Virus win32:P2E-gen [trj ]
republique
-
republique -
republique -
Bonjour,
j'ai un problème avec un virus de type win 32 : P2E-gen trogen
comme indiqué sur le site j'ai fais les 2ere opérations.
avant de faire la 3eme qui consiste à faire un scan en ligne avec bitdefender, voici le rapport d'AVG anti-spyreware au cas ou il disparaisse
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 19:51:30 25/02/2008
+ Résultat de l'analyse:
HKLM\SOFTWARE\Purchased Products\AntiVirus -> Adware.AvSystemcare : Ignoré.
C:\Program Files\eMule\Incoming\ [Full Albums] [mp3] Raphael-Caravane-FR-2005-MVP(1).RAR/[PC GAME MULTILANGUAGE] Free Casino Games Simulation - fino a 500 $ gratis sul primo deposito - up to 500 $ for free on first deposit.exe -> Adware.Casino : Ignoré.
C:\Program Files\iVideoCodec -> Adware.Generic : Ignoré.
C:\Program Files\iVideoCodec\ot.ico -> Adware.Generic : Ignoré.
C:\Program Files\iVideoCodec\ts.ico -> Adware.Generic : Ignoré.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Ignoré.
HKU\S-1-5-21-2389969595-3485517607-2614902147-1005\Software\Microsoft\Internet Explorer\Extensions\CmdMapping\\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Ignoré.
HKU\S-1-5-21-2389969595-3485517607-2614902147-1005\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{1A29A79A-B9C8-44A9-BEDF-7FADDE3CF33F} -> Adware.Generic : Ignoré.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Security Add-On -> Adware.IntCodec : Ignoré.
C:\Documents and Settings\laurent1\Mes documents\install.exe -> Adware.Softomate : Ignoré.
D:\doc.bis\install.exe -> Adware.Softomate : Ignoré.
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\USDR6V_0001_D18M3107NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Ignoré.
C:\WINDOWS\Downloaded Program Files\USDR6V_0001_D18M3107NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Ignoré.
C:\Documents and Settings\laurent1\Cookies\laurent1@atdmt[1].txt -> TrackingCookie.Atdmt : Ignoré.
C:\Documents and Settings\laurent1\Cookies\laurent1@bluestreak[2].txt -> TrackingCookie.Bluestreak : Ignoré.
C:\Documents and Settings\laurent1\Cookies\laurent1@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignoré.
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105335.dll -> Trojan.P2E.co : Ignoré.
C:\WINDOWS\eg_auth_1052.dll -> Trojan.P2E.co : Ignoré.
C:\WINDOWS\egauth4_1052.dll -> Trojan.P2E.co : Ignoré.
Fin du rapport
merci de votre aide je reviens avec le prochain rapport
j'ai un problème avec un virus de type win 32 : P2E-gen trogen
comme indiqué sur le site j'ai fais les 2ere opérations.
avant de faire la 3eme qui consiste à faire un scan en ligne avec bitdefender, voici le rapport d'AVG anti-spyreware au cas ou il disparaisse
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 19:51:30 25/02/2008
+ Résultat de l'analyse:
HKLM\SOFTWARE\Purchased Products\AntiVirus -> Adware.AvSystemcare : Ignoré.
C:\Program Files\eMule\Incoming\ [Full Albums] [mp3] Raphael-Caravane-FR-2005-MVP(1).RAR/[PC GAME MULTILANGUAGE] Free Casino Games Simulation - fino a 500 $ gratis sul primo deposito - up to 500 $ for free on first deposit.exe -> Adware.Casino : Ignoré.
C:\Program Files\iVideoCodec -> Adware.Generic : Ignoré.
C:\Program Files\iVideoCodec\ot.ico -> Adware.Generic : Ignoré.
C:\Program Files\iVideoCodec\ts.ico -> Adware.Generic : Ignoré.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Ignoré.
HKU\S-1-5-21-2389969595-3485517607-2614902147-1005\Software\Microsoft\Internet Explorer\Extensions\CmdMapping\\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Ignoré.
HKU\S-1-5-21-2389969595-3485517607-2614902147-1005\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{1A29A79A-B9C8-44A9-BEDF-7FADDE3CF33F} -> Adware.Generic : Ignoré.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Security Add-On -> Adware.IntCodec : Ignoré.
