adware.roguesuspect

Question

bonjour,j'ai fait un scan avec avg-as et celui-ci m'a détecté(entre autre )  "adware.RogueSuspect"
jmais Voila, depuis quelques jours des fenetres s'ouvrent toutes seules me mettant en garde contre des virus, me proposant des paris en ligne etc..... 
J'ai , lancé un scan avec AVAST et envoyer spyware doctor, rien n'y fait. C'est toujours la, et je craisn que cela cache qques choses de plus important. 
Y a t-il moyen d'éliminer ces intrusions 
voici un rapport hijackingthis et avg-as
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:58:51, on 13/12/2007
Platform: Windows Vista  (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16575)
Boot mode: Normal

Running processes:
C:\Windows\system32	askeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Windows\System32undll32.exe
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Spyware Doctor\SDTrayApp.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\System32undll32.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\ThreatFire\TFTRAY.EXE
c:\users\jorandall62\documents\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.medion.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: NetXfer - {83B80A9C-D91A-4F22-8DCF-EA7204039F79} - C:\Program Files\Xi\NetXfer\NXIEHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: NetXfer - {C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - C:\Program Files\Xi\NetXfer\NXToolBar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32
vsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKLM\..\Run: [ThreatFire] C:\Program Files\ThreatFire\TFTray.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user')
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.15\AMVConverter\grab.html
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.15\MediaManager\grab.html
O8 - Extra context menu item: Tout télécharger avec NetXfer - C:\Program Files\Xi\NetXfer\NXAddList.html
O8 - Extra context menu item: Télécharger avec NetXfer - C:\Program Files\Xi\NetXfer\NXAddLink.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O13 - Gopher Prefix: 
O16 - DPF: {4C833081-D026-4FF8-968F-7EAB660D2FBA} (TVAnts ActiveX Control) - http://download.tvants.com/pub/tvants/tvants1/win32/cab/tvants.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/VistaMSNPUpldfr-fr.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/webplayer/stage6/windows/AutoDLDivXWebPlayerInstaller.cab
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
O23 - Service: ThreatFire - PC Tools - C:\Program Files\ThreatFire\TFService.exe
O23 - Service: Moteur Webroot Spy Sweeper (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

jlpjlp · Answer

slt,




Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection): 

- Va dans démarrer puis panneau de configuration 
- Double Clique sur l'icône "Comptes d'utilisateurs" 
- Clique ensuite sur désactiver et valide. 

Télécharge maintenant Navilog1 depuis-ce lien : 

http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe 

Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau. 
Ensuite double clique sur navilog1.exe pour lancer l'installation. 
Une fois l'installation terminée, Fais un Clic-droit sur le raccourci Navilog1 présent sur ton bureau et choisis "Exécuter 

en tant qu'administrateur". 

Au menu principal, Fais le choix 1 
Laisse toi guider et patiente. 
Patiente jusqu'au message : 
*** Analyse Termine le ..... *** 
Appuie sur une touche le blocnote va s'ouvrir. 
Copie-colle l'intégralité du rapport dans une réponse. 
Referme le blocnote 
Le rapport fixnavi.txt est en outre sauvegardé dans %systemdrive%.

jorandall62 · Answer

j'ai installé navilog1 et suivi vos conseils mais l'analyse s'est bloquée alors que j'ai attendu  25 minutes environ.
voici le rapport que g pu récupérer.apparemment c'est unproblème avec "catchme.exe".dites moi si je peux remettre le cntrole compte utilisateur?merci a bientot

Creation de la liste des programmes installes

Veuillez patienter

C:\unpffc02.txtLe fichier sp'cifi' est introuvable.
Impossible de trouver C:\unpffc02.txt
Search Navipromo version 3.3.8 commence le 13/12/2007 a 22:07:58,07

!!! Attention,ce rapport peut indiquer des fichiers/programmes legitimes !!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie desinfection sans l'avis d'un specialiste !!!




*** Recherche programmes installes ***

 Veuillez patienter


 Recherche terminee


*** Recherche dossiers dans C:\Windows ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\Program Files ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\ProgramData ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\ProgramData\Microsoft\Windows\Start Menu\Programs
 ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans c:\users\jorandall62\appdata\roaming\microsoft\windo
ws\start menu\programs ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\Users\jorandall62\AppData\Local\virtualstore\Prog
ram Files ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\Users\jorandall62\AppData\Roaming ***

Veuillez patienter

 Recherche terminee

 Recherche terminee


*** Recherche avec Catchme par gmer ***
pour + d'infos : http://www.gmer.net

Veuillez patienter ... Le scan peut durer une dizaine de minutes ...

jlpjlp · Answer

Lance AVG ANTI ROOTKIT :

http://www.libellules.ch/dotclear/index.php?2007/03/28/1781-avg-anti-rootkit

____________________

refais avg antispyware et nettoie ce qui est trouvé car tu as ignoré ce qui a été trouvé

____________________

essaye de refaire navilog

jorandall62 · Answer

salut,
donc le scan avg anti rootkit n'a rien donné  SUPER!!!
avg-as que j'ai effectué en mode sans échec rien a signaler encore SUPER!!!!!
je n'ai plus ces  sacrés  sites intempestifs!ni apparement "dialer instant access"!
concernant navilog il bloque toujours pendant la recherche!
voici ce que j'ai ;
a bientot

Creation de la liste des programmes installes

Veuillez patienter

C:\unpffc02.txtLe fichier sp'cifi' est introuvable.
Impossible de trouver C:\unpffc02.txt
Search Navipromo version 3.3.8 commence le 14/12/2007 a 10:31:51,08

!!! Attention,ce rapport peut indiquer des fichiers/programmes legitimes !!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie desinfection sans l'avis d'un specialiste !!!




*** Recherche programmes installes ***

 Veuillez patienter


 Recherche terminee


*** Recherche dossiers dans C:\Windows ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\Program Files ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\ProgramData ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\ProgramData\Microsoft\Windows\Start Menu\Programs
 ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans c:\users\jorandall62\appdata\roaming\microsoft\windo
ws\start menu\programs ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\Users\jorandall62\AppData\Local\virtualstore\Prog
ram Files ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\Users\jorandall62\AppData\Roaming ***

Veuillez patienter

 Recherche terminee

 Recherche terminee


*** Recherche avec Catchme par gmer ***
pour + d'infos : http://www.gmer.net

Veuillez patienter ... Le scan peut durer une dizaine de minutes ...


*** Recherche avec GenericNaviSearch ***

Veuillez patienter

jlpjlp · Answer

ca devrait etre bon si spyware secure n'est plus retrouvé

__________________

pour verifier:

 colle le rapport d'un scan en ligne 
avec un des suivants: 


bitdefender en ligne : 
http://www.bitdefender.fr/scan_fr/scan8/ie.html 

Panda en ligne : 
http://pandasoftware.fr

secuser en ligne :
http://www.secuser.com/outils/antivirus.htm

scan en ligne firefox
	
https://www.trendmicro.com/fr_fr/business.html

_____________________________


si rien n'est trouvé c'est bon











pour protéger gratos ton ordi

http://www.commentcamarche.net/telecharger/logiciel 4 securite

mettre un antivirus

AVAST en français   ou ANTIVIR (en anglais mais très efficace)
https://www.malekal.com/avira-free-security-antivirus-gratuit/ (merci Malekal)
-------------
des anti-espions :
AVG antispyware en version gratos + SPYBOT +    si tea timer non active de spybot: WINDOWS DEFENDER ou               SPYWARE TERMINATOR

+/-
SPYWAREBLASTER pour immuniser le système contre vundo notamment mais en anglais (mais facile d'utilisation  : il suffit de faire "update" pour mettre à jour tous les mois  et ensuite" enable all protection" pour immuniser)...

Rq : spybot et ad-aware on sorti de nouvelles versions cette année vérifiez que vous avez la dernière version 
--------
un pare feu :
celui de Windows ou mieux KERIO ou JETICO ou ZONE ALARM (mettre que le parefeu gratuit)

https://www.clubic.com/telecharger-fiche11071-sunbelt-personal-firewall-ex-kerio.html
https://manuelsdaide.com/contact/
http://www.open-files.com/forum/index.php?showtopic=29277
http://www.commentcamarche.net/telecharger/telecharger 157 zonealarm

-----------

CCLEANER pour effacer les traces de surf

jorandall62 · Answer

bonjour,
donc j'ai fait un scan avec "panda" et il m'a trouvé (malheureusement)Win32 CTXmais je n'ai pas de rapport(oooh le pauvre!!lol!)
sinon pour bitdefender voici le rapport(ça été dur!)mais apparement il n'a rien trouvé comme avast cleaner que j'avais lancé aussi
merci a bientot

BitDefender Log File !!!!!
Product : BitDefender Antivirus 2008 
Version : BitDefender UIScanner v.11 
Log date : 17:30:27 14/12/2007 
Log path : C:\ProgramData\BitDefender\Desktop\Profiles\Logs\full_scan\1197649827_1_00.xml 

Scan Paths:Path0000: C:\ 
Path0001: D:\ 


Scan Options:Scan for viruses : Yes 
Scan for adware : Yes 
Scan for spyware : Yes 
Scan for applications : Yes 
Scan for dialers : Yes 
Scan for rootkits : Yes 


