Rapports Bitfender et Hijackthis à analyser
ancri
Messages postés
108
Statut
Membre
-
jacques.gache Messages postés 34829 Statut Contributeur sécurité -
jacques.gache Messages postés 34829 Statut Contributeur sécurité -
Bonjour,
Mon PC rame et j'aimerais bien que quelqu'un m'aide à le nettoyer.
J'ai scanné avec Bitfender et Hijackthis.
Voici les rapports :
QuickScan Beta 32-bit v0.9.9.52
-------------------------------
Date de l'analyse : Sun Nov 21 19:35:31 2010
ID de la machine : 985B8739
Aucune infection détectée.
--------------------------
Processus
---------
Ad-Aware Service Application 1620 C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
Ad-Aware Tray Application 3200 C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
Adobe Reader and Acrobat Manager 3000 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Application Launcher 2808 C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
AVG Internet Security 232 C:\Program Files\AVG\AVG8\avgcsrvx.exe
AVG Internet Security 840 C:\Program Files\AVG\AVG8\avgrsx.exe
AVG Internet Security 780 C:\PROGRA~1\AVG\AVG8\avgemc.exe
AVG Internet Security 2076 C:\PROGRA~1\AVG\AVG8\avgnsx.exe
AVG Internet Security 2756 C:\PROGRA~1\AVG\AVG8\avgtray.exe
AVG Internet Security 1884 C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
brother Industries Ltd brss01a.exe 1720 C:\WINDOWS\system32\brss01a.exe
brother Industries Ltd brsvc01a 1692 C:\WINDOWS\system32\brsvc01a.exe
CAPI_Worker Module 2372 C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
ControlCenter2 2652 C:\Program Files\Brother\ControlCenter2\brctrcen.exe
DAEMON Tools Lite 3424 C:\Program Files\DAEMON Tools Lite\DTLite.exe
Device Management 3972 C:\Program Files\Common Files\Teleca Shared\Generic.exe
eMule 3504 C:\Program Files\eMule\emule.exe
FinePixViewer 3588 C:\Program Files\FinePixViewerS\QuickDCF2.exe
Firefox 2668 C:\Program Files\Mozilla Firefox\firefox.exe
Java(TM) Platform SE 6 U14 188 C:\Program Files\Java\jre6\bin\jqs.exe
Microsoft ActiveSync 3296 C:\Program Files\Microsoft ActiveSync\wcescomm.exe
Microsoft ActiveSync 3512 C:\PROGRA~1\MICROS~3\rapimgr.exe
Microsoft Office Live Add-In 3276 C:\Program Files\Microsoft\Office Live\OfficeLiveSignIn.exe
Microsoft Office XP 2932 C:\Program Files\Microsoft Office\Office10\WINWORD.EXE
Microsoft Search Enhancement Pack 272 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
Microsoft® Windows® Operating System 1292 C:\Program Files\Outlook Express\msimn.exe
Microsoft® Windows® Operating System 1216 C:\WINDOWS\explorer.exe
Microsoft® Windows® Operating System 2484 C:\WINDOWS\system32\alg.exe
Microsoft® Windows® Operating System 836 C:\WINDOWS\system32\csrss.exe
Microsoft® Windows® Operating System 3312 C:\WINDOWS\system32\ctfmon.exe
Microsoft® Windows® Operating System 916 C:\WINDOWS\system32\lsass.exe
Microsoft® Windows® Operating System 904 C:\WINDOWS\system32\services.exe
Microsoft® Windows® Operating System 748 C:\WINDOWS\system32\smss.exe
Microsoft® Windows® Operating System 1724 C:\WINDOWS\system32\spoolsv.exe
Microsoft® Windows® Operating System 516 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 1912 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 1220 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 1800 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 1316 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 1164 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 1124 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 1060 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 2280 C:\WINDOWS\system32\wbem\unsecapp.exe
Microsoft® Windows® Operating System 2396 C:\WINDOWS\system32\wbem\wmiprvse.exe
Microsoft® Windows® Operating System 860 C:\WINDOWS\system32\winlogon.exe
NVIDIA Driver Helper Service, Version 8 248 C:\WINDOWS\system32\nvsvc32.exe
PaperPort 2584 C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
QuickTime 3024 C:\Program Files\QuickTime\qttask.exe
Skype 3400 C:\Program Files\Skype\Phone\Skype.exe
