Vundo,generic,eicar help pire qu hier
Fermé
tedual
Messages postés
24
Date d'inscription
mardi 29 juillet 2008
Statut
Membre
Dernière intervention
30 avril 2009
-
30 juil. 2008 à 07:58
tedual Messages postés 24 Date d'inscription mardi 29 juillet 2008 Statut Membre Dernière intervention 30 avril 2009 - 30 juil. 2008 à 16:39
tedual Messages postés 24 Date d'inscription mardi 29 juillet 2008 Statut Membre Dernière intervention 30 avril 2009 - 30 juil. 2008 à 16:39
A voir également:
- Vundo,generic,eicar help pire qu hier
- Pire operateur internet - Guide
- Generic bluetooth adapter ✓ - Forum Matériel & Système
- Orange pire service client ✓ - Forum Vos droits sur internet
- Vu hier whatsapp ✓ - Forum Mail
- Avira launcher generic kaspersky - Forum Antivirus
4 réponses
flo74700
Messages postés
1845
Date d'inscription
samedi 9 décembre 2006
Statut
Membre
Dernière intervention
22 juin 2012
236
30 juil. 2008 à 08:07
30 juil. 2008 à 08:07
fait un scan antivirus en mode sans echec, ensuite effectue un spybot avec les mises à jours installer, puis un malwarebites avec les mises à jours installer, et termine par un smitfraud.
Essaye aussi de regarder dans ton msconfig, si les virus ne se charge pas au demarrage*
Essaye aussi de regarder dans ton msconfig, si les virus ne se charge pas au demarrage*
flo74700
Messages postés
1845
Date d'inscription
samedi 9 décembre 2006
Statut
Membre
Dernière intervention
22 juin 2012
236
30 juil. 2008 à 12:01
30 juil. 2008 à 12:01
tien voila malwebytes:
https://www.clubic.com/telecharger-fiche215092-malwarebytes-anti-malware.html
et smitfraudfix
http://siri.urz.free.fr/Fix/
https://www.clubic.com/telecharger-fiche215092-malwarebytes-anti-malware.html
et smitfraudfix
http://siri.urz.free.fr/Fix/
tedual
Messages postés
24
Date d'inscription
mardi 29 juillet 2008
Statut
Membre
Dernière intervention
30 avril 2009
30 juil. 2008 à 13:53
30 juil. 2008 à 13:53
SmitFraudFix v2.332
Rapport fait à 12:57:50,40, 30/07/2008
Executé à partir de C:\Documents and Settings\morgane gentric\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode sans echec
»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus
»»»»»»»»»»»»»»»»»»»»»»»» hosts
127.0.0.1 localhost
»»»»»»»»»»»»»»»»»»»»»»»» VACFix
VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix
S!Ri's WS2Fix: LSP not Found.
»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix
GenericRenosFix by S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés
»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» 404Fix
404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» DNS
HKLM\SYSTEM\CS2\Services\Tcpip\..\{954FE043-C6DB-4341-9FEB-7562EF29876A}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre
Nettoyage terminé.
»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Fin
je ne trouve pas le bloc note de malwarebytes si tu as une idée pour la recherche je suis preneur il est dans on bloc note sur merci
Rapport fait à 12:57:50,40, 30/07/2008
Executé à partir de C:\Documents and Settings\morgane gentric\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode sans echec
»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus
»»»»»»»»»»»»»»»»»»»»»»»» hosts
127.0.0.1 localhost
»»»»»»»»»»»»»»»»»»»»»»»» VACFix
VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix
S!Ri's WS2Fix: LSP not Found.
»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix
GenericRenosFix by S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés
»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» 404Fix
404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» DNS
HKLM\SYSTEM\CS2\Services\Tcpip\..\{954FE043-C6DB-4341-9FEB-7562EF29876A}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre
Nettoyage terminé.