Target selection options:Scan registry keys : Yes 
Scan cookies : Yes 
Scan boot sectors : Yes 
Scan memory processes : Yes 
Scan archives : No 
Scan runtime packers : Yes 
Scan emails : Yes 
Scan all files : Yes 
Heuristic Scan : Yes 
Scanned extensions :  
Excluded extensions :  


Target ProcessingDefault action for infected objects : Disinfect 
Default action for suspicious objects : None 
Default action for hidden objects : None 


Scan engines summaryNumber of virus signatures : 937820 
Archive plugins : 41 
Email plugins : 6 
Scan plugins : 12 
Archive plugins : 41 
System plugins : 4 
Unpack plugins : 7 


Overall scan summaryScanned items : 86397 
Infected items : 0 
Suspicious items : 0 
Resolved items : 0 
Individual viruses found : 0 
Scanned directories : 10053 
Scanned boot sectors : 3 
Scanned archives : 5682 
Input-output errors : 93 
Scan time : 00:00:29:56 
Files per second : 46 


Scanned processes summaryScanned : 74 
Infected : 0 


Scanned registry keys summaryScanned : 1995 
Infected : 0 


Scanned cookies summaryScanned : 0 
Infected : 0 


Remaining issues:Object Name Threat Name Final Status 


Resolved issues:Object Name Threat Name Final Status

jlpjlp · Answer

donc j'ai fait un scan avec "panda" et il m'a trouvé (malheureusement)Win32 CTXmais je n'ai pas de rapport(oooh le pauvre!!lol!) 


c'est un faux positif  (entre avast et panda)
pas de souci


ton pb est réglé


bonne continuation

jorandall62 · Answer

avec bitdefender j'avais fait fait un full  system scan et il n'avait rien trouvé  mais pratiquement juste aprés j'ai fait(pour vérifier) un deep system qui m'a trouvé des trucs ; adware navipromo BZE et adware shopper l
pourquoi? c'est un faux positif aussi ?
voici le rapport

BitDefender Log File !!!!!
Product : BitDefender Antivirus 2008 
Version : BitDefender UIScanner v.11 
Log date : 22:08:42 14/12/2007 
Log path : C:\ProgramData\BitDefender\Desktop\Profiles\Logs\deep_scan\1197666522_1_02.xml 

Scan Paths:Path0000: C:\ 
Path0001: D:\ 


Scan Options:Scan for viruses : Yes 
Scan for adware : Yes 
Scan for spyware : Yes 
Scan for applications : Yes 
Scan for dialers : Yes 
Scan for rootkits : Yes 


Target selection options:Scan registry keys : Yes 
Scan cookies : Yes 
Scan boot sectors : Yes 
Scan memory processes : Yes 
Scan archives : Yes 
Scan runtime packers : Yes 
Scan emails : Yes 
Scan all files : Yes 
Heuristic Scan : Yes 
Scanned extensions :  
Excluded extensions :  


Target ProcessingDefault action for infected objects : Disinfect 
Default action for suspicious objects : None 
Default action for hidden objects : None 


Scan engines summaryNumber of virus signatures : 960098 
Archive plugins : 41 
Email plugins : 6 
Scan plugins : 12 
Archive plugins : 41 
System plugins : 4 
Unpack plugins : 7 


Overall scan summaryScanned items : 182109 
Infected items : 5 
Suspicious items : 0 
Resolved items : 0 
Individual viruses found : 2 
Scanned directories : 10058 
Scanned boot sectors : 3 
Scanned archives : 9677 
Input-output errors : 87 
Scan time : 00:04:07:44 
Files per second : 12 


Scanned processes summaryScanned : 65 
Infected : 0 


Scanned registry keys summaryScanned : 384 
Infected : 0 


Scanned cookies summaryScanned : 0 
Infected : 0 


Remaining issues:Object Name Threat Name Final Status 
C:\Program Files\WebMediaPlayer\uninst.exe=](NSIS o)=]lzma_solid_nsis0002 Adware.Navipromo.BZE Delete Failed (file was in an archive) 
C:\Users\jorandall62\Documents\webmediaplayer_setup.exe=](NSIS 2o)=]lzma_solid_nsis0006 Adware.Navipromo.BZE Delete Failed (file was in an archive) 
C:\Users\jorandall62\Documents\webmediaplayer_setup.exe=](NSIS 2o)=]lzma_solid_nsis0014=](NSIS g)=]lzma_solid_nsis0002 Adware.Navipromo.BZE Delete Failed (file was in an archive) 
C:\Program Files\MultiMedia France Toolbar\MultiMedia - Installer.exe=](NSIS o)=]lzma_nsis0014=](NSIS o)=]lzma_nsis0004 Adware.Shopper.L Delete Failed (file was in an archive) 
C:\Program Files\Web Hottest Videos Personal Player\ShoppingReports - WebPlayer.exe=](NSIS o)=]lzma_nsis0014 Adware.Shopper.L Delete Failed (file was in an archive) 


Resolved issues:Object Name Threat Name Final Status

jorandall62 · Answer

ah oui j'oubliévoici un rapport de spyware terminator qui m'a trouvé des "bétes"(enfin je crois)
encore merci pour toutes ses aides!

Logfile of Spyware Terminator v2.0.1.224 (db:1.0.044.807)
Scan Time: 14/12/2007 22:41:51 length: 488 s
Platform: Windows Vista (WINNT 6.0.6000)
User: Limited
Boot Mode: Normal
Scan type: Fast_Spyware_Scan
Scanned Objects: 30552 (Critical:49)
Filter: No System items, No Safe items

Running Processes
audiodg.exe ( PID=1080 )
SLsvc.exe [Microsoft Corporation] : C:\Windows\system32\SLsvc.exe
LSSrvc.exe [Hewlett-Packard Company] : C:\Program Files\Common Files\LightScribe\LSSrvc.exe
svcntaux.exe [PC Tools] : C:\Program Files\Spyware Doctor\svcntaux.exe
swdsvc.exe [PC Tools] : C:\Program Files\Spyware Doctor\swdsvc.exe
X10nets.exe [X10] : C:\Program Files\Common Files\X10\Common\X10nets.exe
xcommsvr.exe [BitDefender] : C:\Program Files\Common Files\BitDefender\BitDefender Communicator\xcommsvr.exe
livesrv.exe [BitDefender S.R.L.] : C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
vsserv.exe [BitDefender S.R.L.] : C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
SDTrayApp.exe [PC Tools] : C:\Program Files\Spyware Doctor\SDTrayApp.exe
rundll32.exe [Microsoft Corporation] : C:\Windows\system32\rundll32.exe
avgas.exe [GRISOFT s.r.o.] : C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
rundll32.exe [Microsoft Corporation] : C:\Windows\system32\rundll32.exe
bdagent.exe [BitDefender S.R.L.] : C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
sidebar.exe [Microsoft Corporation] : C:\Program Files\Windows Sidebar\sidebar.exe
GoogleUpdater.exe [Google] : C:\Program Files\Google\Google Updater\GoogleUpdater.exe
ehsched.exe [Microsoft Corporation] : C:\Windows\ehome\ehsched.exe
ehRecvr.exe [Microsoft Corporation] : C:\Windows\ehome\ehRecvr.exe
iexplore.exe [Microsoft Corporation] : C:\Program Files\Internet Explorer\iexplore.exe
WinMail.exe [Microsoft Corporation] : C:\Program Files\Windows Mail\WinMail.exe
iexplore.exe [Microsoft Corporation] : C:\Program Files\Internet Explorer\iexplore.exe
FlashUtil9d.exe [Adobe Systems, Inc.] : C:\Windows\system32\Macromed\Flash\FlashUtil9d.exe

Internet Settings
R - HKCU\Software\Microsoft\Internet Explorer\Main, Search Bar = http://www.google.com/toolbar/ie8/sidebar.html
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = http://www.ustart.org
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName =

BHO
02 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - File not found
02 - BHO: - {7E853D72-626A-48EC-A868-BA8D5E23E045} - File not found
02 - BHO: NXIECatcher Class - {83B80A9C-D91A-4F22-8DCF-EA7204039F79} - [Xi] : C:\Program Files\Xi\NetXfer\NXIEHelper.dll
02 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - [Google Inc.] : C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
02 - BHO: - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - File not found
02 - BHO: - {85d1f590-48f4-11d9-9669-0800200c9a66} - File not found

Toolbars
03 - Toolbar: NetXfer - {C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - [Xi] : C:\Program Files\Xi\NetXfer\NXToolBar.dll
03 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - [Bitdefender] : C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll

StartUps
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, Sidebar : [Microsoft Corporation] : C:\Program Files\Windows Sidebar\sidebar.exe
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, swg : [Google Inc.] : C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, eMuleAutoStart : https://www.emule-project.net/home/perl/general.cgi?l=1 : C:\Program Files\EMULE\EMULE.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, SDTray : [PC Tools] : C:\Program Files\Spyware Doctor\SDTrayApp.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, Adobe Reader Speed Launcher : [Adobe Systems Incorporated] : C:\Program Files\ADOBE\READER 8.0\READER\READER_SL.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, NvSvc : [NVIDIA Corporation] : C:\Windows\system32\NVSVC.DLL
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, !AVG Anti-Spyware : [GRISOFT s.r.o.] : C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, BitDefender Antiphishing Helper : [BitDefender] : C:\Program Files\BITDEFENDER\BITDEFENDER 2008\IESHOW.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, BDAgent : [BitDefender S.R.L.] : C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
04 - HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows, AppInit_DLLs : [Google] : C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll
04 - Startup: %START_PROGRAMSALL%\Startup\Outil de mise à jour Google.lnk [Google] : C:\Program Files\Google\Google Updater\GoogleUpdater.exe

Explorer Bars
NetXfer - {C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - [Xi] : C:\Program Files\Xi\NetXfer\NXToolBar.dll
BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - [Bitdefender] : C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
NetXfer - {C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - [Xi] : C:\Program Files\Xi\NetXfer\NXToolBar.dll
BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - [Bitdefender] : C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll

Shell Extensions
Microsoft OLE DB Service Component Data Links - {2206CDB2-19C1-11D1-89E0-00C04FD7A829} - File not found
ExtractIcon Class - {7A80E4A8-8005-11D2-BCF8-00C04F72C717} - File not found
WebCheckWebCrawler - {08165EA0-E946-11CF-9C87-00AA005127ED} - File not found
Code Download Agent - {7D559C10-9FE9-11d0-93F7-00AA0059CE02} - File not found
WebCheck SyncMgr Handler - {7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB} - File not found
Subscription Mgr - {ABBE31D0-6DAE-11D0-BECA-00C04FD940BE} - File not found
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - File not found
Subscription Folder - {F5175861-2688-11d0-9C5E-00AA00A45957} - File not found
CLSID_PreviewMime - {92dbad9f-5025-49b0-9078-2d78f935e341} - File not found
CLSID_PreviewEmail - {b9815375-5d7f-4ce2-9245-c9d4da436930} - File not found
CLSID_PreviewHtml - {f8b8412b-dea3-4130-b36c-5e8be73106ac} - File not found
Shell Message Handler - {5FA29220-36A1-40f9-89C6-F4B384B7642E} - File not found
Shell DocObject Viewer - {E7E4BC40-E76A-11CE-A9BB-00AA004AE837} - File not found
Microsoft Browser Architecture - {BC476F4C-D9D7-4100-8D4E-E043F6DEC409} - File not found
Internet Shortcut - {FBF23B40-E3F0-101B-8488-00AA003E56F8} - File not found
Microsoft Url History Service - {3C374A40-BAE4-11CF-BF7D-00AA006946EE} - File not found
Temporary Internet Files - {7BD29E00-76C1-11CF-9DD0-00A0C9034933} - File not found
Temporary Internet Files - {7BD29E01-76C1-11CF-9DD0-00A0C9034933} - File not found
Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - File not found
The Internet - {3DC7A020-0ACD-11CF-A9BB-00AA004AE837} - File not found
IE BandProxy - {73CFD649-CD48-4fd8-A272-2070EA56526B} - File not found
IE Microsoft BrowserBand - {07C45BB1-4A8C-4642-A1F5-237E7215FF66} - File not found
IE Navigation Bar - {43886CD5-6529-41c4-A707-7B3C92C05E68} - File not found
IE Search Band - {30D02401-6A81-11d0-8274-00C04FD5AE38} - File not found
IE Registry Tree Options Utility - {F83DAC1C-9BB9-4f2b-B619-09819DA81B0E} - File not found
IE AutoComplete - {3028902F-6374-48b2-8DC6-9725E775B926} - File not found
IE MRU AutoComplete List - {98FF6D4B-6387-4b0a-8FBD-C5C4BB17B4F8} - File not found
IE Custom MRU AutoCompleted List - {FDE7673D-2E19-4145-8376-BBD58C4BC7BA} - File not found
IE Microsoft History AutoComplete List - {6038EF75-ABFC-4e59-AB6F-12D397F6568D} - File not found
IE Microsoft Shell Folder AutoComplete List - {9D958C62-3954-4b44-8FAB-C4670C1DB4C2} - File not found
IE Microsoft Multiple AutoComplete List Container - {B31C5FAE-961F-415b-BAF0-E697A5178B94} - File not found
IE Shell Band Site Menu - {E6EE9AAC-F76B-4947-8260-A9F136138E11} - File not found
IE Shell Rebar BandSite - {BFAD62EE-9D54-4b2a-BF3B-76F90697BD2A} - File not found
IE User Assist - {FAC3CBF6-8697-43d0-BAB9-DCD1FCE19D75} - File not found
IE Menu Band - {4B78D326-D922-44f9-AF2A-07805C2A3560} - File not found
- {6CF48EF8-44CD-45d2-8832-A16EA016311B} - File not found
&Links - {F2CF5485-4E02-4f68-819C-B92DE9277049} - File not found
IE Fade Task - {1C1EDB47-CE22-4bbb-B608-77B48F83C823} - File not found
IE Tracking Shell Menu - {6B4ECC4F-16D1-4474-94AB-5A763F2A54AE} - File not found
IE Menu Site - {44C76ECD-F7FA-411c-9929-1B77BA77F524} - File not found
IE Menu Desk Bar - {205D7A97-F16D-4691-86EF-F3075DCCA57D} - File not found
IE RSS Feeds Folder - {9A096BB5-9DC3-4D1C-8526-C3CBF991EA4E} - File not found
MHTML Document - {3050f3d9-98b5-11cf-bb82-00aa00bdce0b} - File not found
- {00020d75-0000-0000-c000-000000000046} - File not found
ICM Scanner Management - {176d6597-26d3-11d1-b350-080036a75b03} - File not found
ICM Monitor Management - {5DB2625A-54DF-11D0-B6C4-0800091AA605} - File not found
ICM Printer Management - {675F097E-4C4D-11D0-B6C1-0800091AA605} - File not found
Color Profile - {DBCE2480-C732-101B-BE72-BA78E9AD5B27} - File not found
Color Control Panel Applet - {b2c761c6-29bc-4f19-9251-e6195265baf1} - File not found
PrintUIShellExtension Class - {77597368-7b15-11d0-a0c2-080036af3f03} - File not found
Windows Update - {36eef7db-88ad-4e81-ad49-0e313f0c35f8} - File not found
Add New Hardware - {7A979262-40CE-46ff-AEEE-7884AC3B6136} - File not found
Get Programs Online - {3e7efb4c-faf1-453d-89eb-56026875ef90} - File not found
Taskbar and Start Menu - {0DF44EAA-FF21-4412-828E-260A8728E7F1} - File not found
- {1b24a030-9b20-49bc-97ac-1be4426f9e59} - File not found
- {34449847-FD14-4fc8-A75A-7432F5181EFB} - File not found
- {C8494E42-ACDD-4739-B0FB-217361E4894F} - File not found
- {E29F9716-5C08-4FCD-955A-119FDB5A522D} - File not found
Control Panel command object for Start menu - {5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0} - File not found
Default Programs command object for Start menu - {E44E5D18-0652-4508-A4E2-8A090067BCB0} - File not found
Folder Options - {6dfd7c5c-2451-11d3-a299-00c04f8ef6af} - File not found
ActiveX Cache Folder - {88C6C381-2E85-11D0-94DE-444553540000} - File not found
- {2C2577C2-63A7-40e3-9B7F-586602617ECB} - File not found
prturl Class - {92337A8C-E11D-11D0-BE48-00C04FC30DF6} - File not found
Microsoft XPS Shell Metadata Handler - {45670FA8-ED97-4F44-BC93-305082590BFB} - File not found
- {44121072-A222-48f2-A58A-6D9AD51EBBE9} - File not found
- {38a98528-6cbf-4ca9-8dc0-b1e1d10f7b1b} - File not found
CLSID_ContactReadingPane - {13D3C4B8-B179-4ebb-BF62-F704173E7448} - : %COMMONPROGRAMFILES%\System\wab32.dll
For &People... - {32714800-2E5F-11d0-8B85-00AA0044F941} - File not found
- {0F8604A5-4ECE-4DE1-BA7D-CF10F8AA4F48} - File not found
.group shell extension handler - {4F58F63F-244B-4c07-B29F-210BE59BE9B4} - File not found
.contact shell extension handler - {8082C5E6-4C27-48ec-A809-B8E1122E8F97} - File not found
.group shell context menu - {16C2C29D-0E5F-45f3-A445-03E03F587B7D} - File not found
.contact shell context menu - {CF67796C-F57F-45F8-92FB-AD698826C602} - File not found
LayerUIPropPage - {513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8} - File not found
Remote Sessions CPL Extension - {F0152790-D56E-4445-850E-4F3117DB740C} - File not found
Windows Firewall - {4026492f-2f69-46b8-b9bf-5654fc07e423} - File not found
Extensions Manager Folder - {692F0339-CBAA-47e6-B5B5-3B84DB604E87} - File not found
Problem Reports and Solutions - {fcfeecae-ee1b-4849-ae50-685dcf7717ec} - File not found
iSCSI Initiator - {a304259d-52b8-4526-8b1a-a1d6cecc8243} - File not found
Power Options - {025A5937-A6BE-4686-A844-36FE4BEC8B6D} - File not found
User Accounts - {60632754-c523-4b62-b45c-4172da012619} - File not found
AutoPlay - {9C60DE1E-E5FC-40f4-A487-460851A8D915} - File not found
CompressedFolder - {E88DCCE0-B7B3-11d1-A9F0-00AA0060FA31} - [Microsoft Corporation] : C:\Windows\system32\zipfldr.dll
Compressed (zipped) Folder Right Drag Handler - {BD472F60-27FA-11cf-B8B4-444553540000} - [Microsoft Corporation] : C:\Windows\system32\zipfldr.dll
Compressed (zipped) Folder SendTo Target - {888DCA60-FC0A-11CF-8F0F-00C04FD7D062} - [Microsoft Corporation] : C:\Windows\system32\zipfldr.dll
Compressed (zipped) Folder Context Menu - {b8cdcb65-b1bf-4b42-9428-1dfdb7ee92af} - [Microsoft Corporation] : C:\Windows\system32\zipfldr.dll
Compressed (zipped) Folder DropHandler - {ed9d80b9-d157-457b-9192-0e7280313bf0} - [Microsoft Corporation] : C:\Windows\system32\zipfldr.dll
- {911051fa-c21c-4246-b470-070cd8df6dc4} - File not found
- {da67b8ad-e81b-4c70-9b91b417b5e33527} - File not found
DfsShell Class - {ECCDF543-45CC-11CE-B9BF-0080C87CDBA6} - File not found
IPropertyStore Handler for Images - {a38b883c-1682-497e-97b0-0a3a9e801682} - File not found
Photo Thumbnail Provider - {C7657C4A-9F68-40fa-A4DF-96BC08EB3551} - File not found
Photo Extract Image - {3F30C968-480A-4C6C-862D-EFC0897BB84B} - File not found
Windows Photo Gallery Viewer Video Verbs - {E598560B-28D5-46aa-A14A-8A3BEA34B576} - [Microsoft Corporation] : C:\Program Files\Windows Photo Gallery\PhotoViewer.dll
Scanner and Camera Control Panel - {00f2886f-cd64-4fc9-8ec5-30ef6cdbe8c3} - File not found
&Windows Media Player - {0a4286ea-e355-44fb-8086-af3df7645bd9} - [Microsoft Corporation] : C:\Program Files\Windows Media Player\wmpband.dll
- {BB6B2374-3D79-41DB-87F4-896C91846510} - File not found
Windows SideShow - {E95A4861-D57A-4be1-AD0F-35267E261739} - File not found
@%systemroot%\system32\mssvp.dll,-110 - {89D83576-6BD1-4c86-9454-BEB04E94C819} - File not found
Windows Photo Gallery Viewer Autoplay Handler - {9D687A4C-1404-41ef-A089-883B6FBECDE6} - :
DropTarget Object for Photo Printing Wizard - {60fd46de-f830-4894-a628-6fa81bc0190d} - File not found
Windows Sidebar Properties - {37efd44d-ef8d-41b1-940d-96973a50e9e0} - File not found
Portable Media Devices - {640167b4-59b0-47a6-b335-a6b3c0695aea} - File not found
PhotoAcqDropTarget - {00f20eb5-8fd6-4d9d-b75e-36801766c8f1} - File not found
@C:\Windows\System32\shell32.dll,-30579 - {ED228FDF-9EA8-4870-83B1-96B02CFE0D52} - File not found
Windows Features - {67718415-c450-4f3c-bf8a-b487642dc39b} - File not found
Backup and Restore Center - {335a31dd-f04b-4d76-a925-d6b47cf360df} - File not found
Windows Photo Gallery Viewer Image Verbs - {FFE2A43C-56B9-4bf5-9A79-CC6D4285608A} - [Microsoft Corporation] : C:\Program Files\Windows Photo Gallery\PhotoViewer.dll
Windows Defender - {d8559eb9-20c0-410e-beda-7ed416aecc2a} - File not found
Mobility Center Control Panel - {5ea4f148-308c-46d7-98a9-49041b1dd468} - File not found
File Backup Index - {877ca5ac-cb41-4842-9c69-9136e42d47e2} - File not found
Portable Devices Menu - {D6791A63-E7E2-4fee-BF52-5DED8E86E9B8} - File not found
Speech Recognition Options - {58E3C745-D971-4081-9034-86E34B30836A} - File not found
Tablet PC Input Panel - {15D633E2-AD00-465b-9EC7-F56B7CDF8E27} - File not found
Performance Information and Tools - {78F3955E-3B90-4184-BD14-5397C15F1EFC} - File not found
MAPI Mail Previewer - {53BEDF0B-4E5B-4183-8DC9-B844344FA104} - File not found
Windows gadget DropTarget - {6b9228da-9c15-419e-856c-19e768a13bdc} - [Microsoft Corporation] : C:\Program Files\Windows Sidebar\sbdrop.dll
Portable Devices - {35786D3C-B075-49b9-88DD-029876E11C01} - File not found
@%systemroot%\system32\mssvp.dll,-112 - {BD7A2E7B-21CB-41b2-A086-B309680C6B7E} - File not found
User Accounts - {7A9D77BD-5403-11d2-8785-2E0420524153} - File not found
- {F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4} - File not found
Webroot Spy Sweeper Context Menu Integration - {7C9D5882-CB4A-4090-96C8-430BFE8B795B} - [Webroot Software, Inc.] : C:\Program Files\Webroot\Spy Sweeper\SSCtxMnu.dll