C:\Documents and Settings\laurent1\Mes documents\install.exe -> Adware.Softomate : Ignoré.
D:\doc.bis\install.exe -> Adware.Softomate : Ignoré.
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\USDR6V_0001_D18M3107NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Ignoré.
C:\WINDOWS\Downloaded Program Files\USDR6V_0001_D18M3107NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Ignoré.
C:\Documents and Settings\laurent1\Cookies\laurent1@atdmt[1].txt -> TrackingCookie.Atdmt : Ignoré.
C:\Documents and Settings\laurent1\Cookies\laurent1@bluestreak[2].txt -> TrackingCookie.Bluestreak : Ignoré.
C:\Documents and Settings\laurent1\Cookies\laurent1@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignoré.
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105335.dll -> Trojan.P2E.co : Ignoré.
C:\WINDOWS\eg_auth_1052.dll -> Trojan.P2E.co : Ignoré.
C:\WINDOWS\egauth4_1052.dll -> Trojan.P2E.co : Ignoré.
Fin du rapport
merci de votre aide je reviens avec le prochain rapport
A voir également:
- Virus win32:P2E-gen [trj ]
- Virus mcafee - Accueil - Piratage
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
- Ordinateur bloqué virus - Accueil - Arnaque
2 réponses
deuxieme rapport effectué..........au secours help me
BitDefender Online Scanner
Scan report generated at: Mon, Feb 25, 2008 - 22:11:46
Scan path: A:\;C:\;D:\;E:\;F:\;G:\;
Statistics
Time
01:22:50
Files
221885
Folders
7737
Boot Sectors
4
Archives
8205
Packed Files
9226
Results
Identified Viruses
18
Infected Files
28
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
27
Engines Info
Virus Definitions
983576
Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)
Scan plugins
16
Archive plugins
41
Unpack plugins
7
E-mail plugins
6
System plugins
5
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\laurent1\Mes documents\install.exe=>(NSIS o)=>lzma_solid_nsis0005
Detected with: Adware.Toolbar.Softomate.E
C:\Documents and Settings\laurent1\Mes documents\install.exe=>(NSIS o)=>lzma_solid_nsis0005
Deleted
C:\Documents and Settings\laurent1\Mes documents\install.exe=>(NSIS o)
Update failed
C:\Documents and Settings\laurent1\Mes documents\kazaa_lite_202_francais.exe=>(NSIS o)=>zlib_nsis0008
Detected with: Application.Topsearch.B
C:\Documents and Settings\laurent1\Mes documents\kazaa_lite_202_francais.exe=>(NSIS o)=>zlib_nsis0008
Disinfection failed
C:\Documents and Settings\laurent1\Mes documents\kazaa_lite_202_francais.exe=>(NSIS o)=>zlib_nsis0008
Deleted
C:\Documents and Settings\laurent1\Mes documents\kazaa_lite_202_francais.exe=>(NSIS o)
Update failed
C:\Documents and Settings\laurent1\Mes documents\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Infected with: Trojan.FatObfus.Gen
C:\Documents and Settings\laurent1\Mes documents\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Disinfection failed
C:\Documents and Settings\laurent1\Mes documents\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Deleted
C:\Documents and Settings\laurent1\Mes documents\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)
Update failed
C:\Documents and Settings\laurent1\Mes documents\SpywareSecure_trial_setup.exe=>(NSIS o)=>lzma_solid_nsis0007
Detected with: Adware.SpywareSecure.B
C:\Documents and Settings\laurent1\Mes documents\SpywareSecure_trial_setup.exe=>(NSIS o)=>lzma_solid_nsis0007
Deleted
C:\Documents and Settings\laurent1\Mes documents\SpywareSecure_trial_setup.exe=>(NSIS o)
Update failed
C:\Documents and Settings\laurent1\Mes documents\SpywareSecure_trial_setup.exe=>(NSIS o)=>lzma_solid_nsis0010
Detected with: Adware.SpywareSecure.B
C:\Documents and Settings\laurent1\Mes documents\SpywareSecure_trial_setup.exe=>(NSIS o)=>lzma_solid_nsis0010
Deleted
C:\Documents and Settings\laurent1\Mes documents\SpywareSecure_trial_setup.exe=>(NSIS o)
Update failed