»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Fin
je ne trouve pas le bloc note de malwarebytes si tu as une idée pour la recherche je suis preneur il est dans on bloc note sur merci
flo74700
Messages postés
1845
Date d'inscription
samedi 9 décembre 2006
Statut
Membre
Dernière intervention
22 juin 2012
236
30 juil. 2008 à 15:32
30 juil. 2008 à 15:32
je pense que dans l'application malwer tu dois avoir un truc afficher le log.
ton antimalware a trouver des chsoes?
ton antimalware a trouver des chsoes?
tedual
Messages postés
24
Date d'inscription
mardi 29 juillet 2008
Statut
Membre
Dernière intervention
30 avril 2009
30 juil. 2008 à 16:39
30 juil. 2008 à 16:39
Malwarebytes' Anti-Malware 1.23
Version de la base de données: 1008
Windows 5.1.2600 Service Pack 2
12:49:04 30/07/2008
mbam-log-7-30-2008 (12-49-04).txt
Type de recherche: Examen complet (C:\|D:\|E:\|F:\|G:\|I:\|)
Eléments examinés: 108643
Temps écoulé: 1 hour(s), 8 minute(s), 19 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
voila les autre rapport; SFR.Tool.Hardoff.A (Unclassified Treat) et Risk Tool.Reboot.f (Unclassified)
Lfile of Spyware Terminator v2.2.1.433 (db:2.007.029.001)
Scan Time: 30/07/2008 16:27:00 length: 167 s
Platform: WXP (5.1.0.2600)
User: Admin
Boot Mode: Normal
Scan type: Fast_Spyware_Scan
Scanned Objects: 31919 (Critical:2)
Filter: No System items, No Safe items, No Invalid items
Running Processes
InCDsrv.exe [Nero AG] : C:\Program Files\Ahead\InCD\InCDsrv.exe
oasrv.exe [Tall Emu] : C:\Program Files\Tall Emu\Online Armor\oasrv.exe
LSSrvc.exe [Hewlett-Packard Company] : C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
ULCDRSvr.exe [Ulead Systems, Inc.] : C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
xcommsvr.exe [Softwin] : C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
bdss.exe : C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
livesrv.exe [SOFTWIN S.R.L.] : C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
vsserv.exe [SOFTWIN S.R.L.] : C:\Program Files\Softwin\BitDefender10\vsserv.exe
CALMAIN.exe [Canon Inc.] : C:\Program Files\Canon\CAL\CALMAIN.exe
oaui.exe [Tall Emu] : C:\Program Files\Tall Emu\Online Armor\oaui.exe
msnmsgr.exe [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msnmsgr.exe
usnsvc.exe [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\usnsvc.exe
bdmcon.exe [SOFTWIN S.R.L.] : C:\Program Files\Softwin\BitDefender10\bdmcon.exe
WLLoginProxy.exe [Microsoft Corporation] : C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
Internet Settings
R - HKLM\Software\Microsoft\Internet Explorer\Main, SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60076
R - HKLM\Software\Microsoft\Internet Explorer\Main, CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60076
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
R - HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName =
BHO
02 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - [Google Inc.] : C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
StartUps
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, msnmsgr : [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msnmsgr.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, OnlineArmor GUI : [Tall Emu] : C:\Program Files\Tall Emu\Online Armor\oaui.exe
