Info Windows ou virus ?

Bonne nuit à tous,

Je suis très embétée. Depuis hier soir, j'ai un icone qui s'est installé dans la barre de tâche (coté heure) et il ressemble à s'y méprendre au blason d'avertissement de windows. Lorsque je pointe le curseur dessus, il m'indique que mon pc est infecté.


Le souci, c'est que je le trouve un poil différent, mais surtout lorsque je clique droit ou gauche avec la souris dessus il me propose en anglais (voilà ce qui est étrange !) de télécharger et d'installer un logiciel de sécurité ???

Pour finir, bien entendu, je n'accepte pas l'installation du software et par la suite régulièrement un message-bulle toujours en anglais apparaît (comme windows le fait lorsque des mise à jour sont prêtes à être installées par exemple) .

D'après vous s'agit-il vraiment d'une proposition Microsoft ou comme je le pense un sale virus qui tente de se faire passer pour ce qu'il n'est pas ?

D'avance mille mercis

PS : Petite précision, je possède Office pro plus 2007, tout fonctionnait hyper bien jusque là mais depuis, Outlook me dit qu'il manque un fichier (mspst.dll) et ne s'ouvre plus. J'ai tenté à deux reprises la réparation d'office. L'ordi s'éteint avant la fin du processus et lorsqu'il redémarre, windows m'indique qu'il vient de récupérer d'une erreur sérieuse.


[ Ce message a été modifié par : : misslancel le 25-02-2007 22:39 ]

Attachement: Info ou intox 1.JPG
Attachement: Info ou intox 2.JPG
Attachement: Info ou intox 3.JPG

bonjour misslancel,
as-tu éffectué tous les scans disponibles?(spybot,avg,etc...?)
si ce n'est pas le cas, prend quelques minutes de ton temps et laisse faire hitman pro (tuto par freeman merci à lui).
si tu peut aussi nous éditer un rapport hijack this cela pourrait être intéressant aussi.
@+
toy

Tout d'abord merci Toy pour tes indications.
Voici le log :

Code:

  Logfile of HijackThis v1.99.1
  Scan saved at 11:14:18, on 24/02/2007
  Platform: Windows XP SP2 (WinNT 5.01.2600)
  MSIE: Internet Explorer v7.00 (7.00.6000.16414)
  
  Running processes:
  C:\WINDOWS\System32\smss.exe
  C:\WINDOWS\system32\csrss.exe
  C:\WINDOWS\SYSTEM32\winlogon.exe
  C:\WINDOWS\system32\services.exe
  C:\WINDOWS\system32\lsass.exe
  C:\WINDOWS\system32\svchost.exe
  C:\WINDOWS\system32\svchost.exe
  C:\Program Files\Panda Software\Panda Internet Security 2007\pavsrv51.exe
  C:\WINDOWS\system32\svchost.exe
  C:\Program Files\Panda Software\Panda Internet Security 2007\TPSrv.exe
  C:\WINDOWS\system32\svchost.exe
  C:\WINDOWS\System32\svchost.exe
  C:\WINDOWS\System32\svchost.exe
  c:\program files\panda software\panda internet security 2007\firewall\PNMSRV.EXE
  C:\WINDOWS\system32\spoolsv.exe
  C:\WINDOWS\Explorer.EXE
  C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
  C:\WINDOWS\system32\svchost.exe
  C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
  C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
  C:\Program Files\Panda Software\Panda Internet Security 2007\PavFnSvr.exe
  C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
  C:\WINDOWS\system32\HPZipm12.exe
  C:\Program Files\Panda Software\Panda Internet Security 2007\AntiSpam\pskmssvc.exe
  C:\Program Files\Panda Software\Panda Internet Security 2007\PsImSvc.exe
  C:\WINDOWS\system32\slserv.exe
  C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
  C:\WINDOWS\System32\svchost.exe
  C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
  C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
  C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
  C:\WINDOWS\system32\rundll32.exe
  C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
  C:\Program Files\QuickTime\qttask.exe
  C:\Program Files\iTunes\iTunesHelper.exe
  C:\Program Files\iPod\bin\iPodService.exe
  C:\Program Files\LCPA Lite\Lcpa Lite.exe
  C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
  C:\WINDOWS\system32\tcpipmon.exe
  C:\WINDOWS\system32\tcpipmon.exe
  C:\WINDOWS\system32\ctfmon.exe
  C:\Program Files\Panda Software\Panda Internet Security 2007\AVENGINE.EXE
  C:\Program Files\Logitech\Desktop Messenger76480\Program\LogitechDesktopMessenger.exe
  C:\WINDOWS\System32\alg.exe
  C:\WINDOWS\System32\wbem\wmiprvse.exe
  C:\Program Files\Panda Software\Panda Internet Security 2007\SRVLOAD.EXE
  C:\Program Files\AOL 9.0a\aoltray.exe
  C:\Program Files\Larousse\Petit Larousse 2007\bin\Hyperappel.exe
  C:\Program Files\Logitech\SetPoint\SetPoint.exe
  C:\Program Files\PerSono\PersTray.exe
  C:\Program Files\Windows Desktop Search\WindowsSearch.exe
  C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
  C:\WINDOWS\system32\SearchIndexer.exe
  C:\Program Files\Fichiers communs\Logitech\khalshared\KHALMNPR.EXE
  C:\WINDOWS\system32\svchost.exe
  C:\Program Files\eMule2\emule.exe
  C:\Program Files\Internet Explorer\iexplore.exe
  C:\WINDOWS\system32\wscntfy.exe
  C:\test.exe.exe
  