C:\Program Files\eMule\Incoming\ [Full Albums] [mp3] Raphael-Caravane-FR-2005-MVP(1).RAR=>[PC GAME MULTILANGUAGE] Free Casino Games Simulation - fino a 500 $ gratis sul primo deposito - up to 500 $ for free on first deposit.exe
Detected with: Adware.Casino.BQ
C:\Program Files\eMule\Incoming\ [Full Albums] [mp3] Raphael-Caravane-FR-2005-MVP(1).RAR=>[PC GAME MULTILANGUAGE] Free Casino Games Simulation - fino a 500 $ gratis sul primo deposito - up to 500 $ for free on first deposit.exe
Deleted
C:\Program Files\eMule\Incoming\ [Full Albums] [mp3] Raphael-Caravane-FR-2005-MVP(1).RAR
Update failed
C:\Program Files\eMule\Incoming\Christophe Mae - On S'attache(1).rar=>setup.exe
Infected with: Win32.Worm.P2P.Puce.G
C:\Program Files\eMule\Incoming\Christophe Mae - On S'attache(1).rar=>setup.exe
Disinfection failed
C:\Program Files\eMule\Incoming\Christophe Mae - On S'attache(1).rar=>setup.exe
Deleted
C:\Program Files\eMule\Incoming\Christophe Mae - On S'attache(1).rar
Update failed
C:\Program Files\eMule\Incoming\Download récré A 2 with the fastest BitTorrent downloader.zip=>Bittorrent Fastest Tool06.EXE=>wise0008
Detected with: Adware.LOP.BI
C:\Program Files\eMule\Incoming\Download récré A 2 with the fastest BitTorrent downloader.zip=>Bittorrent Fastest Tool06.EXE=>wise0008
Deleted
C:\Program Files\eMule\Incoming\Download récré A 2 with the fastest BitTorrent downloader.zip=>Bittorrent Fastest Tool06.EXE
Update failed
C:\Program Files\eMule\Incoming\View nicolas perac mon vieux with the ultimate player.zip=>PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Infected with: Trojan.FatObfus.Gen
C:\Program Files\eMule\Incoming\View nicolas perac mon vieux with the ultimate player.zip=>PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Disinfection failed
C:\Program Files\eMule\Incoming\View nicolas perac mon vieux with the ultimate player.zip=>PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Deleted
C:\Program Files\eMule\Incoming\View nicolas perac mon vieux with the ultimate player.zip=>PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)
Update failed
C:\Program Files\Spyware-Secure\Spyware-Secure_trial.exe
Detected with: Adware.SpywareSecure.B
C:\Program Files\Spyware-Secure\Spyware-Secure_trial.exe
Deleted
C:\Program Files\Ultimate Cleaner\com\ucsecuredelete.dll
Detected with: Application.Ultimate.DLL
C:\Program Files\Ultimate Cleaner\com\ucsecuredelete.dll
Disinfection failed
C:\Program Files\Ultimate Cleaner\com\ucsecuredelete.dll
Deleted
C:\Program Files\Ultimate Cleaner\Uninstall.exe
Detected with: Application.Ultimate.BK
C:\Program Files\Ultimate Cleaner\Uninstall.exe
Disinfection failed
C:\Program Files\Ultimate Cleaner\Uninstall.exe
Deleted
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1008\A0099981.exe
Detected with: Adware.Navipromo.BZC
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1008\A0099981.exe
Disinfection failed
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1008\A0099981.exe
Deleted
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1011\A0100188.exe
Detected with: Adware.Navipromo.BZC
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1011\A0100188.exe
Disinfection failed
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1011\A0100188.exe
Deleted
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105338.dll
Detected with: Dialer.Egroup.AKY
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105338.dll
Disinfection failed
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105338.dll
Deleted
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105339.dll
Detected with: Dialer.Egroup.AKY
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105339.dll
Disinfection failed
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105339.dll
Deleted
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105340.exe
Detected with: Adware.SpywareSecure.B
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105340.exe
Deleted
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105341.dll