Shell Extensions
IntelliType Pro Zooming Property Page - {97FA8AA2-EE77-4FF2-9449-424D8924EF21} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLITYPE PRO\ITCPLZM.DLL
IntelliType Pro Scrolling Property Page - {111D8120-25EB-4E1C-A4DF-C9EE5FCA35CB} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLITYPE PRO\ITCPLWHL.DLL
IntelliType Pro Key Settings Property Page - {ED6E87C6-8A83-43aa-8208-8DBC8247F4D2} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLITYPE PRO\ITCPLKEY.DLL
IntelliType Pro Wireless Control Panel Property Page - {A2569D1F-4E06-43EC-9825-0088B471BE47} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLITYPE PRO\ITCPLWIR.DLL
Page de propriétés sans fil - {20082881-FC36-4E47-9A7A-644C95FF749F} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLIPOINT\IPCPLWIR.DLL
Page des propriétés de la roulette - {AF90F543-6A3A-4C1B-8B16-ECEC073E69BE} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLIPOINT\IPCPLWHL.DLL
Page des propriétés des activités - {653DCCC2-13DB-45B2-A389-427885776CFE} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLIPOINT\IPCPLACT.DLL
Page des propriétés des boutons - {124597D8-850A-41AE-849C-017A4FA99CA2} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLIPOINT\IPCPLBTN.DLL
Mes dossiers de partage - {FC9FB64A-1EB2-4CCF-AF5E-1A497A9B5C2D} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\fsshext.8.5.1302.1018.dll
Shell Extension for CDRW - {950FF917-7A57-46BC-8017-59D9BF474000} - [Nero AG] : C:\Program Files\Ahead\InCD\incdshx.dll
- {06A2568A-CED6-4187-BB20-400B8C02BE5A} - [Microsoft Corporation] : C:\Program Files\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe
Windows Live Photo Gallery Import Autoplay Shim - {00F33137-EE26-412F-8D71-F84E4C2C6625} - [Microsoft Corporation] : C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
Windows Live Photo Gallery Viewer Shim - {00F346CB-35A4-465B-8B8F-65A29DBAB1F6} - [Microsoft Corporation] : C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
Windows Live Photo Gallery Editor Shim - {00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} - [Microsoft Corporation] : C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
Windows Live Photo Gallery Viewer Autoplay Shim - {00F30F90-3E96-453B-AFCD-D71989ECC2C7} - [Microsoft Corporation] : C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} - : C:\Program Files\WinRAR\rarext.dll
Shell Extecute Hooks
OA Shell Helper - {{4F07DA45-8170-4859-9B5F-037EF2970034}} - [Tall Emu] : C:\Program Files\Tall Emu\Online Armor\oaevent.dll
Protocol Handler
CZipHandler Object - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - [Hewlett-Packard Company] : C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll
- {828030A1-22C1-4009-854F-8E305202313F} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
- {828030A1-22C1-4009-854F-8E305202313F} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
Services
23 - [Realtek Semiconductor Corp.] : C:\WINDOWS\system32\drivers\ALCXWDM.SYS
23 - : C:\Program Files\Softwin\BitDefender10\bdfdll.sys
23 - : C:\Program Files\Softwin\BitDefender10\bdfsdrv.sys
23 - : C:\Program Files\Softwin\BitDefender10\bdrsdrv.sys
23 - : C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
23 - [Canon Inc.] : C:\Program Files\Canon\CAL\CALMAIN.exe