Skype Extras Manager 1480 C:\Program Files\Skype\Plugin Manager\skypePM.exe
Status Monitor 3976 C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe
Status Monitor 3648 C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
w3dbsmgr.exe 3676 C:\PVSW\Bin\w3dbsmgr.exe
Windows Live Communications Platform 3248 C:\Program Files\Windows Live\Contacts\wlcomm.exe
Windows Live Messenger 3188 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
Activité du réseau
------------------
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 209.85.149.147
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 74.125.39.18
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 74.125.39.18
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 66.46.185.73
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 194.90.36.202
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 212.150.35.67
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 74.125.39.18
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 66.46.185.73
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 74.125.39.18
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 74.125.39.18
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 74.125.39.18
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 66.46.185.73
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 88.221.61.115
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 209.85.149.113
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 209.85.149.113
Processus firefox.exe (2668) connecté sur le port 443 (HTTP over SSL) --> 66.29.219.22
Processus firefox.exe (2668) connecté sur le port 443 (HTTP over SSL) --> 209.85.149.147
Processus firefox.exe (2668) connecté sur le port 443 (HTTP over SSL) --> 66.29.219.22
Processus firefox.exe (2668) connecté sur le port 443 (HTTP over SSL) --> 66.29.219.22
Processus firefox.exe (2668) connecté sur le port 443 (HTTP over SSL) --> 74.125.39.18
Processus msnmsgr.exe (3188) connecté sur le port 1863 (MSN) --> 64.4.44.78
Processus Skype.exe (3400) connecté sur le port 49663 --> 84.229.11.15
Processus Skype.exe (3400) connecté sur le port 49938 --> 77.125.80.12
Processus Skype.exe (3400) connecté sur le port 27918 --> 84.110.9.218
Processus emule.exe (3504) connecté sur le port 4232 --> 212.179.18.140
Processus svchost.exe (1124) écoute sur les ports: 135 (RPC)
Processus Skype.exe (3400) écoute sur les ports: 80 (HTTP), 443 (HTTP over SSL), 32925
Processus emule.exe (3504) écoute sur les ports: 29417
Processus w3dbsmgr.exe (3676) écoute sur les ports: 1583, 3351
Fichiers critiques et Autorun
-----------------------------
Ad-Aware Admin Application C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Adobe Acrobat C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
Adobe Reader and Acrobat Manager C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Application Launcher C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
AVG Internet Security C:\Program Files\AVG\AVG8\avgtray.exe
AVG Internet Security C:\WINDOWS\system32\avgrsstx.dll
BrStDvPt C:\Program Files\Brother\Brmfl05a\BrStDvPt.exe
ControlCenter2 C:\Program Files\Brother\ControlCenter2\brctrcen.exe
DAEMON Tools Lite C:\Program Files\DAEMON Tools Lite\DTLite.exe
eMule C:\Program Files\eMule\emule.exe
FinePixViewer C:\Program Files\FinePixViewerS\QuickDCF2.exe
Microsoft ActiveSync C:\Program Files\Microsoft ActiveSync\wcescomm.exe
Microsoft® Windows® Operating System C:\WINDOWS\system32\browseui.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\crypt32.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\cryptnet.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\cscdll.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\ctfmon.exe
Microsoft® Windows® Operating System C:\WINDOWS\system32\dimsntfy.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\dumprep.exe
Microsoft® Windows® Operating System C:\WINDOWS\system32\logonui.exe
Microsoft® Windows® Operating System C:\WINDOWS\system32\sclgntfy.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\shell32.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\stobject.dll