Detected with: Application.Ultimate.DLL
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105341.dll
Disinfection failed
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105341.dll
Deleted
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105342.exe
Detected with: Application.Ultimate.BK
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105342.exe
Disinfection failed
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105342.exe
Deleted
C:\WINDOWS\admgcx.dll
Detected with: Adware.NetAdware.EF
C:\WINDOWS\admgcx.dll
Deleted
C:\WINDOWS\dmdvpnslp.dll
Detected with: Adware.NetAdware.EF
C:\WINDOWS\dmdvpnslp.dll
Disinfection failed
C:\WINDOWS\dmdvpnslp.dll
Delete failed
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\USDR6V_0001_D18M3107NetInstaller.exe
Detected with: Application.Winfixer.AQ
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\USDR6V_0001_D18M3107NetInstaller.exe
Disinfection failed
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\USDR6V_0001_D18M3107NetInstaller.exe
Deleted
C:\WINDOWS\Downloaded Program Files\USDR6V_0001_D18M3107NetInstaller.exe
Detected with: Application.Winfixer.AQ
C:\WINDOWS\Downloaded Program Files\USDR6V_0001_D18M3107NetInstaller.exe
Disinfection failed
C:\WINDOWS\Downloaded Program Files\USDR6V_0001_D18M3107NetInstaller.exe
Deleted
C:\WINDOWS\RavMonE.exe
Infected with: Win32.Worm.RJump.F
C:\WINDOWS\RavMonE.exe
Deleted
C:\WINDOWS\wt\wtupdates\wtwebdriver\files\3.3.1.001\npwthost.dll
Detected with: Adware.Wildtangent.B
C:\WINDOWS\wt\wtupdates\wtwebdriver\files\3.3.1.001\npwthost.dll
Deleted
D:\doc.bis\install.exe=>(NSIS o)=>lzma_solid_nsis0005
Detected with: Adware.Toolbar.Softomate.E
D:\doc.bis\install.exe=>(NSIS o)=>lzma_solid_nsis0005
Deleted
D:\doc.bis\install.exe=>(NSIS o)
Update failed
D:\doc.bis\kazaa_lite_202_francais.exe=>(NSIS o)=>zlib_nsis0008
Detected with: Application.Topsearch.B
D:\doc.bis\kazaa_lite_202_francais.exe=>(NSIS o)=>zlib_nsis0008
Disinfection failed
D:\doc.bis\kazaa_lite_202_francais.exe=>(NSIS o)=>zlib_nsis0008
Deleted
D:\doc.bis\kazaa_lite_202_francais.exe=>(NSIS o)
Update failed
D:\doc.bis\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Infected with: Trojan.FatObfus.Gen
D:\doc.bis\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Disinfection failed
D:\doc.bis\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Deleted
D:\doc.bis\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)
Update failed
BitDefender Online Scanner
Scan report generated at: Mon, Feb 25, 2008 - 22:11:46
Scan path: A:\;C:\;D:\;E:\;F:\;G:\;
Statistics
Time
01:22:50
Files
221885
Folders
7737
Boot Sectors
4
Archives
8205
Packed Files
9226
Results
Identified Viruses
18
Infected Files
28
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
27
Engines Info
Virus Definitions
983576
Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)
Scan plugins
16
Archive plugins
41
Unpack plugins
7
E-mail plugins
6
System plugins
5
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\laurent1\Mes documents\install.exe=>(NSIS o)=>lzma_solid_nsis0005
Detected with: Adware.Toolbar.Softomate.E
C:\Documents and Settings\laurent1\Mes documents\install.exe=>(NSIS o)=>lzma_solid_nsis0005
Deleted
C:\Documents and Settings\laurent1\Mes documents\install.exe=>(NSIS o)
Update failed
C:\Documents and Settings\laurent1\Mes documents\kazaa_lite_202_francais.exe=>(NSIS o)=>zlib_nsis0008
Detected with: Application.Topsearch.B
C:\Documents and Settings\laurent1\Mes documents\kazaa_lite_202_francais.exe=>(NSIS o)=>zlib_nsis0008
Disinfection failed
C:\Documents and Settings\laurent1\Mes documents\kazaa_lite_202_francais.exe=>(NSIS o)=>zlib_nsis0008
Deleted
C:\Documents and Settings\laurent1\Mes documents\kazaa_lite_202_francais.exe=>(NSIS o)
Update failed
C:\Documents and Settings\laurent1\Mes documents\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Infected with: Trojan.FatObfus.Gen