23 - [VIA Technologies, Inc.] : C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys
23 - [Nero AG] : C:\WINDOWS\system32\DRIVERS\InCDPass.sys
23 - [Nero AG] : C:\Program Files\Ahead\InCD\InCDsrv.exe
23 - [InterVideo, Inc.] : C:\WINDOWS\system32\drivers\iviaspi.sys
23 - [Hewlett-Packard Company] : C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
23 - [SOFTWIN S.R.L.] : C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
23 - : C:\WINDOWS\system32\drivers\NDISRD.sys
23 - : C:\WINDOWS\system32\drivers\OADriver.sys
23 - : C:\WINDOWS\system32\drivers\OAmon.sys
23 - [Creative Technology Ltd.] : C:\WINDOWS\system32\DRIVERS\P1120Vid.sys
23 - : C:\WINDOWS\system32\Drivers\sptd.sys
23 - [Tall Emu] : C:\Program Files\Tall Emu\Online Armor\oasrv.exe
23 - [Ulead Systems, Inc.] : C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
23 - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\usnsvc.exe
23 - [Copyright (C) VIA/S3 Graphics Co, Ltd.] : C:\WINDOWS\system32\DRIVERS\vtmini.sys
23 - [VIA Technologies inc,.ltd] : C:\WINDOWS\system32\DRIVERS\viamraid.sys
23 - [SOFTWIN S.R.L.] : C:\Program Files\Softwin\BitDefender10\vsserv.exe
23 - [Softwin] : C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
Threat Files
<RiskTool.Reboot.f> : C:\Documents and Settings\morgane gentric\Bureau\SmitfraudFix\Reboot.exe
<SPR.Tool.Hardoff.A> : C:\Documents and Settings\morgane gentric\Bureau\SmitfraudFix\restart.exe
Advanced Files Report
%PROGRAMFILES%\Ahead\InCD\InCDsrv.exe [Nero AG] [Nero AG incdsrv] MD5=67AD1011F18AF0E3FAC38F2D7024FBC1 SIZE=869888
%PROGRAMFILES%\Ahead\InCD\incdshx.dll [Nero AG] [Nero AG InCD Shell Extension] MD5=885AF3F222D3DF4EC8918BF3C6655464 SIZE=103424
%PROGRAMFILES%\Tall Emu\Online Armor\oasrv.exe [Tall Emu] [Online Armor Security Suite] MD5=FFB880A39B047EEBBB2B5E3B1DA9FC33 SIZE=4625984
%SYSDIR%\hpzlnt10.dll [HP] [HP DeskJet] MD5=2030AF1F7504A82E31C892D14BE55D6F SIZE=135249
%COMMONFILES%\LightScribe\LSSrvc.exe [Hewlett-Packard Company] [LightScribe] MD5=6E5DAC168D1FF9843E84A59D51D31107 SIZE=61440
%COMMONFILES%\LightScribe\LSSProxy.dll [Hewlett-Packard Company] [LightScribe] MD5=F3918787F9D5F5FF2DA57CDEFB858EC5 SIZE=81920
%COMMONFILES%\LightScribe\LSLog.dll [Hewlett-Packard Company] [LightScribe] MD5=C1A3AF85DBFC67988FB71CE5E8F3B570 SIZE=32256
%SYSDIR%\P1120Sti.dll [Creative Technology Ltd.] MD5=D58EEE530ECFF0310F42C4349596FEA7 SIZE=45056
%COMMONFILES%\Ulead Systems\DVD\ULCDRSvr.exe [Ulead Systems, Inc.] [Ulead Systems ULCDRSvr] MD5=332D341D92B933600D41953B08360DFB SIZE=49152
%COMMONFILES%\Softwin\BitDefender Communicator\xcommsvr.exe [Softwin] [Softwin BitDefender Communicator Server] MD5=B31359D3CD699A484AF46477231C019C SIZE=86016
%COMMONFILES%\Softwin\BitDefender Scan Server\bdss.exe MD5=A20EB9A2772C8D2130FF10783E9B42EA SIZE=81920
%SYSDIR%\XCOMM.dll [Softwin] [Softwin BitDefender Communicator] MD5=E4BFBEE58C3F20F4A22A206DFD6E21CB SIZE=77824
%COMMONFILES%\Softwin\BitDefender Scan Server\bdcore.dll [SOFTWIN SRL] [bdcore.dll] MD5=78D05B6FDE7AFC66CB7F47B5A40AC907 SIZE=181760
%COMMONFILES%\Softwin\BitDefender Scan Server\bdsubmit.dll [SOFTWIN] [BitDefender Submission] MD5=3DE2E1B30203A2F3DB3E5D1C3B6354EB SIZE=188416
%COMMONFILES%\Softwin\BitDefender Scan Server\libfn.dll MD5=C022B72435CCD829DB83759B278C93CE SIZE=142848
%COMMONFILES%\Softwin\BitDefender Scan Server\avxdisk.dll MD5=686927D99E35411B0EED9E8E9B7134EA SIZE=45056
%COMMONFILES%\Softwin\BitDefender Update Service\livesrv.exe [SOFTWIN S.R.L.] [BitDefender 10] MD5=677C7E6A93CC89998713FA05E1E84362 SIZE=237568
%COMMONFILES%\Softwin\BitDefender Update Service\HTTPGETF.dll MD5=B1653072CD2F8FFD4D972A9925379541 SIZE=69632
%COMMONFILES%\Softwin\BitDefender Update Service\zlib.dll [zlib] MD5=4D60C419FB5BB06D30B6F6AD5607E480 SIZE=196608
%COMMONFILES%\Softwin\BitDefender Update Service\bdch.dll [SOFTWIN] [BitDefender Crash Handler] MD5=FABDDB481FECE68CA3CE504ABD9F6779 SIZE=45056
%COMMONFILES%\Softwin\BitDefender Update Service\bdsubmit.dll [SOFTWIN] [BitDefender Submission] MD5=8D72A62B037194548CD8DD283A3D31C8 SIZE=192512
%PROGRAMFILES%\Softwin\BitDefender10\vsserv.exe [SOFTWIN S.R.L.] [BitDefender 10] MD5=411A48D09F0FA6C51FAD1499AA918B42 SIZE=462848
%PROGRAMFILES%\Softwin\BitDefender10\bdfltlib.dll MD5=87467961380736A2F676C5B01B325CA6 SIZE=106496
%PROGRAMFILES%\Softwin\BitDefender10\zlib.dll [zlib] MD5=4D60C419FB5BB06D30B6F6AD5607E480 SIZE=196608
%PROGRAMFILES%\Softwin\BitDefender10\procinf.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=A4EB2AB47361D59282A893A158FB03E6 SIZE=81920
%PROGRAMFILES%\Softwin\BitDefender10\mimeinf.dll MD5=09F3215D2162E6B72C09D1C70FD77735 SIZE=49152
%PROGRAMFILES%\Softwin\BitDefender10\bdch.dll [SOFTWIN] [BitDefender Crash Handler] MD5=FABDDB481FECE68CA3CE504ABD9F6779 SIZE=45056
%PROGRAMFILES%\Softwin\BitDefender10\bdsubmit.dll [SOFTWIN] [BitDefender Submission] MD5=8D72A62B037194548CD8DD283A3D31C8 SIZE=192512
%PROGRAMFILES%\Softwin\BitDefender10\bdfdll_x86.dll MD5=E9E1F4E3C5DB7AE94ACC1B1633CC71DB SIZE=69632
%PROGRAMFILES%\Softwin\BitDefender10\bdutils.dll [BDUtils Dynamic Link Library] MD5=F6CFD8551C7C96B4C9B093CB274D65F2 SIZE=61440
%PROGRAMFILES%\Softwin\BitDefender10\WSLib.dll MD5=EC78F8E299F79832EC2D0CF006211554 SIZE=94208
%PROGRAMFILES%\Softwin\BitDefender10\quarcore.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=071283F5FE6B5E6F3D9BC0F4B0C1121C SIZE=118784
%PROGRAMFILES%\Softwin\BitDefender10\NTTools.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=2430EB90A61095474DF0691C2B9DEB83 SIZE=33792
%PROGRAMFILES%\Softwin\BitDefender10\privscan.dll [SOFTWIN S.R.L.] [Bitdefender 10] MD5=071D376784AFD5CB74210CDB410FCC50 SIZE=77824
%PROGRAMFILES%\Softwin\BitDefender10\agentreg.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=E8AEF78784BEB54FC14DA8B864E3266F SIZE=81920
%PROGRAMFILES%\Softwin\BitDefender10\getfile.dll MD5=9804CB8F120BAA3A00419EB805A802D9 SIZE=5632
%PROGRAMFILES%\Softwin\BitDefender10\BDGUICtl.dll [Softwin] [BDGUI Dynamic Link Library] MD5=28D8A4F8C7190F105A74BF1D9CCD1A03 SIZE=438272
%PROGRAMFILES%\Softwin\BitDefender10\txmlx.dll [Softwin] [txmlx Dynamic Link Library] MD5=D98D019ABF466BE7F80B0FE403D20141 SIZE=110592
%PROGRAMFILES%\Softwin\BitDefender10\wsid.dll [SOFTWIN S.R.L.] [BitDefender 11] MD5=5B4AF216A7AB90B4DF492F19B373125B SIZE=65536
%PROGRAMFILES%\Softwin\BitDefender10\as2core.dll [SOFTWIN S.R.L.] [BitDefender] MD5=EBD90E66EC3DCC23B31C45F5B45EE639 SIZE=184320
%PROGRAMFILES%\Softwin\BitDefender10\astracer.dll MD5=4117C85AC9997CD4E80E086D9CE19F94 SIZE=41472
