Windows\System32\wlansvc.dll
2008-01-09 12:23 47,104 ----a-w C:\Windows\System32\wlanapi.dll
2008-01-09 12:23 297,984 ----a-w C:\Windows\System32\wlansec.dll
2008-01-09 12:23 290,816 ----a-w C:\Windows\System32\wlanmsm.dll
2008-01-09 12:23 258,232 ----a-w C:\Windows\system32\drivers\acpi.sys
2008-01-09 12:23 24,064 ----a-w C:\Windows\System32\wtsapi32.dll
2008-01-09 12:23 2,027,008 ----a-w C:\Windows\System32\win32k.sys
2008-01-09 12:18 537,600 ----a-w C:\Windows\AppPatch\AcLayers.dll
2008-01-09 12:18 449,024 ----a-w C:\Windows\AppPatch\AcSpecfc.dll
2008-01-09 12:18 2,143,744 ----a-w C:\Windows\AppPatch\AcGenral.dll
2008-01-09 12:18 173,056 ----a-w C:\Windows\AppPatch\AcXtrnal.dll
2008-01-09 12:16 9,728 ----a-w C:\Windows\System32\LAPRXY.DLL
2008-01-09 12:16 57,856 ----a-w C:\Windows\System32\SLUINotify.dll
2008-01-09 12:16 566,784 ----a-w C:\Windows\System32\SLCommDlg.dll
2008-01-09 12:16 39,936 ----a-w C:\Windows\System32\slcinst.dll
2008-01-09 12:16 351,232 ----a-w C:\Windows\System32\SLUI.exe
2008-01-09 12:16 33,280 ----a-w C:\Windows\System32\slwmi.dll
2008-01-09 12:16 268,288 ----a-w C:\Windows\System32\mcbuilder.exe
2008-01-09 12:16 223,232 ----a-w C:\Windows\System32\WMASF.DLL
2008-01-09 12:16 223,232 ----a-w C:\Windows\System32\SLC.dll
2008-01-09 12:16 2,605,568 ----a-w C:\Windows\System32\SLsvc.exe
2008-01-09 12:16 186,368 ----a-w C:\Windows\System32\SLLUA.exe
2008-01-09 12:14 88,576 ----a-w C:\Windows\System32\avifil32.dll
2008-01-09 12:14 84,480 ----a-w C:\Windows\System32\INETRES.dll
2008-01-09 12:14 82,944 ----a-w C:\Windows\System32\mciavi32.dll
2008-01-09 12:14 8,138,240 ----a-w C:\Windows\System32\ssBranded.scr
2008-01-09 12:14 737,792 ----a-w C:\Windows\System32\inetcomm.dll
2008-01-09 12:14 712,192 ----a-w C:\Windows\System32\WindowsCodecs.dll
2008-01-09 12:14 69,632 ----a-w C:\Windows\System32\sendmail.dll
2008-01-09 12:14 65,024 ----a-w C:\Windows\System32\avicap32.dll
2008-01-09 12:14 61,440 ----a-w C:\Windows\System32\ntprint.exe
2008-01-09 12:14 31,232 ----a-w C:\Windows\System32\msvidc32.dll
2008-01-09 12:14 269,824 ----a-w C:\Windows\System32\schannel.dll
2008-01-09 12:14 220,160 ----a-w C:\Windows\System32\ntprint.dll
2008-01-09 12:14 123,904 ----a-w C:\Windows\System32\msvfw32.dll
2008-01-09 12:14 120,320 ----a-w C:\Windows\System32\dhcpcsvc6.dll
2008-01-09 12:14 12,800 ----a-w C:\Windows\System32\msrle32.dll
2008-01-09 12:14 10,240 ----a-w C:\Windows\System32\dhcpcmonitor.dll
2008-01-09 12:14 1,984,512 ----a-w C:\Windows\System32\authui.dll
2008-01-09 12:12 84,992 ----a-w C:\Windows\system32\drivers\srvnet.sys
2008-01-09 12:12 58,368 ----a-w C:\Windows\system32\drivers\mrxsmb20.sys
2008-01-09 12:12 56,320 ----a-w C:\Windows\System32\iesetup.dll
2008-01-09 12:12 53,760 ----a-w C:\Windows\system32\drivers\hdaudbus.sys
2008-01-09 12:12 52,736 ----a-w C:\Windows\AppPatch\iebrshim.dll
2008-01-09 12:12 26,624 ----a-w C:\Windows\System32\ieUnatt.exe
2008-01-09 12:12 130,048 ----a-w C:\Windows\system32\drivers\srv2.sys
2008-01-09 12:12 101,888 ----a-w C:\Windows\system32\drivers\mrxsmb.sys
2008-01-09 11:24 --------- d-sh--w C:\ProgramData\Modèles
2008-01-09 11:24 --------- d-sh--w C:\ProgramData\Menu Démarrer
2008-01-09 11:24 --------- d-sh--w C:\ProgramData\Favoris
2008-01-09 11:24 --------- d-sh--w C:\ProgramData\Bureau
2008-01-09 11:24 --------- d-sh--w C:\Program Files\Fichiers communs
2008-01-04 21:57 823,296 ----a-w C:\Windows\System32\divx_xx0c.dll
2008-01-04 21:57 823,296 ----a-w C:\Windows\System32\divx_xx07.dll
2008-01-04 21:57 81,920 ----a-w C:\Windows\System32\dpl100.dll
2008-01-04 21:57 802,816 ----a-w C:\Windows\System32\divx_xx11.dll
2008-01-04 21:57 682,496 ----a-w C:\Windows\System32\DivX.dll
2008-01-04 21:57 593,920 ----a-w C:\Windows\System32\dpuGUI11.dll
2008-01-04 21:57 57,344 ----a-w C:\Windows\System32\dpv11.dll
2008-01-04 21:57 53,248 ----a-w C:\Windows\System32\dpuGUI10.dll
2008-01-04 21:57 344,064 ----a-w C:\Windows\System32\dpus11.dll
2008-01-04 21:57 294,912 ----a-w C:\Windows\System32\dpu11.dll
2008-01-04 21:57 294,912 ----a-w C:\Windows\System32\dpu10.dll
2008-01-04 21:57 196,608 ----a-w C:\Windows\System32\dtu100.dll
2007-12-11 16:06 86,016 ----a-w C:\Windows\System32\nvsvc.dll
2007-12-11 16:06 81,920 ----a-w C:\Windows\System32\nvmctray.dll
2007-12-11 16:06 8,530,464 ----a-w C:\Windows\System32\nvcpl.dll
2007-12-11 16:06 8,238,688 ----a-w C:\Windows\system32\drivers\nvlddmkm.sys
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-01-09 13:13 1232896]
"LDM"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2008-01-10 11:51 32768]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2008-01-11 12:29 171448]
"IDMan"="C:\Program Files\Internet Download Manager\IDMan.exe" [2005-11-10 15:13 564224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2008-01-09 13:22 1006264]
"NvSvc"="C:\Windows\system32\nvsvc.dll" [2007-12-11 17:06 86016]
"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2007-12-11 17:06 8530464]
"NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [2007-12-11 17:06 81920]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]
"LVCOMSX"="C:\Windows\system32\LVCOMSX.EXE" [2005-12-09 15:32 225280]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
WinZip Quick Pick.lnk - C:\Program Files\WinZip\WZQKPICK.EXE [2008-01-09 23:02:13]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)