C:\Documents and Settings\laurent1\Mes documents\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Disinfection failed
C:\Documents and Settings\laurent1\Mes documents\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Deleted
C:\Documents and Settings\laurent1\Mes documents\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)
Update failed
C:\Documents and Settings\laurent1\Mes documents\SpywareSecure_trial_setup.exe=>(NSIS o)=>lzma_solid_nsis0007
Detected with: Adware.SpywareSecure.B
C:\Documents and Settings\laurent1\Mes documents\SpywareSecure_trial_setup.exe=>(NSIS o)=>lzma_solid_nsis0007
Deleted
C:\Documents and Settings\laurent1\Mes documents\SpywareSecure_trial_setup.exe=>(NSIS o)
Update failed
C:\Documents and Settings\laurent1\Mes documents\SpywareSecure_trial_setup.exe=>(NSIS o)=>lzma_solid_nsis0010
Detected with: Adware.SpywareSecure.B
C:\Documents and Settings\laurent1\Mes documents\SpywareSecure_trial_setup.exe=>(NSIS o)=>lzma_solid_nsis0010
Deleted
C:\Documents and Settings\laurent1\Mes documents\SpywareSecure_trial_setup.exe=>(NSIS o)
Update failed
C:\Program Files\eMule\Incoming\ [Full Albums] [mp3] Raphael-Caravane-FR-2005-MVP(1).RAR=>[PC GAME MULTILANGUAGE] Free Casino Games Simulation - fino a 500 $ gratis sul primo deposito - up to 500 $ for free on first deposit.exe
Detected with: Adware.Casino.BQ
C:\Program Files\eMule\Incoming\ [Full Albums] [mp3] Raphael-Caravane-FR-2005-MVP(1).RAR=>[PC GAME MULTILANGUAGE] Free Casino Games Simulation - fino a 500 $ gratis sul primo deposito - up to 500 $ for free on first deposit.exe
Deleted
C:\Program Files\eMule\Incoming\ [Full Albums] [mp3] Raphael-Caravane-FR-2005-MVP(1).RAR
Update failed
C:\Program Files\eMule\Incoming\Christophe Mae - On S'attache(1).rar=>setup.exe
Infected with: Win32.Worm.P2P.Puce.G
C:\Program Files\eMule\Incoming\Christophe Mae - On S'attache(1).rar=>setup.exe
Disinfection failed
C:\Program Files\eMule\Incoming\Christophe Mae - On S'attache(1).rar=>setup.exe
Deleted
C:\Program Files\eMule\Incoming\Christophe Mae - On S'attache(1).rar
Update failed
C:\Program Files\eMule\Incoming\Download récré A 2 with the fastest BitTorrent downloader.zip=>Bittorrent Fastest Tool06.EXE=>wise0008
Detected with: Adware.LOP.BI
C:\Program Files\eMule\Incoming\Download récré A 2 with the fastest BitTorrent downloader.zip=>Bittorrent Fastest Tool06.EXE=>wise0008
Deleted
C:\Program Files\eMule\Incoming\Download récré A 2 with the fastest BitTorrent downloader.zip=>Bittorrent Fastest Tool06.EXE
Update failed
C:\Program Files\eMule\Incoming\View nicolas perac mon vieux with the ultimate player.zip=>PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Infected with: Trojan.FatObfus.Gen
C:\Program Files\eMule\Incoming\View nicolas perac mon vieux with the ultimate player.zip=>PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Disinfection failed
C:\Program Files\eMule\Incoming\View nicolas perac mon vieux with the ultimate player.zip=>PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Deleted
C:\Program Files\eMule\Incoming\View nicolas perac mon vieux with the ultimate player.zip=>PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)
Update failed
C:\Program Files\Spyware-Secure\Spyware-Secure_trial.exe
Detected with: Adware.SpywareSecure.B
C:\Program Files\Spyware-Secure\Spyware-Secure_trial.exe
Deleted
C:\Program Files\Ultimate Cleaner\com\ucsecuredelete.dll
Detected with: Application.Ultimate.DLL
C:\Program Files\Ultimate Cleaner\com\ucsecuredelete.dll
Disinfection failed
C:\Program Files\Ultimate Cleaner\com\ucsecuredelete.dll
Deleted
C:\Program Files\Ultimate Cleaner\Uninstall.exe
Detected with: Application.Ultimate.BK
C:\Program Files\Ultimate Cleaner\Uninstall.exe
Disinfection failed
C:\Program Files\Ultimate Cleaner\Uninstall.exe
Deleted
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1008\A0099981.exe
Detected with: Adware.Navipromo.BZC