Microsoft® Windows® Operating System c:\windows\system32\userinit.exe
Microsoft® Windows® Operating System C:\WINDOWS\system32\wlnotify.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\WPDShServiceObj.dll
NVIDIA Compatible Windows 2000 Display C:\WINDOWS\system32\NvCpl.dll
NVIDIA Media Center Library C:\WINDOWS\system32\NvMcTray.dll
PaperPort C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
PaperPort C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
QuickTime C:\Program Files\QuickTime\qttask.exe
Realtek AC97 Audio - Event Monitor C:\WINDOWS\ALCMTR.EXE
Skype C:\Program Files\Skype\\Phone\Skype.exe
SSBkgdUpdate Application C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe
Status Monitor C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
w3dbsmgr.exe C:\PVSW\Bin\w3dbsmgr.exe
Windows Live Messenger C:\Program Files\Windows Live\Messenger\msnmsgr.exe
Windows® Internet Explorer C:\WINDOWS\system32\msfeedssync.exe
Windows® Internet Explorer C:\WINDOWS\system32\webcheck.dll
Plugins du navigateur
---------------------
AcroIEHelperShim Library c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
Adobe Acrobat C:\Program Files\Internet Explorer\plugins\nppdf32.dll
Adobe Acrobat C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe
AVG Internet Security c:\program files\avg\avg8\avgssie.dll
bdoscandel.exe C:\WINDOWS\bdoscandel.exe
bdscanonline C:\WINDOWS\Downloaded Program Files\oscan8.ocx
bdupd.dll C:\WINDOWS\Downloaded Program Files\bdupd.dll
BitDefender QuickScan C:\Documents and Settings\Yael\Application Data\Mozilla\Firefox\Profiles\bt7s07d1.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\components\qscanff.dll
BitDefender QuickScan C:\Documents and Settings\Yael\Application Data\Mozilla\Firefox\Profiles\bt7s07d1.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\plugins\npqscan.dll
BitDefender QuickScan C:\Documents and Settings\Yael\Application Data\Mozilla\Firefox\Profiles\bt7s07d1.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\plugins\npqscan.dll (deleted)
frozen.dll C:\Documents and Settings\Yael\Application Data\Mozilla\Firefox\Profiles\bt7s07d1.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
googletoolbar-ff2.dll C:\Documents and Settings\Yael\Application Data\Mozilla\Firefox\Profiles\bt7s07d1.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff2.dll
googletoolbar-ff3.dll C:\Documents and Settings\Yael\Application Data\Mozilla\Firefox\Profiles\bt7s07d1.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff3.dll
googletoolbarloader.dll C:\Documents and Settings\Yael\Application Data\Mozilla\Firefox\Profiles\bt7s07d1.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbarloader.dll
ICQ C:\Program Files\ICQ7.2\ICQ.exe
IEAWSDC.DLL C:\WINDOWS\Downloaded Program Files\IEAWSDC.DLL
InstallShield Update Service C:\WINDOWS\Downloaded Program Files\dwusplay.dll
InstallShield Update Service C:\WINDOWS\Downloaded Program Files\dwusplay.exe
InstallShield Update Service C:\WINDOWS\Downloaded Program Files\isusweb.dll
ipsupd.dll C:\WINDOWS\Downloaded Program Files\ipsupd.dll
Java Deployment Toolkit 6.0.140.8 C:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll
Java(TM) Platform SE 6 U14 c:\program files\java\jre6\bin\jp2ssv.dll
Java(TM) Platform SE 6 U14 c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
Messenger C:\Program Files\Messenger\msmsgs.exe
Microsoft Office Live Plug-in for Firef C:\Program Files\Microsoft\Office Live\npOLW.dll
Microsoft Search Enhancement Pack c:\program files\microsoft\search enhancement pack\search helper\sepsearchhelperie.dll
Microsoft® Windows Live Login Helper c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
Microsoft® Windows Media Player Firefox C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
Microsoft® Windows® Operating System C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
Microsoft® Windows® Operating System C:\WINDOWS\system32\mswsock.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\rsvpsp.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\winrnr.dll
Mozilla ActiveX control and plugin supp C:\Program Files\Mozilla Firefox\plugins\npmozax.dll
Mozilla Default Plug-in C:\Program Files\Mozilla Firefox\plugins\npnul32.dll
nppdf32.FRA C:\Program Files\Internet Explorer\plugins\nppdf32.FRA
nppdf32.FRA C:\Program Files\Mozilla Firefox\plugins\nppdf32.FRA
NPSWF32.dll C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
Picasa C:\Program Files\Picasa2\npPicasa2.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Internet Explorer\plugins\npqtplugin.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Internet Explorer\plugins\npqtplugin2.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Internet Explorer\plugins\npqtplugin3.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Internet Explorer\plugins\npqtplugin4.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Internet Explorer\plugins\npqtplugin5.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Internet Explorer\plugins\npqtplugin6.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Internet Explorer\plugins\npqtplugin7.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
Silverlight Plug-In C:\Program Files\Microsoft Silverlight\4.0.50917.0\npctrl.dll
Windows Genuine Advantage C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll
Windows Live Toolbar c:\program files\windows live\toolbar\wltcore.dll
Windows Live® Photo Gallery C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
Windows Presentation Foundation C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
Windows® Internet Explorer C:\WINDOWS\system32\ieframe.dll
Fichiers manquants
------------------
Fichier non trouvé : C:\WINDOWS\System32\appmgmts.dll
--> HKLM\System\ControlSet001\services\AppMgmt\Parameters\"ServiceDll"
Fichier non trouvé : System32\Drivers\Bulk533.sys
--> HKLM\System\ControlSet001\services\USBCamera\"ImagePath"
Fichier non trouvé : System32\Drivers\Ca533av.sys
--> HKLM\System\ControlSet001\services\Ca533av\"ImagePath"
Analyse
-------
Aucun fichier téléchargé vers le serveur.
Analyse terminée - la communication a duré 28 secondes
Trafic total - 0.11 Mo envoyés, 637.77 Ko reçus
1414 fichiers et modules analysés - 180 seconds
==============================================================================
Et l'autre :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:48:30, on 21/11/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\brss01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Brother\ControlCenter2\brctrcen.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\eMule\emule.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\FinePixViewerS\QuickDCF2.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\PVSW\Bin\w3dbsmgr.exe
C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\Microsoft Office\Office10\WINWORD.EXE
C:\Program Files\Microsoft\Office Live\OfficeLiveSignIn.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: (no name) - {00e71626-0bef-11dc-8314-0800200c9a66} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: ???? ?????? ?? Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl05a\BrStDvPt.exe
O4 - HKLM\..\Run: [ControlCenter2.0] C:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: Pervasive.SQL Workgroup Engine.lnk = C:\PVSW\Bin\w3dbsmgr.exe
O4 - Global Startup: Exif Launcher S.lnk = C:\Program Files\FinePixViewerS\QuickDCF2.exe
O4 - Global Startup: Status Monitor.lnk = C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
O8 - Extra context menu item: &??? ?- Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://www.comsecure.co.il/OnlineScanner.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
Mon PC rame et j'aimerais bien que quelqu'un m'aide à le nettoyer.
J'ai scanné avec Bitfender et Hijackthis.
Voici les rapports :
QuickScan Beta 32-bit v0.9.9.52
-------------------------------
Date de l'analyse : Sun Nov 21 19:35:31 2010
ID de la machine : 985B8739
Aucune infection détectée.
--------------------------
Processus
---------
Ad-Aware Service Application 1620 C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
Ad-Aware Tray Application 3200 C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
Adobe Reader and Acrobat Manager 3000 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Application Launcher 2808 C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
AVG Internet Security 232 C:\Program Files\AVG\AVG8\avgcsrvx.exe
AVG Internet Security 840 C:\Program Files\AVG\AVG8\avgrsx.exe
AVG Internet Security 780 C:\PROGRA~1\AVG\AVG8\avgemc.exe
AVG Internet Security 2076 C:\PROGRA~1\AVG\AVG8\avgnsx.exe
AVG Internet Security 2756 C:\PROGRA~1\AVG\AVG8\avgtray.exe
AVG Internet Security 1884 C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
brother Industries Ltd brss01a.exe 1720 C:\WINDOWS\system32\brss01a.exe
brother Industries Ltd brsvc01a 1692 C:\WINDOWS\system32\brsvc01a.exe
CAPI_Worker Module 2372 C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
ControlCenter2 2652 C:\Program Files\Brother\ControlCenter2\brctrcen.exe
DAEMON Tools Lite 3424 C:\Program Files\DAEMON Tools Lite\DTLite.exe
Device Management 3972 C:\Program Files\Common Files\Teleca Shared\Generic.exe
eMule 3504 C:\Program Files\eMule\emule.exe
FinePixViewer 3588 C:\Program Files\FinePixViewerS\QuickDCF2.exe
Firefox 2668 C:\Program Files\Mozilla Firefox\firefox.exe
Java(TM) Platform SE 6 U14 188 C:\Program Files\Java\jre6\bin\jqs.exe
Microsoft ActiveSync 3296 C:\Program Files\Microsoft ActiveSync\wcescomm.exe
Microsoft ActiveSync 3512 C:\PROGRA~1\MICROS~3\rapimgr.exe
Microsoft Office Live Add-In 3276 C:\Program Files\Microsoft\Office Live\OfficeLiveSignIn.exe
Microsoft Office XP 2932 C:\Program Files\Microsoft Office\Office10\WINWORD.EXE
Microsoft Search Enhancement Pack 272 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
Microsoft® Windows® Operating System 1292 C:\Program Files\Outlook Express\msimn.exe
Microsoft® Windows® Operating System 1216 C:\WINDOWS\explorer.exe
Microsoft® Windows® Operating System 2484 C:\WINDOWS\system32\alg.exe
Microsoft® Windows® Operating System 836 C:\WINDOWS\system32\csrss.exe
Microsoft® Windows® Operating System 3312 C:\WINDOWS\system32\ctfmon.exe
Microsoft® Windows® Operating System 916 C:\WINDOWS\system32\lsass.exe
Microsoft® Windows® Operating System 904 C:\WINDOWS\system32\services.exe
Microsoft® Windows® Operating System 748 C:\WINDOWS\system32\smss.exe
Microsoft® Windows® Operating System 1724 C:\WINDOWS\system32\spoolsv.exe
Microsoft® Windows® Operating System 516 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 1912 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 1220 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 1800 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 1316 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 1164 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 1124 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 1060 C:\WINDOWS\system32\svchost.exe
Microsoft® Windows® Operating System 2280 C:\WINDOWS\system32\wbem\unsecapp.exe
Microsoft® Windows® Operating System 2396 C:\WINDOWS\system32\wbem\wmiprvse.exe
Microsoft® Windows® Operating System 860 C:\WINDOWS\system32\winlogon.exe
NVIDIA Driver Helper Service, Version 8 248 C:\WINDOWS\system32\nvsvc32.exe
PaperPort 2584 C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
QuickTime 3024 C:\Program Files\QuickTime\qttask.exe
Skype 3400 C:\Program Files\Skype\Phone\Skype.exe
Skype Extras Manager 1480 C:\Program Files\Skype\Plugin Manager\skypePM.exe
Status Monitor 3976 C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe
Status Monitor 3648 C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
w3dbsmgr.exe 3676 C:\PVSW\Bin\w3dbsmgr.exe
Windows Live Communications Platform 3248 C:\Program Files\Windows Live\Contacts\wlcomm.exe
Windows Live Messenger 3188 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
Activité du réseau
------------------
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 209.85.149.147
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 74.125.39.18
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 74.125.39.18
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 66.46.185.73
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 194.90.36.202
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 212.150.35.67
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 74.125.39.18
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 66.46.185.73
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 74.125.39.18
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 74.125.39.18