Protocol Filters
AP encoding/decoding Filters - {8f6b0360-b80d-11d0-a9b3-006097942311} - File not found
AP encoding/decoding Filters - {8f6b0360-b80d-11d0-a9b3-006097942311} - File not found

Protocol Handler
CDL: Asychronous Pluggable Protocol Handler - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - File not found
DVD: Pluggable Protocol - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - File not found
file:, local: Asychronous Pluggable Protocol Handler - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - File not found
ftp: Asychronous Pluggable Protocol Handler - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - File not found
https: Asychronous Pluggable Protocol Handler - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - File not found
Microsoft InfoTech Protocols for IE 4.0 - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - File not found
file:, local: Asychronous Pluggable Protocol Handler - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - File not found
Microsoft HTML Mailto Pluggable Protocol - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - File not found
MHTML Asynchronous Pluggable Protocol Handler - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - File not found
mk: Asychronous Pluggable Protocol Handler - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - File not found
Microsoft InfoTech Protocols for IE 4.0 - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - File not found
TV: Pluggable Protocol - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - File not found

Services
23 - [ALWIL Software] : C:\Windows\system32\DRIVERS\aswMonFlt.sys
23 - [GRISOFT, s.r.o.] : C:\Windows\system32\DRIVERS\avgarkt.sys
23 - : C:\??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys
23 - [GRISOFT, s.r.o.] : C:\Windows\system32\DRIVERS\AvgArCln.sys
23 - [GRISOFT, s.r.o.] : C:\Windows\system32\DRIVERS\AvgAsCln.sys
23 - [BitDefender S.R.L. Bucharest, ROMANIA] : C:\Windows\system32\DRIVERS\bdfsfltr.sys
23 - : C:\??\C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys
23 - : C:\??\C:\Program Files\BitDefender\BitDefender 2008\bdselfpr.sys
23 - [Microsoft Corporation] : C:\Windows\ehome\ehRecvr.exe
23 - [Microsoft Corporation] : C:\Windows\ehome\ehsched.exe
23 - [VIA Technologies, Inc.] : C:\Windows\system32\DRIVERS\fetnd5.sys
23 - [PCTools Research Pty Ltd.] : C:\Windows\system32\drivers\ikfilesec.sys
23 - [PCTools Research Pty Ltd.] : C:\Windows\system32\drivers\iksysflt.sys
23 - [PCTools Research Pty Ltd.] : C:\Windows\system32\drivers\iksyssec.sys
23 - [Hewlett-Packard Company] : C:\Program Files\Common Files\LightScribe\LSSrvc.exe
23 - [BitDefender S.R.L.] : C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
23 - [NVIDIA Corporation] : C:\Windows\system32\DRIVERS\nvlddmkm.sys
23 - [Philips Semiconductors GmbH] : C:\Windows\system32\DRIVERS\Ph3xIB32.sys
23 - [Sonic Solutions] : C:\Windows\system32\Drivers\PxHelp20.sys
23 - [PC Tools] : C:\Program Files\Spyware Doctor\svcntaux.exe
23 - [PC Tools] : C:\Program Files\Spyware Doctor\swdsvc.exe
23 - [Microsoft Corporation] : C:\Windows\system32\SLsvc.exe
23 - [Webroot Software Inc (www.webroot.com)] : C:\Windows\system32\Drivers\SSFS0BB9.SYS
23 - [Webroot Software Inc (www.webroot.com)] : C:\Windows\system32\Drivers\SSHRMD.SYS
23 - [Webroot Software Inc (www.webroot.com)] : C:\Windows\system32\Drivers\SSIDRV.SYS
23 - [Webroot Software Inc (www.webroot.com)] : C:\Windows\system32\Drivers\sskbfd.sys
23 - [VIA Technologies, Inc.] : C:\Windows\system32\drivers\viaide.sys
23 - [BitDefender S.R.L.] : C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
23 - [X10 Wireless Technology, Inc.] : C:\Windows\system32\Drivers\x10hid.sys
23 - [X10] : C:\Program Files\Common Files\X10\Common\X10nets.exe
23 - [BitDefender] : C:\Program Files\Common Files\BitDefender\BitDefender Communicator\xcommsvr.exe
23 - [X10 Wireless Technology, Inc.] : C:\Windows\system32\Drivers\x10ufx2.sys
23 - : C:\??\C:\Windows\system32\drivers\sp_rsdrv2.sys

Winlogon Notify
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier, DLLName : [Webroot Software, Inc.] : C:\Windows\system32\WRLogonNTF.dll

Threat Files
<SpyWare Secure> : C:\Program Files\Spyware-Secure\config.s3db
<SpyWare Secure> : C:\Program Files\Spyware-Secure\Gfx_fr.bin
<SpyWare Secure> : C:\Program Files\Spyware-Secure\language
<SpyWare Secure> : C:\Program Files\Spyware-Secure\nbmw
<SpyWare Secure> : C:\Program Files\Spyware-Secure\quarantine.s3db
<SpyWare Secure> : C:\Program Files\Spyware-Secure\skin
<SpyWare Secure> : C:\Program Files\Spyware-Secure\Spyware-Secure.url
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR.zip
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\explo_intro.htm
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\explo_menu.htm
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\file.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\folder.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\folder_f.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\folder_o.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\index.htm
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\spy.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\trait_coud.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\trait_droit.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\trait_vert.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\fleche.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\folder.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\key.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\menu.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\support.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\title-hepfile.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\FR\dowload-file-antispyware.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\FR\menu.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\FR\scstep2.gif
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs\3differentscan.htm
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs\contactus.htm
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs\found-objects.htm
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs\lexic.htm
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs\navigtabs.htm
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs\quarantine.htm
<SpyWare Secure> : C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs\register.htm
<SpyWare Secure> : C:\Program Files\Spyware-Secure\resources\cookies_1-11.dat
<SpyWare Secure> : C:\Program Files\Spyware-Secure\resources\filesDesc_1-11.dat
<SpyWare Secure> : C:\Program Files\Spyware-Secure\resources\filesDesc_1-11.dic
<SpyWare Secure> : C:\Program Files\Spyware-Secure\resources\filesExt_1-11.dat
<SpyWare Secure> : C:\Program Files\Spyware-Secure\resources\filesMulti_1-11.idx
<SpyWare Secure> : C:\Program Files\Spyware-Secure\resources\filesSimple_1-11.idx
<SpyWare Secure> : C:\Program Files\Spyware-Secure\resources\malwaresDB_1-11
<SpyWare Secure> : C:\Program Files\Spyware-Secure\resources\register_1-11.dat
<SpyWare Secure> : C:\Program Files\Spyware-Secure\resources\trad_demo_EN.txt
<SpyWare Secure> : C:\Program Files\Spyware-Secure\resources\trad_demo_ES.txt
<SpyWare Secure> : C:\Program Files\Spyware-Secure\resources\trad_demo_FR.txt

Advanced Files Report
%PROGRAMFILES%\Spyware Doctor\smumhook.dll [PC Tools] MD5=1C3FABD20FC060D603F214A6C2CB210F SIZE=183624
%SYSDIR%\SLsvc.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=A1DCD30534835CB67733AD00175125A6 SIZE=2605568
%COMMONFILES%\LightScribe\LSSrvc.exe [Hewlett-Packard Company] [LightScribe] MD5=6E5DAC168D1FF9843E84A59D51D31107 SIZE=61440
%COMMONFILES%\LightScribe\LSSProxy.dll [Hewlett-Packard Company] [LightScribe] MD5=F3918787F9D5F5FF2DA57CDEFB858EC5 SIZE=81920
%COMMONFILES%\LightScribe\LSLog.dll [Hewlett-Packard Company] [LightScribe] MD5=C1A3AF85DBFC67988FB71CE5E8F3B570 SIZE=32256
%PROGRAMFILES%\Spyware Doctor\svcntaux.exe [PC Tools] MD5=2923048AF8233BC274F74545B4574A33 SIZE=729416
%PROGRAMFILES%\Spyware Doctor\SysAccess.dll [PC Tools] MD5=0730891F36F53D3ED8D25139FC5E3A2A SIZE=599328
%PROGRAMFILES%\Spyware Doctor\rtl100.bpl [Borland Software Corporation] [Borland Package Library] MD5=E016DADBA1DD3C5EF41A8F70D3DC64A0 SIZE=843264
%PROGRAMFILES%\Spyware Doctor\ikdll.dll [PCTools Research Pty Ltd.] [Spyware Doctor] MD5=75D0F02336EF26A61B3C66616D1A9EA7 SIZE=103752
%PROGRAMFILES%\Spyware Doctor\swdsvc.exe [PC Tools] MD5=BDD748DC2E48349F7666A68993E63E2D SIZE=1407816
%PROGRAMFILES%\Spyware Doctor\CommOM.dll [PC Tools] MD5=A6BD31BACB97A59EC2C0EBB15EC76ACF SIZE=705824
%PROGRAMFILES%\Spyware Doctor\vcl100.bpl [Borland Software Corporation] [Borland Package Library] MD5=74B6B0BEAC3DC80201383B8699AD694E SIZE=1680896
%PROGRAMFILES%\Spyware Doctor\CommLib.dll [PC Tools] MD5=2FC88F2D102BA92124F3EAB51F68494D SIZE=607520
%PROGRAMFILES%\Spyware Doctor\commhlpr.dll [PC Tools] MD5=CFC87C7FE99E6BDDD589322F1732AA51 SIZE=82248
%PROGRAMFILES%\Spyware Doctor\RegHelper.dll [PC Tools] [Spyware Doctor] MD5=72709B01D3D4BAA6E3D2927272DCAC97 SIZE=108360
%PROGRAMFILES%\Spyware Doctor\inethlpr.dll [PC Tools] [Spyware Doctor] MD5=CD24ACBC5BD33CC0A69A788AFBECD066 SIZE=139080
%PROGRAMFILES%\Spyware Doctor\filehlpr.dll [PC Tools] [Spyware Doctor] MD5=E0BE8A0E9F420EAE04BB58C698D5CCBE SIZE=140616
%PROGRAMFILES%\Spyware Doctor\sdcore.dll [PC Tools] MD5=285C30C7DCF26D6F67F6397E922C02AD SIZE=101704
%PROGRAMFILES%\Spyware Doctor\FileStorage.sdp [PC Tools] MD5=FAA90AD16D8C41D0D0828B7A07386F10 SIZE=308552
%PROGRAMFILES%\Spyware Doctor\Settings.sdp [PC Tools] MD5=42798788C1DF79EC5D5D1D24026CD7BC SIZE=97096
%PROGRAMFILES%\Spyware Doctor\IDBLib.sdp [PC Tools] MD5=2F22F195FDD18514E1EAA45D10908016 SIZE=254280
%PROGRAMFILES%\Spyware Doctor\SDInfo.sdp [PC Tools] MD5=F61C0EB5D80275FC2DDD7E679BDAD8A9 SIZE=709920
%PROGRAMFILES%\Spyware Doctor\SDExtra.sdp [PC Tools] MD5=C090CABE3F25920BE03C2340536B7D68 SIZE=154440
%PROGRAMFILES%\Spyware Doctor\PCTWSC.dll [PC Tools] [PCTWSC Dynamic Link Library] MD5=57973C1F87928F2DDAA1855CB3E531AB SIZE=169288
%PROGRAMFILES%\Spyware Doctor\Immunizer.sdp [PC Tools] MD5=079C73909E36FA08DA414D03B6CDA625 SIZE=95048
%PROGRAMFILES%\Spyware Doctor\Localizer.sdp [PC Tools] MD5=D18FDFFB4C8F8707AECBE3AC176BC7E2 SIZE=146760
%PROGRAMFILES%\Spyware Doctor\NfyMan.sdp [PC Tools] MD5=67DCCE52E91B5BBAA0A914E81768F62D SIZE=99656
%PROGRAMFILES%\Spyware Doctor\quarantine.sdp [PC Tools] MD5=8C61406D511BB63F5A10C07B866462CF SIZE=142664
%PROGRAMFILES%\Spyware Doctor\BH.dll [PC Tools] [Browser Helper] MD5=7B1CB3984817ED517308C449357FEDA5 SIZE=233800
%PROGRAMFILES%\Spyware Doctor\RebootManager.sdp [PC Tools] MD5=41E6123E3756D5EF8E5F9F367CFF3315 SIZE=125256
%PROGRAMFILES%\Spyware Doctor\scaneng.sdp [PC Tools] MD5=8BD031765A97DFAACFB367BF5B6BC0B8 SIZE=218952
%PROGRAMFILES%\Spyware Doctor\stasks.sdp [PC Tools] MD5=AF58F3388BD01B7A8A7A3A15EE13C258 SIZE=128840
%PROGRAMFILES%\Spyware Doctor\SystemMonitor.sdp [PC Tools] MD5=8A9945672AC273B69BBDA8A8A95291B2 SIZE=804128
%PROGRAMFILES%\Spyware Doctor\whitelist.sdp [PC Tools] MD5=28421E8CA9F0226B80FE476A3FA36532 SIZE=126280
%PROGRAMFILES%\Spyware Doctor\sdwvhlp.dll [PC Tools] [sdwvhlp Dynamic Link Library] MD5=C836F8D1350B8A1B4DEAE61CC18FD279 SIZE=58696
%PROGRAMFILES%\Spyware Doctor\plugins\Browsers.SDP [PC Tools] MD5=65914A0352A83256FC87B3224D7623F2 SIZE=273408
%PROGRAMFILES%\Spyware Doctor\plugins\grfiles.SDP [PC Tools] [Spyware Doctor] MD5=71627D2E200AD3F1AD4C05952145A2C7 SIZE=231936
%PROGRAMFILES%\Spyware Doctor\plugins\grregistry.SDP [PC Tools] [Spyware Doctor] MD5=F0E79792E01A8E16078C07A616BE5257 SIZE=160256
%PROGRAMFILES%\Spyware Doctor\PCToolsComponents.bpl [PC Tools] MD5=A17ADE8EF9FE21CC0DE495BACA9E05E7 SIZE=373760
%PROGRAMFILES%\Spyware Doctor\SH.dll [PC Tools] MD5=3381059F4443B9961E1D26ED9A17EABC SIZE=210760
%PROGRAMFILES%\Spyware Doctor\plugins\Network.SDP [PC Tools] [Spyware Doctor] MD5=B5C2746E6152ABFC7E3CA3FA85E10104 SIZE=373760
%PROGRAMFILES%\Spyware Doctor\plugins\Process.SDP [PC Tools] MD5=A7FE09168BAACD4C8043EA82228D4CC9 SIZE=434176
%PROGRAMFILES%\Spyware Doctor\plugins\ScriptEngine.SDP [PC Tools] MD5=FB32C15FA11565DECFE93DFD2C454A22 SIZE=750592
%PROGRAMFILES%\Spyware Doctor\plugins\StartUp.SDP [PC Tools] [Spyware Doctor] MD5=59ECD2D47FB359CDCA7A3BC2FABC409B SIZE=280576
%SYSDIR%\BrWia06c.dll [Brother Industries, Ltd.] [Brother Industries, Ltd.] MD5=CC332DEA8583663C0E2103B9F56326FD SIZE=1519616
%SYSDIR%\BrUsi06c.dll [Brother Industries, Ltd.] [Brother STI minidriver] MD5=05F60245816DE79E3757D84347777298 SIZE=39424
%PROGRAMFILES%\Webroot\Spy Sweeper\pcre.dll [RenatoMancuso.com] [DPCRE 6.1] MD5=D46AB75FAA2DED3CC76E26484EF85661 SIZE=312632
%PROGRAMFILES%\Webroot\Spy Sweeper\ztvunrar3.dll [] MD5=61A557DB78A19096A4B50B21A5E9D523 SIZE=161856
%COMMONFILES%\X10\Common\X10nets.exe [X10] [x10 Module] MD5=5A0C788C5BC5F2C993CB60940ADCF95E SIZE=20480
%COMMONFILES%\X10\Common\x10net.dll [X10 Wireless Technology, Inc.] [X10net Module] MD5=F132F5591C26400A95F97B8738F5FE89 SIZE=1286144
%SYSDIR%\nvd3dum.dll [NVIDIA Corporation] [NVIDIA Windows Vista WDDM driver] MD5=E0CE913F4CD611E667BF717E0BCCAFAF SIZE=4988928
%COMMONFILES%\BitDefender\BitDefender Communicator\xcommsvr.exe [BitDefender] [BitDefender Communicator Server] MD5=979F6C6A2A1E31E7BCC6D5D527C98927 SIZE=86016
%PROGRAMFILES%\Webroot\Spy Sweeper\SSCtxMnu.dll [Webroot Software, Inc.] [Spy Sweeper] MD5=DE84303252CAD1663BF16DF9656079FD SIZE=480568
%PROGRAMFILES%\Nero\Nero 7\Nero BackItUp\NBShell.dll [Nero AG] [Nero BackItUp] MD5=A9A51A322B1AFB4D01185EE5949CF91D SIZE=73728
%PROGRAMFILES%\BitDefender\BitDefender 2008\bdshelxt.dll [BitDefender S.R.L] [BDShellExt Module] MD5=11F0B9EB01DE36098CE28E33965E413B SIZE=155648
%PROGRAMFILES%\BitDefender\BitDefender 2008\bdutils.dll [SOFTWIN S.R.L.] [BitDefender 11] MD5=7AAEFDCF7C2ACE28B01B3D968CC652E2 SIZE=77824
%PROGRAMFILES%\BitDefender\BitDefender 2008\txmlx.dll [SOFTWIN S.R.L.] MD5=B03C3745E1EAC0EFF56154F337045471 SIZE=90112
%PROGRAMFILES%\MP3 Player Utilities 4.15\AMVConverter\AmvTransform.dll [] [AmvTransform Module] MD5=0BBA49F0B0F3F646D9128B963D6BB777 SIZE=32768
%PROGRAMFILES%\Grisoft\AVG Anti-Spyware 7.5\context.dll [GRISOFT s.r.o.] [AVG Anti-Spyware] MD5=C9C6386CDCF2706F1BD860D63CF6405C SIZE=144944
%COMMONFILES%\BitDefender\BitDefender Update Service\livesrv.exe [BitDefender S.R.L.] [BitDefender 11] MD5=8135458E4ADD61C54B0C33C344D6537D SIZE=1122304
%PROGRAMFILES%\BitDefender\BitDefender 2008\vsserv.exe [BitDefender S.R.L.] [BitDefender 11] MD5=098CE05395B9516C313DACB7F86EEB72 SIZE=1048576
%PROGRAMFILES%\Google\Google Desktop Search\GoogleDesktopCommon.dll [Google] [Google Desktop] MD5=FAA161BB18CC79DD443E13FEDA1E7AC0 SIZE=125440
%PROGRAMFILES%\Google\Google Desktop Search\GoogleDesktopResources_fr.dll [Google] [Google Desktop] MD5=7E5D92C5BA7C2872E17A1C4A06544772 SIZE=534016
%PROGRAMFILES%\Google\Google Desktop Search\GoogleDesktopAPI2.dll [Google] [Google Desktop] MD5=49C3F8D96998EB634EC7FF5F821D5F7F SIZE=552960
%PROGRAMFILES%\Google\Google Desktop Search\GoogleDesktopHyper.dll [Google] [Google Desktop] MD5=32C93706B235E98D6BA720DA06091E8A SIZE=176640
%PROGRAMFILES%\Google\Google Desktop Search\gzlib.dll [] MD5=F433947BEA5794354AC089D8D93104C4 SIZE=36352
%PROGRAMFILES%\Spyware Doctor\cdialogs.dll [PC Tools] MD5=025959D468A662151F19A96E150C817E SIZE=650568
%PROGRAMFILES%\Spyware Doctor\pwindow.dll [PC Tools] MD5=A6C6F3D3530571B28CE6018AADBAE041 SIZE=124232
%SYSDIR%\rundll32.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=4B555106290BD117334E9A08761C035A SIZE=44544
%SYSDIR%\nvapi.dll [NVIDIA Corporation] [NVIDIA Windows drivers] MD5=A1502A3D9B33745A0DA172C0D3F1A6A9 SIZE=364544
%PROGRAMFILES%\BitDefender\BitDefender 2008\npcomm.dll [BitDefender SRL] [BitDefender v11] MD5=1B374FD7F203FDCF40C66A5C1F517C9A SIZE=31232
%PROGRAMFILES%\BitDefender\BitDefender 2008\bdch.dll [BitDefender S.R.L] [BitDefender Crash Handler] MD5=8B31195354D4D8163A3F30803AB24F82 SIZE=16896
%PROGRAMFILES%\BitDefender\BitDefender 2008\bdsubmit.dll [BitDefender S.R.L.] [BitDefender Submission] MD5=333B75C4C3ABF939055C40E174464C48 SIZE=212992
%SYSDIR%\XCOMM.dll [BitDefender] [BitDefender Communicator] MD5=511E52F847EEE07B62D22182FF3C8AFD SIZE=77824
%PROGRAMFILES%\BitDefender\BitDefender 2008\bdguictl.dll [BitDefender S.R.L.] [BitDefender 11] MD5=491990C355464852FA60160ACDA8441D SIZE=569344
%PROGRAMFILES%\BitDefender\BitDefender 2008\NAG.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=93758EA7C80BE11F85ADFB0972DAD5CB SIZE=48272
%PROGRAMFILES%\BitDefender\BitDefender 2008\popup.dll [BitDefender S.R.L.] [BitDefender 11] MD5=CAEB6C35AE6D54144BA63BB75D54A813 SIZE=249856
%PROGRAMFILES%\BitDefender\BitDefender 2008\libexpatw.dll [] MD5=63783280C9D59FE4A7C0936E593C2F1C SIZE=196608
%PROGRAMFILES%\BitDefender\BitDefender 2008\excmgr.dll [BitDefender S.R.L.] [BitDefender 11] MD5=D0B8A7AFAAD9725403D101F7BA79EB50 SIZE=167936
%PROGRAMFILES%\Google\Google Desktop Search\GoogleDesktopDeskbar2.dll [Google] [Google Desktop] MD5=3A11B5D017319AEF3BCF1A209742B257 SIZE=168448
%SYSDIR%\Ph3xIB32MV.dll [Philips Semiconductors GmbH] [MacroVision] MD5=511F8F789CD1F57A05DF945521A53496 SIZE=13824
%PROGRAMFILES%\Google\Google Updater\GoogleUpdater.exe [Google] [Google Updater] MD5=8D89B60FD56F70813DA50C01E232C8FB SIZE=126136
%PROGRAMFILES%\Google\Google Updater\2.2.969.23408\ci.dll [Google] [Google Updater] MD5=A968D3500D3615D8E4892F6AC671F6E2 SIZE=912384
%WINDIR%\ehome\ehsched.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=AD1870C8E5D6DD340C829E6074BF3C3F SIZE=131072
%WINDIR%\ehome\ehRecvr.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=B4580122B0A7B263B6EE9ACBA69C8013 SIZE=291840
%PROGRAMFILES%\CyberLink\MCE Software Encoder\MCEMpgMux.ax [CyberLink] [CyberLink MpgMux] MD5=C3070F14B452001AA244B5CBDC04FD62 SIZE=212992
%PROGRAMFILES%\CyberLink\MCE Software Encoder\CLVidEncMCE.ax [CyberLink Corp.] [CyberLink MPEG Encoder] MD5=65C5AC5EEDD1DF954FA4B74D9A013D0F SIZE=462899
%PROGRAMFILES%\CyberLink\MCE Software Encoder\PThreadVC2.dll [Open Source Software community project] MD5=23029EEF6713814E2ABF6B639D1BEFC2 SIZE=86070
%PROGRAMFILES%\CyberLink\MCE Software Encoder\CLMP2VMCE.dll [CyberLink Corp.] [Cyberlink MPEG2 encoder] MD5=0D69B7C88E24BC4F9C449DC92213DDBE SIZE=225344
%PROGRAMFILES%\CyberLink\MCE Software Encoder\CLAudEnc.ax [Cyberlink Corp.] [CyberLink Audio Encoder Filter] MD5=CBCCB850084C5EA92EC013502600127E SIZE=643072
%SYSDIR%\l3codecx.ax [Fraunhofer Institut Integrierte Schaltungen IIS] [MPEG Layer-3 Audio Codec for Microsoft DirectShow] MD5=69A0628BBE1A404B1BA0B6DCA7610A06 SIZE=98304
%SYSDIR%\xvid.ax [] MD5=1D9FB9784F32276EFB43512A81217753 SIZE=53248
%SYSDIR%\tvratings.dll [Microsoft] [TestRat Module] MD5=5AE3C16B30075D1BF22B010E3296EED2 SIZE=26624
%PROGRAMFILES%\Internet Explorer\iexplore.exe [Microsoft Corporation] [Windows® Internet Explorer] MD5=7023BC3AF58F0C47856AF147E290D81A SIZE=625152
%PROGRAMFILES%\Google\Google Desktop Search\GoogleDesktopIE.dll [Google] [Google Desktop] MD5=8A2E202358CEC32572D679AD0205B5A7 SIZE=111104
%PROGRAMFILES%\Windows Live Toolbar\Components\fr-fr\SmaMenRes.dll.mui [Microsoft Corporation.] [Windows Live Toolbar] MD5=D18A4445051CA34F808B7EE6B6F5D7C9 SIZE=3072
%PROGRAMFILES%\Windows Live Toolbar\Components\SmaMenRes.dll [Microsoft Corporation.] [Windows Live Toolbar] MD5=F2B21EB38BDAFF558DAEDD55EF7C0659 SIZE=4096
%PROGRAMFILES%\eBay\eBay Toolbar2\wsa18.dll [Symantec Corporation] [Norton Confidential] MD5=BC8304F9ED7784FBC095B202442B0A25 SIZE=465584
%PROGRAMFILES%\eBay\eBay Toolbar2\siteFR.dll [eBay Inc.] [eBay Toolbar Site DLL] MD5=BD9113E74D04DCEE1AAEDF22F00EB14D SIZE=759024
%PROGRAMFILES%\Windows Live Toolbar\Components\smamen.dll [Microsoft Corporation.] [Windows Live Toolbar] MD5=6B5F084334FBA9F634DC8CB185EFACC7 SIZE=505856
%PROGRAMFILES%\Windows Live Toolbar\Components\COMCRF\COMCRF.dll [Microsoft Corporation.] [Windows Live Toolbar] MD5=99FA7977A3FC14F594BC295C83D31216 SIZE=140288
%PROGRAMFILES%\Windows Mail\WinMail.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=AE2E36868172164EAD298DFC6051E5C3 SIZE=397312
%SYSDIR%\Macromed\Flash\FlashUtil9d.exe [Adobe Systems, Inc.] [Flash Player Helper] MD5=CB84B8B96A4EEE2AE8AE5DA582273411 SIZE=190696
%COMMONPROGRAMFILES%\System\wab32.dll []
%SYSDIR%\zipfldr.dll [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=C9F8C752ED450D74A51FC4DA40B0DA16 SIZE=338432
%PROGRAMFILES%\Windows Photo Gallery\PhotoViewer.dll [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=7CB1C510F55B2D5E3DE24823839D320D SIZE=2313216
%PROGRAMFILES%\Windows Media Player\wmpband.dll [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=4AEED1FBB53F915CBE30671793776A80 SIZE=99328
[]
%PROGRAMFILES%\Windows Sidebar\sbdrop.dll [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=A74701976D6D75099B9FCA993685C452 SIZE=66048
%SYSDIR%\WRLogonNTF.dll [Webroot Software, Inc.] [Spy Sweeper SDK] MD5=0219BD21554678032536C14EEFC6AA28 SIZE=219448
%SYSDIR%\DRIVERS\aswMonFlt.sys [ALWIL Software] [avast! Antivirus System] MD5=B28EDAB0902B6C4AC89C4334186AEB4F SIZE=45648
%SYSDIR%\DRIVERS\avgarkt.sys [GRISOFT, s.r.o.] [AVG Anti-Rootkit] MD5=E8054A423E5D2BDAE6062BAB6DA159C4 SIZE=5632
%SystemDiskRoot%\??\%PROGRAMFILES%\Grisoft\AVG Anti-Spyware 7.5\guard.sys []
%SYSDIR%\DRIVERS\AvgArCln.sys [GRISOFT, s.r.o.] [AVG7 Clean Driver] MD5=EC08D1625F5C6CF2A57B79EB35186F8C SIZE=3968
%SYSDIR%\DRIVERS\AvgAsCln.sys [GRISOFT, s.r.o.] [AVG7 Clean Driver] MD5=856B0CEE009946BF2D327E6B24FE7E3F SIZE=10872
%SYSDIR%\DRIVERS\bdfsfltr.sys [BitDefender S.R.L. Bucharest, ROMANIA] [BitDefender® AntiVirus] MD5=AADD25C3B3F278A555E2F4EDE9AD1686 SIZE=188432
%SystemDiskRoot%\??\%COMMONFILES%\BitDefender\BitDefender Firewall\bdftdif.sys []
%SystemDiskRoot%\??\%PROGRAMFILES%\BitDefender\BitDefender 2008\bdselfpr.sys []
%SYSDIR%\DRIVERS\fetnd5.sys [VIA Technologies, Inc.] [VIA Rhine Family Fast Ethernet Adapter] MD5=B2B2C38E916184FF8523C7439DDD417F SIZE=45568
%SYSDIR%\drivers\ikfilesec.sys [PCTools Research Pty Ltd.] [Spyware Doctor] MD5=DEAD59A2BFBF5CC08693584C608006C5 SIZE=40264
%SYSDIR%\drivers\iksysflt.sys [PCTools Research Pty Ltd.] [Spyware Doctor] MD5=457813FD0B3C6C52B2583B0997A8096A SIZE=57672
%SYSDIR%\drivers\iksyssec.sys [PCTools Research Pty Ltd.] [Spyware Doctor] MD5=D7C6C835C4818D5C4A853F474FB5A9FC SIZE=82248
%SYSDIR%\DRIVERS\nvlddmkm.sys [NVIDIA Corporation] [NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 163.69] MD5=513098DD7A7F4EEA43F9B0BBC1948C80 SIZE=7623968
%SYSDIR%\DRIVERS\Ph3xIB32.sys [Philips Semiconductors GmbH] [Philips Semiconductors Inbox] MD5=9F2F541C52CD7A452E235E885F7D95DE SIZE=1131136
%SYSDIR%\Drivers\PxHelp20.sys [Sonic Solutions] [PxHelp20] MD5=183EF96BCC2EC3D5294CB2C2C0ECBCD1 SIZE=20640
%SYSDIR%\Drivers\SSFS0BB9.SYS [Webroot Software Inc (www.webroot.com)] [Spy Sweeper SDK] MD5=99B126A088C12EC5D6C4FD4D7E9A6E73 SIZE=20280
%SYSDIR%\Drivers\SSHRMD.SYS [Webroot Software Inc (www.webroot.com)] [Spy Sweeper SDK] MD5=EB4AF1ADB05BC67D4EF5E22DB4A3E410 SIZE=21816
%SYSDIR%\Drivers\SSIDRV.SYS [Webroot Software Inc (www.webroot.com)] [Spy Sweeper SDK] MD5=5AEE9E4A2EAABE0E29E1F2B2D0938A95 SIZE=163640
%SYSDIR%\Drivers\sskbfd.sys [Webroot Software Inc (www.webroot.com)] [Spy Sweeper SDK] MD5=A2BE8FBFA987E95D70CFED0E2DACDA6D SIZE=23864
%SYSDIR%\drivers\viaide.sys [VIA Technologies, Inc.] [VIA PCI IDE MINI Driver] MD5=FD2E3175FCADA350C7AB4521DCA187EC SIZE=17512
%SYSDIR%\Drivers\x10hid.sys [X10 Wireless Technology, Inc.] [X10 HID Control Interface] MD5=AB2D77BF7222B007717ABB61B15F9AE2 SIZE=13976
%SYSDIR%\Drivers\x10ufx2.sys [X10 Wireless Technology, Inc.] [X10 USB Control Interface] MD5=6BBF7A3BAB8FFDCCF82057FA2AAE2B7B SIZE=27416
%SystemDiskRoot%\??\%SYSDIR%\drivers\sp_rsdrv2.sys []
%SYSDIR%\\Drivers\SSKBFD.sys [Webroot Software Inc (www.webroot.com)] [Spy Sweeper SDK] MD5=A2BE8FBFA987E95D70CFED0E2DACDA6D SIZE=23864

End of Report

jlpjlp · Answer

télécharge OTMoveIt http://download.bleepingcomputer.com/oldtimer/OTMoveIt.exe (de Old_Timer) sur ton Bureau. 
double-clique sur OTMoveIt.exe pour le lancer. 
copie la liste qui se trouve en citation ci-dessous, 
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved. 

Citation : 

C:\Program Files\Spyware-Secure


clique sur MoveIt! pour lancer la suppression. 
le résultat apparaitra dans le cadre "Results". 
clique sur Exit pour fermer. 
poste le rapport situé dans C:\_OTMoveIt\MovedFiles. 

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes. 

______________________


 colle le rapport d'un scan en ligne 
avec un des suivants: 


bitdefender en ligne : 
http://www.bitdefender.fr/scan_fr/scan8/ie.html 

Panda en ligne : 
http://pandasoftware.fr

secuser en ligne :
http://www.secuser.com/outils/antivirus.htm

scan en ligne firefox
	
https://www.trendmicro.com/fr_fr/business.html

jorandall62 · Answer

encore merci pour l'aide
voici mon rapport bitdefender sachant que j'ai ausssi supprimé avast pour mettre antivir
a bientot

BitDefender Log File !!!!!
Product : BitDefender Antivirus 2008 
Version : BitDefender UIScanner v.11 
Log date : 15:40:05 17/12/2007 
Log path : C:\ProgramData\BitDefender\Desktop\Profiles\Logs\full_scan\1197902405_1_00.xml 

Scan Paths:Path0000: C:\ 
Path0001: D:\ 


Scan Options:Scan for viruses : Yes 
Scan for adware : Yes 
Scan for spyware : Yes 
Scan for applications : Yes 
Scan for dialers : Yes 
Scan for rootkits : Yes 


Target selection options:Scan registry keys : Yes 
Scan cookies : Yes 
Scan boot sectors : Yes 
Scan memory processes : Yes 
Scan archives : No 
Scan runtime packers : Yes 
Scan emails : Yes 
Scan all files : Yes 
Heuristic Scan : Yes 
Scanned extensions :  
Excluded extensions :  


Target ProcessingDefault action for infected objects : Disinfect 
Default action for suspicious objects : None 
Default action for hidden objects : None 


Scan engines summaryNumber of virus signatures : 960407 
Archive plugins : 41 
Email plugins : 6 
Scan plugins : 12 
Archive plugins : 41 
System plugins : 4 
Unpack plugins : 7 


Overall scan summaryScanned items : 86129 
Infected items : 0 
Suspicious items : 0 
Resolved items : 0 
Individual viruses found : 0 
Scanned directories : 10063 
Scanned boot sectors : 3 
Scanned archives : 5853 
Input-output errors : 89 
Scan time : 00:00:27:22 
Files per second : 52 


Scanned processes summaryScanned : 69 
Infected : 0 


Scanned registry keys summaryScanned : 387 
Infected : 0 


Scanned cookies summaryScanned : 0 
Infected : 0 


Remaining issues:Object Name Threat Name Final Status 


Resolved issues:Object Name Threat Name Final Status

jlpjlp · Answer

le rapport  OTMoveIt?

______________


essaye de refaire navilog:

Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection): 

- Va dans démarrer puis panneau de configuration 
- Double Clique sur l'icône "Comptes d'utilisateurs" 
- Clique ensuite sur désactiver et valide. 

Télécharge maintenant Navilog1 depuis-ce lien : 

http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe 

Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau. 
Ensuite double clique sur navilog1.exe pour lancer l'installation. 
Une fois l'installation terminée, Fais un Clic-droit sur le raccourci Navilog1 présent sur ton bureau et choisis "Exécuter 

en tant qu'administrateur". 

Au menu principal, Fais le choix 1 
Laisse toi guider et patiente. 
Patiente jusqu'au message : 
*** Analyse Termine le ..... *** 
Appuie sur une touche le blocnote va s'ouvrir. 
Copie-colle l'intégralité du rapport dans une réponse. 
Referme le blocnote 
Le rapport fixnavi.txt est en outre sauvegardé dans %systemdrive%.

jorandall62 · Answer

voici le rapport de navilog que j'ai  en parti a chaque fois (il ne va pas jusqu'au bout) alors que j'attend asssez longtemps! pourquoi??

Creation de la liste des programmes installes

Veuillez patienter

C:\unpffc02.txtLe fichier sp'cifi' est introuvable.
Impossible de trouver C:\unpffc02.txt
Search Navipromo version 3.3.8 commence le 17/12/2007 a 19:03:01,29

!!! Attention,ce rapport peut indiquer des fichiers/programmes legitimes !!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie desinfection sans l'avis d'un specialiste !!!




*** Recherche programmes installes ***

 Veuillez patienter


 Recherche terminee


*** Recherche dossiers dans C:\Windows ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\Program Files ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\ProgramData ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\ProgramData\Microsoft\Windows\Start Menu\Programs
 ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans c:\users\jorandall62\appdata\roaming\microsoft\windo
ws\start menu\programs ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\Users\jorandall62\AppData\Local\virtualstore\Prog
ram Files ***

 Veuillez patienter

 Recherche terminee


*** Recherche dossiers dans C:\Users\jorandall62\AppData\Roaming ***

Veuillez patienter

 Recherche terminee

 Recherche terminee


*** Recherche avec Catchme par gmer ***
pour + d'infos : http://www.gmer.net

Veuillez patienter ... Le scan peut durer une dizaine de minutes ...


*** Recherche avec GenericNaviSearch ***

Veuillez patienter

jlpjlp · Answer

Télécharge Catchme de Gmer sur le bureau : (colle le rapport)

http://www2.gmer.net/catchme.php


    * Double cliquer sur le fichier catchme.exe pour lancer l'utilitaire.
    * Cliquer sur Scan, Une fenêtre DOS s'ouvrira pour commencer l'analyse.
    * Attendre jusqu'au message « scan completed successfully », puis fermer la fenêtre.
    * Un fichier catchme.log est alors créé sur le bureau contenant le résultat de l'analyse.

jorandall62 · Answer

voici le rapport de gmer
catchme 0.2 W2K/XP/Vista - userland rootkit detector by Gmer, 17 October 2006
http://www.gmer.net

detected NTDLL code modification:
ZwClose

scanning hidden processes ...

scanning hidden services ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0

jlpjlp · Answer

ok normalement c'est bon

encore des soucis?

jorandall62 · Answer

merci beaucoup pour tous ces aides!
heureusement que les forums  existe nt pour les débutants!
je suis content car je n'ai plus maintenant les  problèlmes  de départ avec ces sites intempestifs,etc etc....
et je me rends compte aussi que " ANTIVIR" est plus efficace  qu'AVAST"
mais le fait d'avoir antivir et bitdefender ,ne va pas me causer de problème?
et autre question pourquoi la recherche avec navilog n'allait pas jusqu'au bout?
a bientot

Adware.roguesuspect

17 réponses

Votre réponse

Newsletters