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1008\A0099981.exe
Disinfection failed
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1008\A0099981.exe
Deleted
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1011\A0100188.exe
Detected with: Adware.Navipromo.BZC
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1011\A0100188.exe
Disinfection failed
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1011\A0100188.exe
Deleted
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105338.dll
Detected with: Dialer.Egroup.AKY
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105338.dll
Disinfection failed
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105338.dll
Deleted
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105339.dll
Detected with: Dialer.Egroup.AKY
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105339.dll
Disinfection failed
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105339.dll
Deleted
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105340.exe
Detected with: Adware.SpywareSecure.B
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105340.exe
Deleted
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105341.dll
Detected with: Application.Ultimate.DLL
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105341.dll
Disinfection failed
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105341.dll
Deleted
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105342.exe
Detected with: Application.Ultimate.BK
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105342.exe
Disinfection failed
C:\System Volume Information\_restore{31FF372D-EF6F-4047-9259-55E0C1CB2FBF}\RP1050\A0105342.exe
Deleted
C:\WINDOWS\admgcx.dll
Detected with: Adware.NetAdware.EF
C:\WINDOWS\admgcx.dll
Deleted
C:\WINDOWS\dmdvpnslp.dll
Detected with: Adware.NetAdware.EF
C:\WINDOWS\dmdvpnslp.dll
Disinfection failed
C:\WINDOWS\dmdvpnslp.dll
Delete failed
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\USDR6V_0001_D18M3107NetInstaller.exe
Detected with: Application.Winfixer.AQ
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\USDR6V_0001_D18M3107NetInstaller.exe
Disinfection failed
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\USDR6V_0001_D18M3107NetInstaller.exe
Deleted
C:\WINDOWS\Downloaded Program Files\USDR6V_0001_D18M3107NetInstaller.exe
Detected with: Application.Winfixer.AQ
C:\WINDOWS\Downloaded Program Files\USDR6V_0001_D18M3107NetInstaller.exe
Disinfection failed
C:\WINDOWS\Downloaded Program Files\USDR6V_0001_D18M3107NetInstaller.exe
Deleted
C:\WINDOWS\RavMonE.exe
Infected with: Win32.Worm.RJump.F
C:\WINDOWS\RavMonE.exe
Deleted
C:\WINDOWS\wt\wtupdates\wtwebdriver\files\3.3.1.001\npwthost.dll
Detected with: Adware.Wildtangent.B
C:\WINDOWS\wt\wtupdates\wtwebdriver\files\3.3.1.001\npwthost.dll
Deleted
D:\doc.bis\install.exe=>(NSIS o)=>lzma_solid_nsis0005
Detected with: Adware.Toolbar.Softomate.E
D:\doc.bis\install.exe=>(NSIS o)=>lzma_solid_nsis0005
Deleted
D:\doc.bis\install.exe=>(NSIS o)
Update failed
D:\doc.bis\kazaa_lite_202_francais.exe=>(NSIS o)=>zlib_nsis0008
Detected with: Application.Topsearch.B
D:\doc.bis\kazaa_lite_202_francais.exe=>(NSIS o)=>zlib_nsis0008
Disinfection failed
D:\doc.bis\kazaa_lite_202_francais.exe=>(NSIS o)=>zlib_nsis0008
Deleted
D:\doc.bis\kazaa_lite_202_francais.exe=>(NSIS o)
Update failed
D:\doc.bis\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Infected with: Trojan.FatObfus.Gen
D:\doc.bis\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Disinfection failed
D:\doc.bis\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)=>(Instyler Module 7)
Deleted
D:\doc.bis\Ma musique\PlayerToolSetup0502.EXE=>wise0008=>(Instyler o)
Update failed
3 ieme rapport effectué hijackthis..........
apres plusieurs heures de scan.........quelle galere j'attends avec impatience la solution ........help me please
merci a tous ceux qui me sortiront de la...........