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 74.125.39.18
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 66.46.185.73
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 88.221.61.115
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 209.85.149.113
Processus avgnsx.exe (2076) connecté sur le port 80 (HTTP) --> 209.85.149.113
Processus firefox.exe (2668) connecté sur le port 443 (HTTP over SSL) --> 66.29.219.22
Processus firefox.exe (2668) connecté sur le port 443 (HTTP over SSL) --> 209.85.149.147
Processus firefox.exe (2668) connecté sur le port 443 (HTTP over SSL) --> 66.29.219.22
Processus firefox.exe (2668) connecté sur le port 443 (HTTP over SSL) --> 66.29.219.22
Processus firefox.exe (2668) connecté sur le port 443 (HTTP over SSL) --> 74.125.39.18
Processus msnmsgr.exe (3188) connecté sur le port 1863 (MSN) --> 64.4.44.78
Processus Skype.exe (3400) connecté sur le port 49663 --> 84.229.11.15
Processus Skype.exe (3400) connecté sur le port 49938 --> 77.125.80.12
Processus Skype.exe (3400) connecté sur le port 27918 --> 84.110.9.218
Processus emule.exe (3504) connecté sur le port 4232 --> 212.179.18.140
Processus svchost.exe (1124) écoute sur les ports: 135 (RPC)
Processus Skype.exe (3400) écoute sur les ports: 80 (HTTP), 443 (HTTP over SSL), 32925
Processus emule.exe (3504) écoute sur les ports: 29417
Processus w3dbsmgr.exe (3676) écoute sur les ports: 1583, 3351
Fichiers critiques et Autorun
-----------------------------
Ad-Aware Admin Application C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Adobe Acrobat C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
Adobe Reader and Acrobat Manager C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Application Launcher C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
AVG Internet Security C:\Program Files\AVG\AVG8\avgtray.exe
AVG Internet Security C:\WINDOWS\system32\avgrsstx.dll
BrStDvPt C:\Program Files\Brother\Brmfl05a\BrStDvPt.exe
ControlCenter2 C:\Program Files\Brother\ControlCenter2\brctrcen.exe
DAEMON Tools Lite C:\Program Files\DAEMON Tools Lite\DTLite.exe
eMule C:\Program Files\eMule\emule.exe
FinePixViewer C:\Program Files\FinePixViewerS\QuickDCF2.exe
Microsoft ActiveSync C:\Program Files\Microsoft ActiveSync\wcescomm.exe
Microsoft® Windows® Operating System C:\WINDOWS\system32\browseui.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\crypt32.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\cryptnet.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\cscdll.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\ctfmon.exe
Microsoft® Windows® Operating System C:\WINDOWS\system32\dimsntfy.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\dumprep.exe
Microsoft® Windows® Operating System C:\WINDOWS\system32\logonui.exe
Microsoft® Windows® Operating System C:\WINDOWS\system32\sclgntfy.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\shell32.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\stobject.dll
Microsoft® Windows® Operating System c:\windows\system32\userinit.exe
Microsoft® Windows® Operating System C:\WINDOWS\system32\wlnotify.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\WPDShServiceObj.dll
NVIDIA Compatible Windows 2000 Display C:\WINDOWS\system32\NvCpl.dll
NVIDIA Media Center Library C:\WINDOWS\system32\NvMcTray.dll
PaperPort C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
PaperPort C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
QuickTime C:\Program Files\QuickTime\qttask.exe
Realtek AC97 Audio - Event Monitor C:\WINDOWS\ALCMTR.EXE
Skype C:\Program Files\Skype\\Phone\Skype.exe
SSBkgdUpdate Application C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe
Status Monitor C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
w3dbsmgr.exe C:\PVSW\Bin\w3dbsmgr.exe
Windows Live Messenger C:\Program Files\Windows Live\Messenger\msnmsgr.exe
Windows® Internet Explorer C:\WINDOWS\system32\msfeedssync.exe
Windows® Internet Explorer C:\WINDOWS\system32\webcheck.dll
Plugins du navigateur
---------------------
AcroIEHelperShim Library c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
Adobe Acrobat C:\Program Files\Internet Explorer\plugins\nppdf32.dll
Adobe Acrobat C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
Adobe® Flash® Player ActiveX C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe
AVG Internet Security c:\program files\avg\avg8\avgssie.dll
bdoscandel.exe C:\WINDOWS\bdoscandel.exe
bdscanonline C:\WINDOWS\Downloaded Program Files\oscan8.ocx
bdupd.dll C:\WINDOWS\Downloaded Program Files\bdupd.dll
BitDefender QuickScan C:\Documents and Settings\Yael\Application Data\Mozilla\Firefox\Profiles\bt7s07d1.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\components\qscanff.dll
BitDefender QuickScan C:\Documents and Settings\Yael\Application Data\Mozilla\Firefox\Profiles\bt7s07d1.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\plugins\npqscan.dll
BitDefender QuickScan C:\Documents and Settings\Yael\Application Data\Mozilla\Firefox\Profiles\bt7s07d1.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\plugins\npqscan.dll (deleted)
frozen.dll C:\Documents and Settings\Yael\Application Data\Mozilla\Firefox\Profiles\bt7s07d1.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
googletoolbar-ff2.dll C:\Documents and Settings\Yael\Application Data\Mozilla\Firefox\Profiles\bt7s07d1.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff2.dll
googletoolbar-ff3.dll C:\Documents and Settings\Yael\Application Data\Mozilla\Firefox\Profiles\bt7s07d1.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff3.dll
googletoolbarloader.dll C:\Documents and Settings\Yael\Application Data\Mozilla\Firefox\Profiles\bt7s07d1.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbarloader.dll
ICQ C:\Program Files\ICQ7.2\ICQ.exe
IEAWSDC.DLL C:\WINDOWS\Downloaded Program Files\IEAWSDC.DLL
InstallShield Update Service C:\WINDOWS\Downloaded Program Files\dwusplay.dll
InstallShield Update Service C:\WINDOWS\Downloaded Program Files\dwusplay.exe
InstallShield Update Service C:\WINDOWS\Downloaded Program Files\isusweb.dll
ipsupd.dll C:\WINDOWS\Downloaded Program Files\ipsupd.dll
Java Deployment Toolkit 6.0.140.8 C:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll
Java(TM) Platform SE 6 U14 c:\program files\java\jre6\bin\jp2ssv.dll
Java(TM) Platform SE 6 U14 c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
Messenger C:\Program Files\Messenger\msmsgs.exe
Microsoft Office Live Plug-in for Firef C:\Program Files\Microsoft\Office Live\npOLW.dll
Microsoft Search Enhancement Pack c:\program files\microsoft\search enhancement pack\search helper\sepsearchhelperie.dll
Microsoft® Windows Live Login Helper c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
Microsoft® Windows Media Player Firefox C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
Microsoft® Windows® Operating System C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
Microsoft® Windows® Operating System C:\WINDOWS\system32\mswsock.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\rsvpsp.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\winrnr.dll
Mozilla ActiveX control and plugin supp C:\Program Files\Mozilla Firefox\plugins\npmozax.dll
Mozilla Default Plug-in C:\Program Files\Mozilla Firefox\plugins\npnul32.dll
nppdf32.FRA C:\Program Files\Internet Explorer\plugins\nppdf32.FRA
nppdf32.FRA C:\Program Files\Mozilla Firefox\plugins\nppdf32.FRA
NPSWF32.dll C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
Picasa C:\Program Files\Picasa2\npPicasa2.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Internet Explorer\plugins\npqtplugin.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Internet Explorer\plugins\npqtplugin2.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Internet Explorer\plugins\npqtplugin3.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Internet Explorer\plugins\npqtplugin4.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Internet Explorer\plugins\npqtplugin5.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Internet Explorer\plugins\npqtplugin6.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Internet Explorer\plugins\npqtplugin7.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
QuickTime Plug-in 7.0.3 C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
Silverlight Plug-In C:\Program Files\Microsoft Silverlight\4.0.50917.0\npctrl.dll
Windows Genuine Advantage C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll
Windows Live Toolbar c:\program files\windows live\toolbar\wltcore.dll
Windows Live® Photo Gallery C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
Windows Presentation Foundation C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
Windows® Internet Explorer C:\WINDOWS\system32\ieframe.dll
Fichiers manquants
------------------
Fichier non trouvé : C:\WINDOWS\System32\appmgmts.dll
--> HKLM\System\ControlSet001\services\AppMgmt\Parameters\"ServiceDll"
Fichier non trouvé : System32\Drivers\Bulk533.sys
--> HKLM\System\ControlSet001\services\USBCamera\"ImagePath"
Fichier non trouvé : System32\Drivers\Ca533av.sys
--> HKLM\System\ControlSet001\services\Ca533av\"ImagePath"
Analyse
-------
Aucun fichier téléchargé vers le serveur.