R2 aswMonFlt;aswMonFlt;C:\Windows\system32\DRIVERS\aswMonFlt.sys [2007-12-04 15:52]
R3 LVPrcMon;Logitech LVPrcMon Driver;C:\Windows\system32\drivers\LVPrcMon.sys [2005-12-09 15:37]
R3 RTL8187;Realtek RTL8187 Wireless 802.11g 54Mbps USB 2.0 Network Adapter;C:\Windows\system32\DRIVERS\RTL8187.sys [2007-03-18 07:46]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\system32\DRIVERS\yk60x86.sys [2007-07-31 08:22]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalSystemNetworkRestricted REG_MULTI_SZ hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc EMDMgmt TabletInputService wlansvc WPDBusEnum

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{644970eb-bea4-11dc-8ce2-806e6f6e6963}]
\shell\AutoRun\command - E:\autorun.exe

*Newly Created Service* - PROCEXP90
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-01-11 15:02:51
Windows 6.0.6000 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-01-11 15:03:33
.
2008-01-11 11:33:07 --- E O F ---
11 Janvier 2008 17:56:34

Ok ,

Je pense que tu aurais pu éviter le formatage

Relance HiJackThis clique cette fois sur [do a system scan only]
coche dans les cases à gauche les lignes suivantes ( et uniquement celles-ci ) :
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

et clique sur [Fix checked] ( en bas à gauche )
A la demande de confirmation , répond Oui

------------------------------------------------------

Et je te conseille de remplacer Avast par Antivir ( gratuit et bien meilleur )

tu peux le trouver ici : > Sécuriser son ordinateur <

11 Janvier 2008 18:20:23

Le formatage je l'ai fait parce que mon pc est devenu tres long et j'avait besoin de lui. je vien de faire ce que tu a dit et maintenant c'est bon?

tu veux que je change avast part antivir?
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS