Cheval de troie downloader - help !
carrie06
Messages postés
5
Statut
Membre
-
bjoiu -
bjoiu -
Bonjour,
Mon ordinateur est infecté. J'ai reçu de club internet un message disant que mon ordinateur était infecté et qu'ils avaient reçu des plaintes concernant des attaques venant de mon ordi.
J'ai aussi plusieurs fois eu des erreurs système (message sur écran bleu - impossible de faire quoi que ce soit sauf couper l'alimentation et redémarrer).
Le scan online de symantec donne le rapport suivant:
C:\Documents and Settings\Caroline\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\crtdcghcn.jar-1108248-2c7bf4f0.zip est infecté par Downloader.
Comment l'éradiquer ??
Merci pour votre aide.
Mon ordinateur est infecté. J'ai reçu de club internet un message disant que mon ordinateur était infecté et qu'ils avaient reçu des plaintes concernant des attaques venant de mon ordi.
J'ai aussi plusieurs fois eu des erreurs système (message sur écran bleu - impossible de faire quoi que ce soit sauf couper l'alimentation et redémarrer).
Le scan online de symantec donne le rapport suivant:
C:\Documents and Settings\Caroline\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\crtdcghcn.jar-1108248-2c7bf4f0.zip est infecté par Downloader.
Comment l'éradiquer ??
Merci pour votre aide.
A voir également:
- Cheval de troie downloader - help !
- Downloader for pc - Télécharger - Téléchargement & Transfert
- Freemake video downloader - Télécharger - Téléchargement & Transfert
- Flash video downloader - Télécharger - Téléchargement & Transfert
- Youtube downloader - Télécharger - Conversion & Codecs
- Mass downloader - Télécharger - Outils Internet
5 réponses
Tiens moi au courant du resultat
Attention d'eliminer seulement dans la zone a risque
Attention d'eliminer seulement dans la zone a risque
Oui essaie de force le passage
As tu mis les mises jour des definitions ?
As tu mis les mises jour des definitions ?
L'analyse a fonctionné mais à part quelques cookies, il n'a rien détecté.
J'avais bien les mises à jour.
Quoi faire maintenant ?
Merci !
Voilà le rapport:
Spyware Terminator Version: 1.9.3.142
Start time: 20/07/2007 12:51:27
System: Windows XP
User: Limited
Processes Scan
C:\WINDOWS\system32\winlogon.exe [Microsoft Corporation] C:\WINDOWS\system32\sockspy.dll [Empty], C:\Program Files\Intel\Wireless\Bin\LgNotify.dll [Intel Corporation],
C:\WINDOWS\system32\services.exe [Microsoft Corporation] sockspy.dll,
savedump.exe [file not found]
C:\WINDOWS\system32\lsass.exe [Microsoft Corporation] sockspy.dll,
C:\WINDOWS\system32\svchost.exe [Microsoft Corporation] sockspy.dll, sockspy.dll, sockspy.dll, sockspy.dll, sockspy.dll,
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [Intel Corporation] PsRegApi.dll [Intel Corporation], TraceAPI.DLL [Intel Corporation], sockspy.dll,
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [Intel Corporation ] TraceAPI.DLL, PsRegApi.dll, sockspy.dll,
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe [Intel® Corporation] C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll [Intel Corporation], TraceAPI.DLL, PsRegApi.dll, C:\Program Files\Intel\Wireless\Bin\MurocApi.dll [Intel Corporation], C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll [Intel Corporation], C:\Program Files\Intel\Wireless\Bin\C1XStngs.dll [Intel Corporation], sockspy.dll, C:\Program Files\Intel\Wireless\Bin\C8021FRA.dll [Intel Corporation], C:\Program Files\Intel\Wireless\Bin\LSAWRAPI.dll [Intel Corporation],
C:\WINDOWS\system32\LEXBCES.EXE [Lexmark International, Inc.] sockspy.dll, lexp2p32.dll [Lexmark International, Inc.], lex2kusb.dll [Lexmark International, Inc.],
C:\WINDOWS\system32\spoolsv.exe [Microsoft Corporation] sockspy.dll, C:\WINDOWS\system32\LEXLMPM.DLL [Lexmark International, Inc.], C:\WINDOWS\system32\LexBce.dll [Lexmark International, Inc.], C:\WINDOWS\system32\hpzsnt05.dll [HP], C:\WINDOWS\System32\spool\PRTPROCS\W32X86\DLBCPP5C.dll [Empty], C:\WINDOWS\system32\DLBCpwr.dll [Dell Computer Corporation], C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\hpzntp05.dll [HP], C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\hpz2ku05.dll [HP],
C:\WINDOWS\system32\LEXPPS.EXE [Lexmark International, Inc.] sockspy.dll, LEXBCE.DLL,
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe [Intel Corporation] PfMgrApi.dll, TraceAPI.DLL, PsRegApi.dll, MurocApi.dll, S24MUDLL.dll, C1XStngs.dll, sockspy.dll, C8021FRA.dll, LSAWRAPI.dll, ZcSvcFRA.dll [Intel Corporation], C:\Program Files\Intel\Wireless\Bin\D8021Xps.DLL [Empty],
C:\WINDOWS\Explorer.EXE [Microsoft Corporation] sockspy.dll,
C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe [America Online, Inc.] sockspy.dll,
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe [Dell Inc.] sockspy.dll,
C:\WINDOWS\system32\hkcmd.exe [Intel Corporation] hccutils.DLL [Intel Corporation], sockspy.dll, igfxdev.dll [Intel Corporation], igfxsrvc.dll [Intel Corporation], igfxres.dll [Intel Corporation], igfxhk.dll [Intel Corporation],
C:\Program Files\Apoint\Apoint.exe [Alps Electric Co., Ltd.] sockspy.dll, VXDIF.DLL [Alps Electric Co., Ltd.], Apoint.DLL [Alps Electric Co., Ltd.], EzAuto.dll [Alps Electric Co., Ltd.], EzLaunch.DLL [Alps Electric Co., Ltd.],
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe [Empty] sockspy.dll,
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [Intel Corporation] PsRegApi.dll, sockspy.dll, FrWrkFRA.dll [Intel Corporation], ConnMgr.dll [Intel Corporation], MurocApi.dll, S24MUDLL.dll, C1XStngs.dll, TraceAPI.DLL, PfMgrApi.dll, C8021FRA.dll, LSAWRAPI.dll, IntWAFRA.dll [Intel Corporation], D8021Xps.DLL,
C:\Program Files\Dell\QuickSet\quickset.exe [Empty] sockspy.dll, dadkeyb.dll [Empty],
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe [CyberLink Corp.] sockspy.dll,
C:\Program Files\Dell\Media Experience\DMXLauncher.exe [Empty] sockspy.dll,
C:\WINDOWS\system32\dla\tfswctrl.exe [Sonic Solutions] tfswapi.dll [Sonic Solutions], tfswcres.dll [Sonic Solutions], sockspy.dll,
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [InstallShield Software Corporation] sockspy.dll,
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe [HP] sockspy.dll, HPZR3205.DLL [HP],
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [RealNetworks, Inc.] sockspy.dll,
C:\Program Files\Softwin\BitDefender10\bdmcon.exe [SOFTWIN S.R.L.] C:\WINDOWS\system32\XCOMM.dll [Softwin], procinf.dll [SOFTWIN S.R.L.], C:\Program Files\Softwin\BitDefender10\TxTools.dll [SOFTWIN S.R.L], C:\Program Files\Softwin\BitDefender10\BDGUICtl.dll [Softwin], C:\Program Files\Softwin\BitDefender10\bdutils.dll [Empty], C:\Program Files\Softwin\BitDefender10\txmlx.dll [Softwin], C:\Program Files\Softwin\BitDefender10\bdch.dll [SOFTWIN], C:\Program Files\Softwin\BitDefender10\bdsubmit.dll [SOFTWIN], NAG.dll [SOFTWIN S.R.L.], sockspy.dll, popup.dll [SOFTWIN S.R.L.], agentreg.dll [SOFTWIN S.R.L.], C:\Program Files\Softwin\BitDefender10\getfile.dll [Empty], C:\Program Files\Softwin\BitDefender10\WSLib.dll [Empty], C:\Program Files\Softwin\BitDefender10\bdusers.dll [TODO: <Company name>], main.dll [SOFTWIN S.R.L.], antivirus.dll [SOFTWIN S.R.L.], antispy.dll [SOFTWIN S.R.L.], live.dll [SOFTWIN S.R.L.], vshield.dll [SOFTWIN S.R.L.], vscan.dll [SOFTWIN S.R.L.], quar.dll [SOFTWIN S.R.L.], quarcore.dll [SOFTWIN S.R.L.], NTTools.dll [SOFTWIN S.R.L.], ashield.dll [SOFTWIN S.R.L.], Wizards.dll [SOFTWIN S.R.L.], privintf.dll [SOFTWIN S.R.L.], sysinfo.dll [SOFTWIN S.R.L.], BDElev.DLL [SOFTWIN S.R.L.],
C:\Program Files\Softwin\BitDefender10\bdagent.exe [SOFTWIN S.R.L.] bdch.dll, bdsubmit.dll, bdutils.dll, XCOMM.dll, procinf.dll, BDGUICtl.dll, txmlx.dll, sockspy.dll,
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [Crawler.com] sockspy.dll,
C:\Program Files\Apoint\Apntex.exe [Alps Electric Co., Ltd.] sockspy.dll, VXDIF.DLL,
C:\WINDOWS\system32\ctfmon.exe [Microsoft Corporation] sockspy.dll,
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [Intel Corporation] sockspy.dll,
C:\Program Files\Spyware Terminator\sp_rsser.exe [Crawler.com] sockspy.dll,
C:\Program Files\Intel\Wireless\Bin\1XConfig.exe [Intel] C:\Program Files\Intel\Wireless\Bin\IntelAE5.dll [Meetinghouse Data Communications], TraceAPI.dll, PsRegApi.dll, sockspy.dll, D8021Xps.DLL,
C:\Program Files\AOL 9.0\aoltray.exe [America Online, Inc.] sockspy.dll,
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe [SOFTWIN S.R.L] sockspy.dll,
C:\Program Files\Digital Line Detect\DLG.exe [BVRP Software] BVRPDIAG.dll [BVRP Software], sockspy.dll, C:\WINDOWS\system32\MdmXSdk.dll [Conexant],
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe [Empty] XCOMM.dll, C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdcore.dll [SOFTWIN SRL], C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdsubmit.dll [SOFTWIN], sockspy.dll, libfn.dll [Empty], avxdisk.dll [Empty],
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe [SOFTWIN S.R.L.] XCOMM.dll, C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\HTTPGETF.dll [Empty], C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\zlib.dll [Empty], C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\bdch.dll [SOFTWIN], C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\bdsubmit.dll [SOFTWIN], sockspy.dll,
C:\Program Files\Softwin\BitDefender10\vsserv.exe [SOFTWIN S.R.L.] C:\Program Files\Softwin\BitDefender10\bdfltlib.dll [Empty], C:\Program Files\Softwin\BitDefender10\zlib.dll [Empty], XCOMM.dll, procinf.dll, C:\Program Files\Softwin\BitDefender10\mimeinf.dll [Empty], bdch.dll, bdsubmit.dll, C:\Program Files\Softwin\BitDefender10\bdfdll_x86.dll [Empty], bdutils.dll, WSLib.dll, sockspy.dll, quarcore.dll, NTTools.dll, privscan.dll [SOFTWIN S.R.L.], agentreg.dll, getfile.dll, BDGUICtl.dll, txmlx.dll, wsid.dll [SOFTWIN S.R.L.], sch_serv.dll [SOFTWIN S.R.L.], C:\Program Files\Softwin\BitDefender10\bdardrv.dll [SOFTWIN S.R.L], C:\Program Files\Softwin\BitDefender10\PROFOS.dll [Empty], C:\Program Files\Softwin\BitDefender10\trufos.dll [Empty], C:\Program Files\Softwin\BitDefender10\libmpack.dll [Empty], C:\WINDOWS\system32\XRegLib.dll [Empty], htmlpack.dll [SOFTWIN S.R.L.], C:\Program Files\Softwin\BitDefender10\bdpredir.dll [Softwin SRL], bdpop3p.dll [SOFTWIN S.R.L.], C:\Program Files\Softwin\BitDefender10\bdsmtpp.dll [Empty], C:\Program Files\Softwin\BitDefender10\httproxy.dll [SOFTWIN SRL],
C:\WINDOWS\system32\wbem\wmiprvse.exe [Microsoft Corporation] sockspy.dll,
C:\WINDOWS\System32\alg.exe [Microsoft Corporation] sockspy.dll,
C:\WINDOWS\system32\wuauclt.exe [Microsoft Corporation] sockspy.dll,
C:\Program Files\Spyware Terminator\SpywareTerminator.exe [Crawler.com] sockspy.dll,
Startup Scan
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"CTFMON.EXE" = "C:\WINDOWS\system32\ctfmon.exe" [ Microsoft Corporation ]
"MSMSGS" = "C:\PROGRAM FILES\MESSENGER\MSMSGS.EXE" [ Microsoft Corporation ]
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"IgfxTray" = "C:\WINDOWS\system32\igfxtray.exe" [ Intel Corporation ]
"HotKeysCmds" = "C:\WINDOWS\system32\hkcmd.exe" [ Intel Corporation ]
"Apoint" = "C:\Program Files\Apoint\Apoint.exe" [ Alps Electric Co., Ltd. ]
"SunJavaUpdateSched" = "C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe" [ Empty ]
"IntelWireless" = "C:\PROGRAM FILES\INTEL\WIRELESS\BIN\IFRMEWRK.EXE" [ Intel Corporation ]
"Dell QuickSet" = "C:\Program Files\Dell\QuickSet\quickset.exe" [ Empty ]
"DVDLauncher" = "C:\PROGRAM FILES\CYBERLINK\POWERDVD\DVDLAUNCHER.EXE" [ CyberLink Corp. ]
"QuickTime Task" = "C:\PROGRAM FILES\QUICKTIME\QTTASK.EXE" [ Apple Computer, Inc. ]
"DMXLauncher" = "C:\Program Files\Dell\Media Experience\DMXLauncher.exe" [ Empty ]
"dla" = "C:\WINDOWS\system32\dla\tfswctrl.exe" [ Sonic Solutions ]
"ISUSPM Startup" = "C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe" [ InstallShield Software Corporation ]
"ISUSScheduler" = "C:\PROGRAM FILES\FICHIERS COMMUNS\INSTALLSHIELD\UPDATESERVICE\ISSCH.EXE" [ InstallShield Software Corporation ]
"HPDJ Taskbar Utility" = "C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe" [ HP ]
"TkBellExe" = "C:\PROGRAM FILES\FICHIERS COMMUNS\REAL\UPDATE_OB\REALSCHED.EXE" [ RealNetworks, Inc. ]
"BDMCon" = "C:\PROGRAM FILES\SOFTWIN\BITDEFENDER10\BDMCON.EXE" [ SOFTWIN S.R.L. ]
"BDAgent" = "C:\PROGRAM FILES\SOFTWIN\BITDEFENDER10\BDAGENT.EXE" [ SOFTWIN S.R.L. ]
"SpywareTerminator" = "C:\PROGRAM FILES\SPYWARE TERMINATOR\SPYWARETERMINATORSHIELD.EXE" [ Crawler.com ]
Toolbars Scan
&Crawler Toolbar {4B3803EA-5230-4DC3-A7FC-33638F3D3542} C:\Program Files\Crawler\Toolbar\ctbr.dll [Crawler.com]
Explorer Bars Scan
Real.com {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} C:\WINDOWS\system32\Shdocvw.dll [Microsoft Corporation]
Real.com {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} C:\WINDOWS\system32\Shdocvw.dll [Microsoft Corporation]
BHO Scan
AcroIEHlprObj Class {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [Adobe Systems Incorporated]
{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} C:\Program Files\Crawler\Toolbar\ctbr.dll [Crawler.com]
DriveLetterAccess {5CA3D70E-1895-11CF-8E15-001234567890} C:\WINDOWS\system32\dla\tfswshx.dll [Sonic Solutions]
Real.com {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} C:\WINDOWS\system32\Shdocvw.dll [Microsoft Corporation]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} []
{CD67F990-D8E9-11d2-98FE-00C0F0318AFE} []
{FB5F1910-F110-11d2-BB9E-00C04F795683} []
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
{42071714-76d4-11d1-8b24-00a0c9068ff3} = Extension Affichage Panorama du Panneau de configuration (deskpan.dll) []
{764BF0E1-F219-11ce-972D-00AA00A14F56} = Extensions de l'environnement de compression de fichiers () []
{853FE2B1-B769-11d0-9C4E-00C04FB6C6FA} = Menu contextuel de cryptage () []
{88895560-9AA2-1069-930E-00AA0030EBC8} = Extension icône HyperTerminal (C:\WINDOWS\system32\hticons.dll) [Hilgraeve, Inc.]
{0DF44EAA-FF21-4412-828E-260A8728E7F1} = Barre des tâches et menu Démarrer () []
{00E7B358-F65B-4dcf-83DF-CD026B94BFD4} = Autoplay for SlideShow (C:\WINDOWS\SYSTEM32\SHIMGVW.DLL) [Microsoft Corporation]
{7A9D77BD-5403-11d2-8785-2E0420524153} = Comptes d'utilisateurs () []
{5CA3D70E-1895-11CF-8E15-001234567890} = DriveLetterAccess (C:\WINDOWS\system32\dla\tfswshx.dll) [Sonic Solutions]
{0006F045-0000-0000-C000-000000000046} = Microsoft Outlook Custom Icon Handler (C:\Program Files\Microsoft Office\Office10\OLKFSTUB.DLL) [Microsoft Corporation]
{42042206-2D85-11D3-8CFF-005004838597} = Microsoft Office HTML Icon Handler (C:\Program Files\Microsoft Office\Office10\msohev.dll) [Microsoft Corporation]
{21569614-B795-46b1-85F4-E737A8DC09AD} = Shell Search Band (C:\WINDOWS\system32\browseui.dll) [Microsoft Corporation]
{F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4} = Shell Extensions for RealOne Player (C:\Program Files\Real\RealPlayer\rpshell.dll) [RealNetworks, Inc.]
{B41DB860-8EE4-11D2-9906-E49FADC173CA} = WinRAR shell extension (C:\Program Files\WinRAR\rarext.dll) []
{BD88A479-9623-4897-8546-BC62B9628F44} = SPTHandler (C:\Program Files\Spyware Terminator\sptcontmenu.dll) [Crawler.com]
Winlogon Notify Scan
igfxcui = igfxsrvc.dll (C:\WINDOWS\system32\igfxsrvc.dll) [Intel Corporation]
IntelWireless = C:\Program Files\Intel\Wireless\Bin\LgNotify.dll (C:\Program Files\Intel\Wireless\Bin\LgNotify.dll) [Intel Corporation]
WgaLogon = WgaLogon.dll (C:\WINDOWS\system32\WgaLogon.dll) [Microsoft Corporation]
Services Scan
"AegisP" = C:\WINDOWS\system32\DRIVERS\AegisP.sys [Meetinghouse Data Communications]
"AliIde" = C:\WINDOWS\system32\DRIVERS\aliide.sys [Acer Laboratories Inc.]
"amdagp" = C:\WINDOWS\system32\DRIVERS\amdagp.sys [Advanced Micro Devices, Inc.]
"AOL ACS" = C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe [America Online, Inc.]
"ApfiltrService" = C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [Alps Electric Co., Ltd.]
"APPDRV" = C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS [Dell Inc]
"asc" = C:\WINDOWS\system32\DRIVERS\asc.sys [Advanced System Products, Inc.]
"asc3550" = C:\WINDOWS\system32\DRIVERS\asc3550.sys [Advanced System Products, Inc.]
"bdfdll" = C:\PROGRAM FILES\SOFTWIN\BITDEFENDER10\BDFDLL.SYS []
"BDFSDRV" = C:\PROGRAM FILES\SOFTWIN\BITDEFENDER10\BDFSDRV.SYS []
"bdpredir" = C:\PROGRAM FILES\SOFTWIN\BITDEFENDER10\BDPREDIR.SYS [Softwin SRL]
"BDRSDRV" = C:\PROGRAM FILES\SOFTWIN\BITDEFENDER10\BDRSDRV.SYS []
"bdss" = C:\PROGRAM FILES\FICHIERS COMMUNS\SOFTWIN\BITDEFENDER SCAN SERVER\BDSS.EXE []
"CmdIde" = C:\WINDOWS\system32\DRIVERS\cmdide.sys [CMD Technology, Inc.]
"dac2w2k" = C:\WINDOWS\system32\DRIVERS\dac2w2k.sys [Mylex Corporation]
"dmboot" = C:\WINDOWS\System32\drivers\dmboot.sys [Microsoft Corp., Veritas Software]
"dmio" = C:\WINDOWS\System32\drivers\dmio.sys [Microsoft Corp., Veritas Software]
"dmload" = C:\WINDOWS\System32\drivers\dmload.sys [Microsoft Corp., Veritas Software.]
"drvmcdb" = C:\WINDOWS\system32\drivers\drvmcdb.sys [Sonic Solutions]
"drvnddm" = C:\WINDOWS\system32\drivers\drvnddm.sys [Sonic Solutions]
"E100B" = C:\WINDOWS\system32\DRIVERS\e100b325.sys [Intel Corporation]
"EvtEng" = C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [Intel Corporation]
"HSFHWICH" = C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys [Conexant Systems, Inc.]
"HSF_DP" = C:\WINDOWS\system32\DRIVERS\HSF_DP.sys [Conexant Systems, Inc.]
"ialm" = C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [Intel Corporation]
"IWCA" = C:\WINDOWS\system32\DRIVERS\iwca.sys [Intel Corporation]
"LexBceS" = C:\WINDOWS\system32\LEXBCES.EXE [Lexmark International, Inc.]
"LIVESRV" = C:\PROGRAM FILES\FICHIERS COMMUNS\SOFTWIN\BITDEFENDER UPDATE SERVICE\LIVESRV.EXE [SOFTWIN S.R.L.]
"mdmxsdk" = C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [Conexant]
"mraid35x" = C:\WINDOWS\system32\DRIVERS\mraid35x.sys [American Megatrends Inc.]
"NetSvc" = C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe [Intel(R) Corporation]
"NICCONFIGSVC" = C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe [Dell Inc.]
"nv" = C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [NVIDIA Corporation]
"omci" = C:\WINDOWS\system32\DRIVERS\omci.sys [Dell Inc]
"Ptilink" = C:\WINDOWS\system32\DRIVERS\ptilink.sys [Parallel Technologies, Inc.]
"PxHelp20" = C:\WINDOWS\System32\Drivers\PxHelp20.sys [Sonic Solutions]
"ql1080" = C:\WINDOWS\system32\DRIVERS\ql1080.sys [QLogic Corporation]
"ql12160" = C:\WINDOWS\system32\DRIVERS\ql12160.sys [QLogic Corporation]
"ql1280" = C:\WINDOWS\system32\DRIVERS\ql1280.sys [QLogic Corporation]
"RegSrvc" = C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [Intel Corporation]
"S24EventMonitor" = C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [Intel Corporation ]
"s24trans" = C:\WINDOWS\system32\DRIVERS\s24trans.sys [Intel Corporation]
"Secdrv" = C:\WINDOWS\system32\DRIVERS\secdrv.sys []
"sisagp" = C:\WINDOWS\system32\DRIVERS\sisagp.sys [Silicon Integrated Systems Corporation]
"Sparrow" = C:\WINDOWS\system32\DRIVERS\sparrow.sys [Adaptec, Inc.]
"sp_rsdrv2" = C:\WINDOWS\SYSTEM32\DRIVERS\SP_RSDRV2.SYS [Crawler.com]
"sp_rssrv" = C:\PROGRAM FILES\SPYWARE TERMINATOR\SP_RSSER.EXE [Crawler.com]
"sscdbhk5" = C:\WINDOWS\system32\drivers\sscdbhk5.sys [Sonic Solutions]
"ssrtln" = C:\WINDOWS\system32\drivers\ssrtln.sys [Sonic Solutions]
"STAC97" = C:\WINDOWS\system32\drivers\stac97.sys [SigmaTel, Inc.]
"symc810" = C:\WINDOWS\system32\DRIVERS\symc810.sys [Symbios Logic Inc.]
"symc8xx" = C:\WINDOWS\system32\DRIVERS\symc8xx.sys [LSI Logic]
"sym_hi" = C:\WINDOWS\system32\DRIVERS\sym_hi.sys [LSI Logic]
"sym_u3" = C:\WINDOWS\system32\DRIVERS\sym_u3.sys [LSI Logic]
"tfsnboio" = C:\WINDOWS\system32\dla\tfsnboio.sys [Sonic Solutions]
"tfsncofs" = C:\WINDOWS\system32\dla\tfsncofs.sys [Sonic Solutions]
"tfsndrct" = C:\WINDOWS\system32\dla\tfsndrct.sys [Sonic Solutions]
"tfsndres" = C:\WINDOWS\system32\dla\tfsndres.sys [Sonic Solutions]
"tfsnifs" = C:\WINDOWS\system32\dla\tfsnifs.sys [Sonic Solutions]
"tfsnopio" = C:\WINDOWS\system32\dla\tfsnopio.sys [Sonic Solutions]
"tfsnpool" = C:\WINDOWS\system32\dla\tfsnpool.sys [Sonic Solutions]
"tfsnudf" = C:\WINDOWS\system32\dla\tfsnudf.sys [Sonic Solutions]
"tfsnudfa" = C:\WINDOWS\system32\dla\tfsnudfa.sys [Sonic Solutions]
"ultra" = C:\WINDOWS\system32\DRIVERS\ultra.sys [Promise Technology, Inc.]
"VSSERV" = C:\PROGRAM FILES\SOFTWIN\BITDEFENDER10\VSSERV.EXE [SOFTWIN S.R.L.]
"w29n51" = C:\WINDOWS\system32\DRIVERS\w29n51.sys [Intel® Corporation]
"wanatw" = C:\WINDOWS\system32\DRIVERS\wanatw4.sys [America Online, Inc.]
"winachsf" = C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [Conexant Systems, Inc.]
"WLANKEEPER" = C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe [Intel® Corporation]
"XCOMM" = C:\PROGRAM FILES\FICHIERS COMMUNS\SOFTWIN\BITDEFENDER COMMUNICATOR\XCOMMSVR.EXE [SOFTWIN S.R.L]
Protocol Filters Scan
application/x-internet-signup = {A173B69A-1F9B-4823-9FDA-412F641E65D6} (C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll) []
Class Install Handler = {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} (C:\WINDOWS\system32\urlmon.dll) [Microsoft Corporation]
Hosts Scan
LOCALHOST mapping = 1
IE Scan
IERESET.INF missing Signature="$CHICAGO$"
IERESET.INF missing AdvancedINF=2.5,"You need a new version of advpack.dll"
IERESET.INF missing AddReg=RestoreHomePage.reg
IERESET.INF missing HKCU,"Software\Microsoft\Internet Explorer\Main","Start Page",0,%START_PAGE_URL%
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main","Default_Page_URL",0,%START_PAGE_URL%
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main","Default_Search_URL",0,%SEARCH_PAGE_URL%
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main","Search Page",0,%SEARCH_PAGE_URL%
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","1",0,"www.%s.com"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","2",0,"www.%s.org"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","3",0,"www.%s.net"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","4",0,"www.%s.edu"
IERESET.INF missing HKCU,"Software\Microsoft\Internet Explorer\Main","Search Page",0,%SEARCH_PAGE_URL%
IERESET.INF missing HKCU,"Software\Microsoft\Internet Explorer\SearchUrl","Provider",0,""
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Search","SearchAssistant",0,"https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Search","CustomizeSearch",0,"https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm"
IERESET.INF missing HKLM,"Software\Microsoft\Windows\CurrentVersion\Internet Settings\SafeSites",%SAFESITE_VALUE%,0,"https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89*"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","5"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","6"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","7"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","8"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","9"
IERESET.INF missing HKCU,"Software\Microsoft\Internet Explorer\Main","AutoSearch"
IERESET.INF missing SEARCH_PAGE_URL="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
IERESET.INF missing AddReg=RestoreBrowserSettings.reg
IERESET.INF missing DelReg=DeleteTemplates.reg or DelReg=DeleteTemplates.reg, DeleteAutosearch.reg
IERESET.INF missing START_PAGE_URL="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome" or START_PAGE_URL="https://www.msn.com/fr-fr/"
IERESET.INF missing SAFESITE_VALUE="https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fhome.microsoft.com%2faccess%2fallinone.asp%3f" or SAFESITE_VALUE="ie.search.msn.com"
IERESET.INF missing MS_START_PAGE_URL="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome" or MS_START_PAGE_URL="https://www.msn.com/fr-fr/"
J'avais bien les mises à jour.
Quoi faire maintenant ?
Merci !
Voilà le rapport:
Spyware Terminator Version: 1.9.3.142
Start time: 20/07/2007 12:51:27
System: Windows XP
User: Limited
Processes Scan
C:\WINDOWS\system32\winlogon.exe [Microsoft Corporation] C:\WINDOWS\system32\sockspy.dll [Empty], C:\Program Files\Intel\Wireless\Bin\LgNotify.dll [Intel Corporation],
C:\WINDOWS\system32\services.exe [Microsoft Corporation] sockspy.dll,
savedump.exe [file not found]
C:\WINDOWS\system32\lsass.exe [Microsoft Corporation] sockspy.dll,
C:\WINDOWS\system32\svchost.exe [Microsoft Corporation] sockspy.dll, sockspy.dll, sockspy.dll, sockspy.dll, sockspy.dll,
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [Intel Corporation] PsRegApi.dll [Intel Corporation], TraceAPI.DLL [Intel Corporation], sockspy.dll,
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [Intel Corporation ] TraceAPI.DLL, PsRegApi.dll, sockspy.dll,
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe [Intel® Corporation] C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll [Intel Corporation], TraceAPI.DLL, PsRegApi.dll, C:\Program Files\Intel\Wireless\Bin\MurocApi.dll [Intel Corporation], C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll [Intel Corporation], C:\Program Files\Intel\Wireless\Bin\C1XStngs.dll [Intel Corporation], sockspy.dll, C:\Program Files\Intel\Wireless\Bin\C8021FRA.dll [Intel Corporation], C:\Program Files\Intel\Wireless\Bin\LSAWRAPI.dll [Intel Corporation],
C:\WINDOWS\system32\LEXBCES.EXE [Lexmark International, Inc.] sockspy.dll, lexp2p32.dll [Lexmark International, Inc.], lex2kusb.dll [Lexmark International, Inc.],
C:\WINDOWS\system32\spoolsv.exe [Microsoft Corporation] sockspy.dll, C:\WINDOWS\system32\LEXLMPM.DLL [Lexmark International, Inc.], C:\WINDOWS\system32\LexBce.dll [Lexmark International, Inc.], C:\WINDOWS\system32\hpzsnt05.dll [HP], C:\WINDOWS\System32\spool\PRTPROCS\W32X86\DLBCPP5C.dll [Empty], C:\WINDOWS\system32\DLBCpwr.dll [Dell Computer Corporation], C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\hpzntp05.dll [HP], C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\hpz2ku05.dll [HP],
C:\WINDOWS\system32\LEXPPS.EXE [Lexmark International, Inc.] sockspy.dll, LEXBCE.DLL,
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe [Intel Corporation] PfMgrApi.dll, TraceAPI.DLL, PsRegApi.dll, MurocApi.dll, S24MUDLL.dll, C1XStngs.dll, sockspy.dll, C8021FRA.dll, LSAWRAPI.dll, ZcSvcFRA.dll [Intel Corporation], C:\Program Files\Intel\Wireless\Bin\D8021Xps.DLL [Empty],
C:\WINDOWS\Explorer.EXE [Microsoft Corporation] sockspy.dll,
C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe [America Online, Inc.] sockspy.dll,
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe [Dell Inc.] sockspy.dll,
C:\WINDOWS\system32\hkcmd.exe [Intel Corporation] hccutils.DLL [Intel Corporation], sockspy.dll, igfxdev.dll [Intel Corporation], igfxsrvc.dll [Intel Corporation], igfxres.dll [Intel Corporation], igfxhk.dll [Intel Corporation],
C:\Program Files\Apoint\Apoint.exe [Alps Electric Co., Ltd.] sockspy.dll, VXDIF.DLL [Alps Electric Co., Ltd.], Apoint.DLL [Alps Electric Co., Ltd.], EzAuto.dll [Alps Electric Co., Ltd.], EzLaunch.DLL [Alps Electric Co., Ltd.],
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe [Empty] sockspy.dll,
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [Intel Corporation] PsRegApi.dll, sockspy.dll, FrWrkFRA.dll [Intel Corporation], ConnMgr.dll [Intel Corporation], MurocApi.dll, S24MUDLL.dll, C1XStngs.dll, TraceAPI.DLL, PfMgrApi.dll, C8021FRA.dll, LSAWRAPI.dll, IntWAFRA.dll [Intel Corporation], D8021Xps.DLL,
C:\Program Files\Dell\QuickSet\quickset.exe [Empty] sockspy.dll, dadkeyb.dll [Empty],
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe [CyberLink Corp.] sockspy.dll,
C:\Program Files\Dell\Media Experience\DMXLauncher.exe [Empty] sockspy.dll,
C:\WINDOWS\system32\dla\tfswctrl.exe [Sonic Solutions] tfswapi.dll [Sonic Solutions], tfswcres.dll [Sonic Solutions], sockspy.dll,
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [InstallShield Software Corporation] sockspy.dll,
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe [HP] sockspy.dll, HPZR3205.DLL [HP],
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [RealNetworks, Inc.] sockspy.dll,
C:\Program Files\Softwin\BitDefender10\bdmcon.exe [SOFTWIN S.R.L.] C:\WINDOWS\system32\XCOMM.dll [Softwin], procinf.dll [SOFTWIN S.R.L.], C:\Program Files\Softwin\BitDefender10\TxTools.dll [SOFTWIN S.R.L], C:\Program Files\Softwin\BitDefender10\BDGUICtl.dll [Softwin], C:\Program Files\Softwin\BitDefender10\bdutils.dll [Empty], C:\Program Files\Softwin\BitDefender10\txmlx.dll [Softwin], C:\Program Files\Softwin\BitDefender10\bdch.dll [SOFTWIN], C:\Program Files\Softwin\BitDefender10\bdsubmit.dll [SOFTWIN], NAG.dll [SOFTWIN S.R.L.], sockspy.dll, popup.dll [SOFTWIN S.R.L.], agentreg.dll [SOFTWIN S.R.L.], C:\Program Files\Softwin\BitDefender10\getfile.dll [Empty], C:\Program Files\Softwin\BitDefender10\WSLib.dll [Empty], C:\Program Files\Softwin\BitDefender10\bdusers.dll [TODO: <Company name>], main.dll [SOFTWIN S.R.L.], antivirus.dll [SOFTWIN S.R.L.], antispy.dll [SOFTWIN S.R.L.], live.dll [SOFTWIN S.R.L.], vshield.dll [SOFTWIN S.R.L.], vscan.dll [SOFTWIN S.R.L.], quar.dll [SOFTWIN S.R.L.], quarcore.dll [SOFTWIN S.R.L.], NTTools.dll [SOFTWIN S.R.L.], ashield.dll [SOFTWIN S.R.L.], Wizards.dll [SOFTWIN S.R.L.], privintf.dll [SOFTWIN S.R.L.], sysinfo.dll [SOFTWIN S.R.L.], BDElev.DLL [SOFTWIN S.R.L.],
C:\Program Files\Softwin\BitDefender10\bdagent.exe [SOFTWIN S.R.L.] bdch.dll, bdsubmit.dll, bdutils.dll, XCOMM.dll, procinf.dll, BDGUICtl.dll, txmlx.dll, sockspy.dll,
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [Crawler.com] sockspy.dll,
C:\Program Files\Apoint\Apntex.exe [Alps Electric Co., Ltd.] sockspy.dll, VXDIF.DLL,
C:\WINDOWS\system32\ctfmon.exe [Microsoft Corporation] sockspy.dll,
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [Intel Corporation] sockspy.dll,
C:\Program Files\Spyware Terminator\sp_rsser.exe [Crawler.com] sockspy.dll,
C:\Program Files\Intel\Wireless\Bin\1XConfig.exe [Intel] C:\Program Files\Intel\Wireless\Bin\IntelAE5.dll [Meetinghouse Data Communications], TraceAPI.dll, PsRegApi.dll, sockspy.dll, D8021Xps.DLL,
C:\Program Files\AOL 9.0\aoltray.exe [America Online, Inc.] sockspy.dll,
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe [SOFTWIN S.R.L] sockspy.dll,
C:\Program Files\Digital Line Detect\DLG.exe [BVRP Software] BVRPDIAG.dll [BVRP Software], sockspy.dll, C:\WINDOWS\system32\MdmXSdk.dll [Conexant],
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe [Empty] XCOMM.dll, C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdcore.dll [SOFTWIN SRL], C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdsubmit.dll [SOFTWIN], sockspy.dll, libfn.dll [Empty], avxdisk.dll [Empty],
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe [SOFTWIN S.R.L.] XCOMM.dll, C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\HTTPGETF.dll [Empty], C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\zlib.dll [Empty], C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\bdch.dll [SOFTWIN], C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\bdsubmit.dll [SOFTWIN], sockspy.dll,
C:\Program Files\Softwin\BitDefender10\vsserv.exe [SOFTWIN S.R.L.] C:\Program Files\Softwin\BitDefender10\bdfltlib.dll [Empty], C:\Program Files\Softwin\BitDefender10\zlib.dll [Empty], XCOMM.dll, procinf.dll, C:\Program Files\Softwin\BitDefender10\mimeinf.dll [Empty], bdch.dll, bdsubmit.dll, C:\Program Files\Softwin\BitDefender10\bdfdll_x86.dll [Empty], bdutils.dll, WSLib.dll, sockspy.dll, quarcore.dll, NTTools.dll, privscan.dll [SOFTWIN S.R.L.], agentreg.dll, getfile.dll, BDGUICtl.dll, txmlx.dll, wsid.dll [SOFTWIN S.R.L.], sch_serv.dll [SOFTWIN S.R.L.], C:\Program Files\Softwin\BitDefender10\bdardrv.dll [SOFTWIN S.R.L], C:\Program Files\Softwin\BitDefender10\PROFOS.dll [Empty], C:\Program Files\Softwin\BitDefender10\trufos.dll [Empty], C:\Program Files\Softwin\BitDefender10\libmpack.dll [Empty], C:\WINDOWS\system32\XRegLib.dll [Empty], htmlpack.dll [SOFTWIN S.R.L.], C:\Program Files\Softwin\BitDefender10\bdpredir.dll [Softwin SRL], bdpop3p.dll [SOFTWIN S.R.L.], C:\Program Files\Softwin\BitDefender10\bdsmtpp.dll [Empty], C:\Program Files\Softwin\BitDefender10\httproxy.dll [SOFTWIN SRL],
C:\WINDOWS\system32\wbem\wmiprvse.exe [Microsoft Corporation] sockspy.dll,
C:\WINDOWS\System32\alg.exe [Microsoft Corporation] sockspy.dll,
C:\WINDOWS\system32\wuauclt.exe [Microsoft Corporation] sockspy.dll,
C:\Program Files\Spyware Terminator\SpywareTerminator.exe [Crawler.com] sockspy.dll,
Startup Scan
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"CTFMON.EXE" = "C:\WINDOWS\system32\ctfmon.exe" [ Microsoft Corporation ]
"MSMSGS" = "C:\PROGRAM FILES\MESSENGER\MSMSGS.EXE" [ Microsoft Corporation ]
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"IgfxTray" = "C:\WINDOWS\system32\igfxtray.exe" [ Intel Corporation ]
"HotKeysCmds" = "C:\WINDOWS\system32\hkcmd.exe" [ Intel Corporation ]
"Apoint" = "C:\Program Files\Apoint\Apoint.exe" [ Alps Electric Co., Ltd. ]
"SunJavaUpdateSched" = "C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe" [ Empty ]
"IntelWireless" = "C:\PROGRAM FILES\INTEL\WIRELESS\BIN\IFRMEWRK.EXE" [ Intel Corporation ]
"Dell QuickSet" = "C:\Program Files\Dell\QuickSet\quickset.exe" [ Empty ]
"DVDLauncher" = "C:\PROGRAM FILES\CYBERLINK\POWERDVD\DVDLAUNCHER.EXE" [ CyberLink Corp. ]
"QuickTime Task" = "C:\PROGRAM FILES\QUICKTIME\QTTASK.EXE" [ Apple Computer, Inc. ]
"DMXLauncher" = "C:\Program Files\Dell\Media Experience\DMXLauncher.exe" [ Empty ]
"dla" = "C:\WINDOWS\system32\dla\tfswctrl.exe" [ Sonic Solutions ]
"ISUSPM Startup" = "C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe" [ InstallShield Software Corporation ]
"ISUSScheduler" = "C:\PROGRAM FILES\FICHIERS COMMUNS\INSTALLSHIELD\UPDATESERVICE\ISSCH.EXE" [ InstallShield Software Corporation ]
"HPDJ Taskbar Utility" = "C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe" [ HP ]
"TkBellExe" = "C:\PROGRAM FILES\FICHIERS COMMUNS\REAL\UPDATE_OB\REALSCHED.EXE" [ RealNetworks, Inc. ]
"BDMCon" = "C:\PROGRAM FILES\SOFTWIN\BITDEFENDER10\BDMCON.EXE" [ SOFTWIN S.R.L. ]
"BDAgent" = "C:\PROGRAM FILES\SOFTWIN\BITDEFENDER10\BDAGENT.EXE" [ SOFTWIN S.R.L. ]
"SpywareTerminator" = "C:\PROGRAM FILES\SPYWARE TERMINATOR\SPYWARETERMINATORSHIELD.EXE" [ Crawler.com ]
Toolbars Scan
&Crawler Toolbar {4B3803EA-5230-4DC3-A7FC-33638F3D3542} C:\Program Files\Crawler\Toolbar\ctbr.dll [Crawler.com]
Explorer Bars Scan
Real.com {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} C:\WINDOWS\system32\Shdocvw.dll [Microsoft Corporation]
Real.com {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} C:\WINDOWS\system32\Shdocvw.dll [Microsoft Corporation]
BHO Scan
AcroIEHlprObj Class {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [Adobe Systems Incorporated]
{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} C:\Program Files\Crawler\Toolbar\ctbr.dll [Crawler.com]
DriveLetterAccess {5CA3D70E-1895-11CF-8E15-001234567890} C:\WINDOWS\system32\dla\tfswshx.dll [Sonic Solutions]
Real.com {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} C:\WINDOWS\system32\Shdocvw.dll [Microsoft Corporation]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} []
{CD67F990-D8E9-11d2-98FE-00C0F0318AFE} []
{FB5F1910-F110-11d2-BB9E-00C04F795683} []
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
{42071714-76d4-11d1-8b24-00a0c9068ff3} = Extension Affichage Panorama du Panneau de configuration (deskpan.dll) []
{764BF0E1-F219-11ce-972D-00AA00A14F56} = Extensions de l'environnement de compression de fichiers () []
{853FE2B1-B769-11d0-9C4E-00C04FB6C6FA} = Menu contextuel de cryptage () []
{88895560-9AA2-1069-930E-00AA0030EBC8} = Extension icône HyperTerminal (C:\WINDOWS\system32\hticons.dll) [Hilgraeve, Inc.]
{0DF44EAA-FF21-4412-828E-260A8728E7F1} = Barre des tâches et menu Démarrer () []
{00E7B358-F65B-4dcf-83DF-CD026B94BFD4} = Autoplay for SlideShow (C:\WINDOWS\SYSTEM32\SHIMGVW.DLL) [Microsoft Corporation]
{7A9D77BD-5403-11d2-8785-2E0420524153} = Comptes d'utilisateurs () []
{5CA3D70E-1895-11CF-8E15-001234567890} = DriveLetterAccess (C:\WINDOWS\system32\dla\tfswshx.dll) [Sonic Solutions]
{0006F045-0000-0000-C000-000000000046} = Microsoft Outlook Custom Icon Handler (C:\Program Files\Microsoft Office\Office10\OLKFSTUB.DLL) [Microsoft Corporation]
{42042206-2D85-11D3-8CFF-005004838597} = Microsoft Office HTML Icon Handler (C:\Program Files\Microsoft Office\Office10\msohev.dll) [Microsoft Corporation]
{21569614-B795-46b1-85F4-E737A8DC09AD} = Shell Search Band (C:\WINDOWS\system32\browseui.dll) [Microsoft Corporation]
{F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4} = Shell Extensions for RealOne Player (C:\Program Files\Real\RealPlayer\rpshell.dll) [RealNetworks, Inc.]
{B41DB860-8EE4-11D2-9906-E49FADC173CA} = WinRAR shell extension (C:\Program Files\WinRAR\rarext.dll) []
{BD88A479-9623-4897-8546-BC62B9628F44} = SPTHandler (C:\Program Files\Spyware Terminator\sptcontmenu.dll) [Crawler.com]
Winlogon Notify Scan
igfxcui = igfxsrvc.dll (C:\WINDOWS\system32\igfxsrvc.dll) [Intel Corporation]
IntelWireless = C:\Program Files\Intel\Wireless\Bin\LgNotify.dll (C:\Program Files\Intel\Wireless\Bin\LgNotify.dll) [Intel Corporation]
WgaLogon = WgaLogon.dll (C:\WINDOWS\system32\WgaLogon.dll) [Microsoft Corporation]
Services Scan
"AegisP" = C:\WINDOWS\system32\DRIVERS\AegisP.sys [Meetinghouse Data Communications]
"AliIde" = C:\WINDOWS\system32\DRIVERS\aliide.sys [Acer Laboratories Inc.]
"amdagp" = C:\WINDOWS\system32\DRIVERS\amdagp.sys [Advanced Micro Devices, Inc.]
"AOL ACS" = C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe [America Online, Inc.]
"ApfiltrService" = C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [Alps Electric Co., Ltd.]
"APPDRV" = C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS [Dell Inc]
"asc" = C:\WINDOWS\system32\DRIVERS\asc.sys [Advanced System Products, Inc.]
"asc3550" = C:\WINDOWS\system32\DRIVERS\asc3550.sys [Advanced System Products, Inc.]
"bdfdll" = C:\PROGRAM FILES\SOFTWIN\BITDEFENDER10\BDFDLL.SYS []
"BDFSDRV" = C:\PROGRAM FILES\SOFTWIN\BITDEFENDER10\BDFSDRV.SYS []
"bdpredir" = C:\PROGRAM FILES\SOFTWIN\BITDEFENDER10\BDPREDIR.SYS [Softwin SRL]
"BDRSDRV" = C:\PROGRAM FILES\SOFTWIN\BITDEFENDER10\BDRSDRV.SYS []
"bdss" = C:\PROGRAM FILES\FICHIERS COMMUNS\SOFTWIN\BITDEFENDER SCAN SERVER\BDSS.EXE []
"CmdIde" = C:\WINDOWS\system32\DRIVERS\cmdide.sys [CMD Technology, Inc.]
"dac2w2k" = C:\WINDOWS\system32\DRIVERS\dac2w2k.sys [Mylex Corporation]
"dmboot" = C:\WINDOWS\System32\drivers\dmboot.sys [Microsoft Corp., Veritas Software]
"dmio" = C:\WINDOWS\System32\drivers\dmio.sys [Microsoft Corp., Veritas Software]
"dmload" = C:\WINDOWS\System32\drivers\dmload.sys [Microsoft Corp., Veritas Software.]
"drvmcdb" = C:\WINDOWS\system32\drivers\drvmcdb.sys [Sonic Solutions]
"drvnddm" = C:\WINDOWS\system32\drivers\drvnddm.sys [Sonic Solutions]
"E100B" = C:\WINDOWS\system32\DRIVERS\e100b325.sys [Intel Corporation]
"EvtEng" = C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [Intel Corporation]
"HSFHWICH" = C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys [Conexant Systems, Inc.]
"HSF_DP" = C:\WINDOWS\system32\DRIVERS\HSF_DP.sys [Conexant Systems, Inc.]
"ialm" = C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [Intel Corporation]
"IWCA" = C:\WINDOWS\system32\DRIVERS\iwca.sys [Intel Corporation]
"LexBceS" = C:\WINDOWS\system32\LEXBCES.EXE [Lexmark International, Inc.]
"LIVESRV" = C:\PROGRAM FILES\FICHIERS COMMUNS\SOFTWIN\BITDEFENDER UPDATE SERVICE\LIVESRV.EXE [SOFTWIN S.R.L.]
"mdmxsdk" = C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [Conexant]
"mraid35x" = C:\WINDOWS\system32\DRIVERS\mraid35x.sys [American Megatrends Inc.]
"NetSvc" = C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe [Intel(R) Corporation]
"NICCONFIGSVC" = C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe [Dell Inc.]
"nv" = C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [NVIDIA Corporation]
"omci" = C:\WINDOWS\system32\DRIVERS\omci.sys [Dell Inc]
"Ptilink" = C:\WINDOWS\system32\DRIVERS\ptilink.sys [Parallel Technologies, Inc.]
"PxHelp20" = C:\WINDOWS\System32\Drivers\PxHelp20.sys [Sonic Solutions]
"ql1080" = C:\WINDOWS\system32\DRIVERS\ql1080.sys [QLogic Corporation]
"ql12160" = C:\WINDOWS\system32\DRIVERS\ql12160.sys [QLogic Corporation]
"ql1280" = C:\WINDOWS\system32\DRIVERS\ql1280.sys [QLogic Corporation]
"RegSrvc" = C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [Intel Corporation]
"S24EventMonitor" = C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [Intel Corporation ]
"s24trans" = C:\WINDOWS\system32\DRIVERS\s24trans.sys [Intel Corporation]
"Secdrv" = C:\WINDOWS\system32\DRIVERS\secdrv.sys []
"sisagp" = C:\WINDOWS\system32\DRIVERS\sisagp.sys [Silicon Integrated Systems Corporation]
"Sparrow" = C:\WINDOWS\system32\DRIVERS\sparrow.sys [Adaptec, Inc.]
"sp_rsdrv2" = C:\WINDOWS\SYSTEM32\DRIVERS\SP_RSDRV2.SYS [Crawler.com]
"sp_rssrv" = C:\PROGRAM FILES\SPYWARE TERMINATOR\SP_RSSER.EXE [Crawler.com]
"sscdbhk5" = C:\WINDOWS\system32\drivers\sscdbhk5.sys [Sonic Solutions]
"ssrtln" = C:\WINDOWS\system32\drivers\ssrtln.sys [Sonic Solutions]
"STAC97" = C:\WINDOWS\system32\drivers\stac97.sys [SigmaTel, Inc.]
"symc810" = C:\WINDOWS\system32\DRIVERS\symc810.sys [Symbios Logic Inc.]
"symc8xx" = C:\WINDOWS\system32\DRIVERS\symc8xx.sys [LSI Logic]
"sym_hi" = C:\WINDOWS\system32\DRIVERS\sym_hi.sys [LSI Logic]
"sym_u3" = C:\WINDOWS\system32\DRIVERS\sym_u3.sys [LSI Logic]
"tfsnboio" = C:\WINDOWS\system32\dla\tfsnboio.sys [Sonic Solutions]
"tfsncofs" = C:\WINDOWS\system32\dla\tfsncofs.sys [Sonic Solutions]
"tfsndrct" = C:\WINDOWS\system32\dla\tfsndrct.sys [Sonic Solutions]
"tfsndres" = C:\WINDOWS\system32\dla\tfsndres.sys [Sonic Solutions]
"tfsnifs" = C:\WINDOWS\system32\dla\tfsnifs.sys [Sonic Solutions]
"tfsnopio" = C:\WINDOWS\system32\dla\tfsnopio.sys [Sonic Solutions]
"tfsnpool" = C:\WINDOWS\system32\dla\tfsnpool.sys [Sonic Solutions]
"tfsnudf" = C:\WINDOWS\system32\dla\tfsnudf.sys [Sonic Solutions]
"tfsnudfa" = C:\WINDOWS\system32\dla\tfsnudfa.sys [Sonic Solutions]
"ultra" = C:\WINDOWS\system32\DRIVERS\ultra.sys [Promise Technology, Inc.]
"VSSERV" = C:\PROGRAM FILES\SOFTWIN\BITDEFENDER10\VSSERV.EXE [SOFTWIN S.R.L.]
"w29n51" = C:\WINDOWS\system32\DRIVERS\w29n51.sys [Intel® Corporation]
"wanatw" = C:\WINDOWS\system32\DRIVERS\wanatw4.sys [America Online, Inc.]
"winachsf" = C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [Conexant Systems, Inc.]
"WLANKEEPER" = C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe [Intel® Corporation]
"XCOMM" = C:\PROGRAM FILES\FICHIERS COMMUNS\SOFTWIN\BITDEFENDER COMMUNICATOR\XCOMMSVR.EXE [SOFTWIN S.R.L]
Protocol Filters Scan
application/x-internet-signup = {A173B69A-1F9B-4823-9FDA-412F641E65D6} (C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll) []
Class Install Handler = {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} (C:\WINDOWS\system32\urlmon.dll) [Microsoft Corporation]
Hosts Scan
LOCALHOST mapping = 1
IE Scan
IERESET.INF missing Signature="$CHICAGO$"
IERESET.INF missing AdvancedINF=2.5,"You need a new version of advpack.dll"
IERESET.INF missing AddReg=RestoreHomePage.reg
IERESET.INF missing HKCU,"Software\Microsoft\Internet Explorer\Main","Start Page",0,%START_PAGE_URL%
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main","Default_Page_URL",0,%START_PAGE_URL%
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main","Default_Search_URL",0,%SEARCH_PAGE_URL%
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main","Search Page",0,%SEARCH_PAGE_URL%
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","1",0,"www.%s.com"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","2",0,"www.%s.org"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","3",0,"www.%s.net"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","4",0,"www.%s.edu"
IERESET.INF missing HKCU,"Software\Microsoft\Internet Explorer\Main","Search Page",0,%SEARCH_PAGE_URL%
IERESET.INF missing HKCU,"Software\Microsoft\Internet Explorer\SearchUrl","Provider",0,""
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Search","SearchAssistant",0,"https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Search","CustomizeSearch",0,"https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm"
IERESET.INF missing HKLM,"Software\Microsoft\Windows\CurrentVersion\Internet Settings\SafeSites",%SAFESITE_VALUE%,0,"https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89*"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","5"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","6"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","7"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","8"
IERESET.INF missing HKLM,"Software\Microsoft\Internet Explorer\Main\UrlTemplate","9"
IERESET.INF missing HKCU,"Software\Microsoft\Internet Explorer\Main","AutoSearch"
IERESET.INF missing SEARCH_PAGE_URL="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
IERESET.INF missing AddReg=RestoreBrowserSettings.reg
IERESET.INF missing DelReg=DeleteTemplates.reg or DelReg=DeleteTemplates.reg, DeleteAutosearch.reg
IERESET.INF missing START_PAGE_URL="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome" or START_PAGE_URL="https://www.msn.com/fr-fr/"
IERESET.INF missing SAFESITE_VALUE="https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fhome.microsoft.com%2faccess%2fallinone.asp%3f" or SAFESITE_VALUE="ie.search.msn.com"
IERESET.INF missing MS_START_PAGE_URL="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome" or MS_START_PAGE_URL="https://www.msn.com/fr-fr/"
Est-ce qu'il y autre chose que je peux faire ?
Spyware terminator ne détecte rien.
Merci pour votre aide !
Spyware terminator ne détecte rien.
Merci pour votre aide !
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Merci.