Analyse terminée - la communication a duré 28 secondes
Trafic total - 0.11 Mo envoyés, 637.77 Ko reçus
1414 fichiers et modules analysés - 180 seconds
==============================================================================
Et l'autre :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:48:30, on 21/11/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\brss01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Brother\ControlCenter2\brctrcen.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\eMule\emule.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\FinePixViewerS\QuickDCF2.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\PVSW\Bin\w3dbsmgr.exe
C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\Microsoft Office\Office10\WINWORD.EXE
C:\Program Files\Microsoft\Office Live\OfficeLiveSignIn.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: (no name) - {00e71626-0bef-11dc-8314-0800200c9a66} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: ???? ?????? ?? Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl05a\BrStDvPt.exe
O4 - HKLM\..\Run: [ControlCenter2.0] C:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: Pervasive.SQL Workgroup Engine.lnk = C:\PVSW\Bin\w3dbsmgr.exe
O4 - Global Startup: Exif Launcher S.lnk = C:\Program Files\FinePixViewerS\QuickDCF2.exe
O4 - Global Startup: Status Monitor.lnk = C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
O8 - Extra context menu item: &??? ?- Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://www.comsecure.co.il/OnlineScanner.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
A voir également:
- Rapports Bitfender et Hijackthis à analyser
- Hijackthis - Télécharger - Antivirus & Antimalwares
- Analyser et réparer disque dur externe - Guide
- Analyser clé usb - Guide
- Image analyser - Télécharger - Photo & Graphisme
- Analyser performance pc - Guide
et puis tu pourras faire un nettoyage disque et une défragmentation !!
Nettoyage :
.Cliques droit sur poste de travail
.cliques sur ouvrir
.cliques droit sur le disque C
.sur Propriétés
.sur l'onglet Général
.Cliques sur le bouton nettoyage de disque
.Et puis sur OK
tu le fais pour chacun de tes disques
Vérifications des erreurs :
.Cliques droit sur poste de travail
.cliques sur ouvrir
.cliques droit sur le disque C
.sur Propriétés
.sur l'onglet Outil
.et puis sur Vérifier maintenant
. une boîte s'ouvre, cocher les cases :
.réparer automatiquement les erreurs
.rechercher et tenter une récupération
.cliques sur Démarrer, et ok
Note : s'il te dis de redémarrer ton Pc pour le faire , tu redémarres et tu laisses faire, cela prend un peu de temps c'est normal
tu le fais pour chacun de tes disques
ensuite toujours dans le même onglet tu choisis :
Défragmentation :
.cliques sur défragmenter maintenant, et OK
.une boîte s'ouvre, tu sélectionnes le disque à défragmenter
.tu cliques sur analyser ,puis après l'analyse
.sur défragmenter . et puis OK
tu le fais pour chacun de tes disques