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:38:14, on 25/02/2008
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wdfmgr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\WINDOWS\SOINTGR.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\QuickTime\QTTask.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\progra~1\softwin\bitdef~1\bdmcon.exe
C:\Program Files\Softwin\BitDefender9\bdoesrv.exe
C:\progra~1\softwin\bitdef~1\bdnagent.exe
C:\progra~1\softwin\bitdef~1\bdswitch.exe
C:\Program Files\Softwin\BitDefender9\vsserv.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\Common Files\DataViz\DvzIncMsgr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\ntvdm.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\WINDOWS\System32\dwwin.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\System32\wbem\wmiprvse.exe
R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.the-huns-yellow-pages.com/sp.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://home.neuf.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarereferral.com/jump.php?wmid=6010&mid=MjI6Ojg5&lid=2
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul1.dll
R3 - URLSearchHook: (no name) - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - (no file)
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - (no file)
O2 - BHO: (no name) - {274c0420-ebe0-4f1d-b473-edd1aa9b85dd} - (no file)
O2 - BHO: XBTB00892 - {2CC514F5-5881-49c2-AD9E-6F7A89AB4F1B} - (no file)
O2 - BHO: SXG Advisor - {6FFDE480-14C1-43FC-BEC1-CA97A2541FFD} - C:\WINDOWS\dmdvpnslp.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul1.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul1.dll
O3 - Toolbar: (no name) - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - (no file)
O3 - Toolbar: emotigt - {54BECB1C-D4EA-47B2-9B56-C6768144FDD5} - C:\WINDOWS\emotigt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SO5 Integrator Pass Two] C:\WINDOWS\SOINTGR.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Tweak UI] RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [BDMCon] C:\progra~1\softwin\bitdef~1\bdmcon.exe
O4 - HKLM\..\Run: [BDOESRV] "C:\Program Files\Softwin\BitDefender9\bdoesrv.exe"
O4 - HKLM\..\Run: [BDNewsAgent] "C:\progra~1\softwin\bitdef~1\bdnagent.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] "C:\progra~1\softwin\bitdef~1\bdswitch.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [IdiomaX Office] C:\Program Files\IdiomaX\Office Translator 4.0\IdxOffice.exe
O4 - HKLM\..\Run: [IdiomaX Product Update] C:\Program Files\Fichiers communs\IdiomaX Shared\Cat 6.0\IdxLUpdate.exe /AUTOSTART
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [IncrediMail] C:\PROGRA~1\INCRED~1\bin\IncMail.exe /c
O4 - HKCU\..\Run: [MsnMsgr] ~"C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LDM] C:\Program Files\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Instant Access] rundll32.exe p2esocks_1052.dll,InstantAccess
O4 - HKLM\..\Policies\Explorer\Run: [isamonitor.exe] C:\Program Files\iVideoCodec\isamonitor.exe
O4 - HKLM\..\Policies\Explorer\Run: [pmsngr.exe] C:\Program Files\iVideoCodec\pmsngr.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Event Reminder.lnk = C:\pmw\PMREMIND.EXE
O4 - Startup: HotSync Manager.lnk = C:\Program Files\Palm\HOTSYNC.EXE
O4 - Global Startup: DataViz Inc Messenger.lnk = C:\Program Files\Common Files\DataViz\DvzIncMsgr.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - (no file)
O9 - Extra 'Tools' menuitem: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - (no file)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {041816FE-7869-4B5F-9BE4-FFF3B7368727} - http://barremagique.aliceadsl.fr/download/BarreMagique.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {74F6B963-B89B-44D4-AAD0-8EEDC4973314} - http://barremagique.tiscali.fr/download/TiscaliBarreMagique.cab
O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://signin3.valueactive.com/Register/Branding/olr3313/OCX/v1018/flashax.cab
O16 - DPF: {E49A9FCB-FAA9-4C1F-A1C1-54920DA2CCA4} - http://es6-scripts.dlv4.com/binaries/egauth4/egauth4_1052_FR_XP.cab
O21 - SSODL: bonspells - {11853d5f-f894-4cc7-bbc3-fc7a9dcfd896} - (no file)
O21 - SSODL: bdmanager - {8878EEE1-84BA-4E2F-90A9-1688CFC7D2B7} - C:\WINDOWS\bdmanager.dll
O21 - SSODL: admgcx - {1785CC01-1D00-47F5-A249-A83CBFB0699C} - C:\WINDOWS\admgcx.dll (file missing)
O23 - Service: ADSLAutoconnect - Unknown owner - C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender9\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
apres plusieurs heures de scan.........quelle galere j'attends avec impatience la solution ........help me please
merci a tous ceux qui me sortiront de la...........