  R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
  R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
  R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
  O1 - Hosts: HP528F40 HP0014C2528F40
  O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
  O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
  O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
  O2 - BHO: NetXfer - {83B80A9C-D91A-4F22-8DCF-EA7204039F79} - C:\Program Files\Xi\NetXfer\NXIEHelper.dll
  O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
  O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
  O3 - Toolbar: NetXfer - {C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - C:\Program Files\Xi\NetXfer\NXToolBar.dll
  O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
  O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
  O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
  O4 - HKLM\..\Run: [AOLSAV] C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
  O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
  O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
  O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
  O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
  O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
  O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Software\Panda Internet Security 2007\APVXDWIN.EXE" /s
  O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files\Panda Software\Panda Internet Security 2007\Inicio.exe"
  O4 - HKLM\..\Run: [LcpaLite] "C:\Program Files\LCPA Lite\Lcpa Lite.exe"
  O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
  O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
  O4 - HKLM\..\Run: [tcpipmon] tcpipmon.exe
  O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
  O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
  O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger76480\Program\LogitechDesktopMessenger.exe
  O4 - Global Startup: AOL 9.0 Icône AOL.lnk = C:\Program Files\AOL 9.0a\aoltray.exe
  O4 - Global Startup: Hyperappel du Petit Larousse 2007.lnk = C:\Program Files\Larousse\Petit Larousse 2007\bin\Hyperappel.exe
  O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger76480\Program\LDMConf.exe
  O4 - Global Startup: Logitech SetPoint.lnk = ?
  O4 - Global Startup: Perstray.lnk = C:\Program Files\PerSono\PersTray.exe
  O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
  O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
  O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
  O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
  O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
  O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
  O8 - Extra context menu item: Tout télécharger avec NetXfer - C:\Program Files\Xi\NetXfer\NXAddList.html
  O8 - Extra context menu item: Télécharger avec NetXfer - C:\Program Files\Xi\NetXfer\NXAddLink.html
  O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
  O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
  O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll
  O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
  O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
  O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
  O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
  O9 - Extra button: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
  O9 - Extra 'Tools' menuitem: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
  O11 - Options group: [INTERNATIONAL] International*
  O16 - DPF: fdjeux - https://www.fdjeux.net/classes/fdjeux.cab
  O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
  O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} (Citrix ICA Client) - http://a516.g.akamai.net/f/516/25175/7d/runaware.download.akamai.com/25175/citrix/wficat-no-eula.cab
  O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://misslancel.spaces.msn.com//PhotoUpload/MsnPUpld.cab
  O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
  O18 - Protocol: bw+0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw+0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw-0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw-0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw00 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw00s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw10 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw10s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw20 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw20s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw30 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw30s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw40 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw40s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw50 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw50s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw60 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw60s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw70 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw70s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw80 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw80s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw90 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw90s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwa0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwa0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwb0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwb0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwc0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwc0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwd0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwd0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwe0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwe0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwf0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwf0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger76480\Program\GAPlugProtocol-8876480.dll
  O18 - Protocol: bwg0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwg0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwh0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwh0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwi0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwi0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwj0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwj0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwk0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwk0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwl0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwl0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwm0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwm0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwn0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwn0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwo0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwo0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwp0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwp0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwq0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwq0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwr0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwr0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bws0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bws0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwt0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwt0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwu0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwu0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwv0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwv0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bww0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bww0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwx0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwx0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwy0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwy0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwz0 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwz0s - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
  O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
  O18 - Protocol: offline-8876480 - {A5D49BE1-BCDE-4A2A-9B1F-10A021A40170} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O20 - Winlogon Notify: avldr - C:\WINDOWS\SYSTEM32\avldr.dll
  O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
  O20 - Winlogon Notify: winzzd32 - winzzd32.dll (file missing)
  O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
  O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
  O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
  O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
  O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
  O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\HPBPRO.EXE
  O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\HPBOID.EXE
  O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\Intel 32\IDriverT.exe
  O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
  O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - C:\Program Files\Panda Software\Panda Internet Security 2007\PavFnSvr.exe
  O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
  O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Program Files\Panda Software\Panda Internet Security 2007\pavsrv51.exe
  O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
  O23 - Service: Panda Antispam Engine (pmshellsrv) - Panda Software International - C:\Program Files\Panda Software\Panda Internet Security 2007\AntiSpam\pskmssvc.exe
  O23 - Service: Panda Network Manager (PNMSRV) - Panda Software International - c:\program files\panda software\panda internet security 2007\firewall\PNMSRV.EXE
  O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software - C:\Program Files\Panda Software\Panda Internet Security 2007\PsImSvc.exe
  O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
  O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
  O23 - Service: SmartLinkService (SLService) -   - C:\WINDOWS\SYSTEM32\slserv.exe
  O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
  O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
  O23 - Service: Panda TPSrv (TPSrv) - Panda Software - C:\Program Files\Panda Software\Panda Internet Security 2007\TPSrv.exe
  O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe

Merci beaucoup par avance à ceux qui vont déchiffrer ce log et m'aider.

J'ai également évaluer le log sur "HijackThis.de" mais je ne comprends pas trop. Oupss... J'ai supprimé, comme indiqué dans le tutoriel les éléments marqués d'un croix, éléments estimés comme superflus et pouvant être supprimés.

Cependant mon souci persiste et je ne sais toujours pas comment me débarrasser de mon problème (voir post 1).

Je confirme, le logo en question n'est absolument pas celui de windows, pour preuve :



D'avance merci.

Ceci est un SOS !!! Quelqu'un peut-il me dire comment faire pour me débarrasser de cette chose incrustée ?

S'il vous plait...

D'avance merci.

c'est un virus j'ai u l'occasion de le constater exécute le pas si tu tien a ton PC

o bah justement je viens d'avoir la pub!!!!!!!
je l'ais également j'essaye de m'en débarrasser je te dirais comment faire si j'y arrive!!!

Merci. C'est déjà une info de plus.

Bonjour tout le monde

misslancel peux-tu télécharger tes captures d'écran quelque part et nous donner le liens car le fait de les avoir inséré directement sur la page de ton poste, déforme la page et rend la lecture des poste difficile. Merci.

Fermes toutes les applications et relance HijackThis et coche ces lignes :

C:\WINDOWS\system32\tcpipmon.exe

O1 - Hosts: HP528F40 HP0014C2528F40
O4 - HKLM\..\Run: [LcpaLite] "C:\Program Files\LCPA Lite\Lcpa Lite.exe"
O4 - HKLM\..\Run: [tcpipmon] tcpipmon.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
O20 - Winlogon Notify: winzzd32 - winzzd32.dll (file missing)

et faits "fixe checked".

Tiens-nous au courant
A+

Merci Titan pour tes directives. J'ai fait ce que tu as indiqué.
Un seul élément ne veut pas se supprimer c'est le "O4 - HKLM\..\Run: [tcpipmon] tcpipmon.exe ". De plus quand j'essaie, j'ai 2 icones supplémentaires du même genre que se mettent à côté de l'autre. Puis en fermant le scan Hijackthis, ils disparaissent.

PS : J'ai modifié les captures d'écran. Seul souci, le post contenant le log accompagné d'une capture lorsque je souhaite le modifier, c'est un message vierge qui apparait et non celui qui a été posté.

J'ai même tenté une suppression de tcpipmon.exe directement dans le dossier windows système 32, impossible.


[ Ce message a été modifié par : : misslancel le 25-02-2007 22:52 ]