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:38:14, on 25/02/2008
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wdfmgr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\WINDOWS\SOINTGR.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\QuickTime\QTTask.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\progra~1\softwin\bitdef~1\bdmcon.exe
C:\Program Files\Softwin\BitDefender9\bdoesrv.exe
C:\progra~1\softwin\bitdef~1\bdnagent.exe
C:\progra~1\softwin\bitdef~1\bdswitch.exe
C:\Program Files\Softwin\BitDefender9\vsserv.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\Common Files\DataViz\DvzIncMsgr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\ntvdm.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\WINDOWS\System32\dwwin.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\System32\wbem\wmiprvse.exe
R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.the-huns-yellow-pages.com/sp.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://home.neuf.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarereferral.com/jump.php?wmid=6010&mid=MjI6Ojg5&lid=2
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul1.dll
R3 - URLSearchHook: (no name) - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - (no file)
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - (no file)
O2 - BHO: (no name) - {274c0420-ebe0-4f1d-b473-edd1aa9b85dd} - (no file)
O2 - BHO: XBTB00892 - {2CC514F5-5881-49c2-AD9E-6F7A89AB4F1B} - (no file)
O2 - BHO: SXG Advisor - {6FFDE480-14C1-43FC-BEC1-CA97A2541FFD} - C:\WINDOWS\dmdvpnslp.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul1.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul1.dll
O3 - Toolbar: (no name) - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - (no file)
O3 - Toolbar: emotigt - {54BECB1C-D4EA-47B2-9B56-C6768144FDD5} - C:\WINDOWS\emotigt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SO5 Integrator Pass Two] C:\WINDOWS\SOINTGR.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Tweak UI] RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [BDMCon] C:\progra~1\softwin\bitdef~1\bdmcon.exe
O4 - HKLM\..\Run: [BDOESRV] "C:\Program Files\Softwin\BitDefender9\bdoesrv.exe"
O4 - HKLM\..\Run: [BDNewsAgent] "C:\progra~1\softwin\bitdef~1\bdnagent.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] "C:\progra~1\softwin\bitdef~1\bdswitch.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [IdiomaX Office] C:\Program Files\IdiomaX\Office Translator 4.0\IdxOffice.exe
O4 - HKLM\..\Run: [IdiomaX Product Update] C:\Program Files\Fichiers communs\IdiomaX Shared\Cat 6.0\IdxLUpdate.exe /AUTOSTART
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [IncrediMail] C:\PROGRA~1\INCRED~1\bin\IncMail.exe /c
O4 - HKCU\..\Run: [MsnMsgr] ~"C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LDM] C:\Program Files\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Instant Access] rundll32.exe p2esocks_1052.dll,InstantAccess
O4 - HKLM\..\Policies\Explorer\Run: [isamonitor.exe] C:\Program Files\iVideoCodec\isamonitor.exe
O4 - HKLM\..\Policies\Explorer\Run: [pmsngr.exe] C:\Program Files\iVideoCodec\pmsngr.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Event Reminder.lnk = C:\pmw\PMREMIND.EXE
O4 - Startup: HotSync Manager.lnk = C:\Program Files\Palm\HOTSYNC.EXE
O4 - Global Startup: DataViz Inc Messenger.lnk = C:\Program Files\Common Files\DataViz\DvzIncMsgr.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - (no file)
O9 - Extra 'Tools' menuitem: Traduction-online - {4F75DC45-5A92-4352-BEC4-4C32FB7DF2A8} - (no file)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {041816FE-7869-4B5F-9BE4-FFF3B7368727} - http://barremagique.aliceadsl.fr/download/BarreMagique.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {74F6B963-B89B-44D4-AAD0-8EEDC4973314} - http://barremagique.tiscali.fr/download/TiscaliBarreMagique.cab
O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://signin3.valueactive.com/Register/Branding/olr3313/OCX/v1018/flashax.cab
O16 - DPF: {E49A9FCB-FAA9-4C1F-A1C1-54920DA2CCA4} - http://es6-scripts.dlv4.com/binaries/egauth4/egauth4_1052_FR_XP.cab
O21 - SSODL: bonspells - {11853d5f-f894-4cc7-bbc3-fc7a9dcfd896} - (no file)
O21 - SSODL: bdmanager - {8878EEE1-84BA-4E2F-90A9-1688CFC7D2B7} - C:\WINDOWS\bdmanager.dll
O21 - SSODL: admgcx - {1785CC01-1D00-47F5-A249-A83CBFB0699C} - C:\WINDOWS\admgcx.dll (file missing)
O23 - Service: ADSLAutoconnect - Unknown owner - C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender9\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