%PROGRAMFILES%\Softwin\BitDefender10\asemlbr.mdl [SOFTWIN S.R.L.] [BitDefender] MD5=8BF3755B3AF5BC063BD3F933D58FA76D SIZE=593920
%PROGRAMFILES%\Softwin\BitDefender10\asemldsp.mdl [SOFTWIN S.R.L.] [BitDefender] MD5=CA165690B6E7C6C3270586330521A10B SIZE=143360
%PROGRAMFILES%\Softwin\BitDefender10\asemlf.mdl [SOFTWIN S.R.L.] [BitDefender] MD5=E50A36B96670B83A57C4E65C70A535DF SIZE=311296
%PROGRAMFILES%\Softwin\BitDefender10\asemlimg.mdl [SOFTWIN S.R.L.] [BitDefender] MD5=4DEE96C532B1BCD538AD2311722461B6 SIZE=217088
%PROGRAMFILES%\Softwin\BitDefender10\asemlnn2.mdl [SOFTWIN S.R.L.] [BitDefender] MD5=461D8917B0A43C36207FA01C56365FAE SIZE=548864
%PROGRAMFILES%\Softwin\BitDefender10\asemlrtr.mdl [SOFTWIN S.R.L.] [BitDefender] MD5=63A599BC8EF97C5A5479DE548EF00521 SIZE=151552
%PROGRAMFILES%\Softwin\BitDefender10\asemlsgn.mdl [SOFTWIN S.R.L.] [BitDefender] MD5=2137E693D20DA1D38E8235E5E6513DCB SIZE=458752
%PROGRAMFILES%\Softwin\BitDefender10\iconv.dll [Free Software Foundation] [libiconv: character set conversion library] MD5=0EFDEADBB051451B3AD664D1434FD847 SIZE=888832
%PROGRAMFILES%\Softwin\BitDefender10\asregex.dll MD5=D1792ADC7B7A36CDB06C1025C269C088 SIZE=106496
%PROGRAMFILES%\Softwin\BitDefender10\mimepack.dll MD5=4D86F505F874004248082E1F46903F71 SIZE=47616
%PROGRAMFILES%\Softwin\BitDefender10\sch_serv.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=0C98C49C451A0D1DB15B46E93636371C SIZE=98304
%PROGRAMFILES%\Softwin\BitDefender10\bdardrv.dll [SOFTWIN S.R.L] [BitDefender Scan Drivers Loader] MD5=571C74B649BAAFBBA2C1F4C3CC4B7B52 SIZE=61440
%PROGRAMFILES%\Softwin\BitDefender10\PROFOS.dll MD5=06C5BBC60603EB1BB27B3960A613FB11 SIZE=4608
%PROGRAMFILES%\Softwin\BitDefender10\trufos.dll MD5=C4014D65BCCEAECF099B6EE993CE8609 SIZE=8704
%PROGRAMFILES%\Softwin\BitDefender10\libmpack.dll MD5=54BCA967D9B4697E2D9C8B8C465DFABE SIZE=98304
%SYSDIR%\XRegLib.dll MD5=4E32603A149B607BF37A2CDF6A1B0EC9 SIZE=913408
%PROGRAMFILES%\Softwin\BitDefender10\htmlpack.dll [SOFTWIN S.R.L.] [Bitdefender 10] MD5=4E2FDAC6C7C32302BF8C20F51945B31B SIZE=29184
%PROGRAMFILES%\Softwin\BitDefender10\bdpredir.dll [Softwin SRL] [BitDefender 10] MD5=AC7B8918EA42F6E1D00BAE7E556BA023 SIZE=19968
%PROGRAMFILES%\Softwin\BitDefender10\bdpop3p.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=4A20882662CB210141EC592DE630A69A SIZE=77824
%PROGRAMFILES%\Softwin\BitDefender10\bdsmtpp.dll MD5=8BF578F31D33A479B918EC31C2874312 SIZE=23552
%PROGRAMFILES%\Softwin\BitDefender10\httproxy.dll [SOFTWIN SRL] [HTTP Dynamic Link Library] MD5=D7DBFD3268365310BFD0B057017229D4 SIZE=212992
%PROGRAMFILES%\Tall Emu\Online Armor\OAWatch.dll [Tall Emu] [Online Armor Security Suite] MD5=2B20AADCCB44A8697D29D6BF5A45C45D SIZE=743424
%COMMONFILES%\Ahead\Lib\AdvrCntr.dll [Ahead Software AG] [AdvrCntr Module] MD5=40C6F95A678920D660C3856716F3867D SIZE=1937488
%SYSDIR%\LameACM.acm http://www.mp3dev.org/ [Lame MP3 codec] MD5=AA079EFBDAB436CAE20445FE6FB67DA4 SIZE=393216
%PROGRAMFILES%\Malwarebytes' Anti-Malware\mbamext.dll [Malwarebytes Corporation] [Malwarebytes' Anti-Malware] MD5=B3D6BE8F68F4AAF9065B3A77E236F6DD SIZE=73336
%PROGRAMFILES%\Softwin\BitDefender10\bdshelxt.dll [BDShellExt Module] MD5=F0DB5B73F531F02A7F6873AB8F8A3794 SIZE=58368
%PROGRAMFILES%\WinRAR\rarext.dll MD5=023707D932BA31314210E6844D33D500 SIZE=129024
%PROGRAMFILES%\Tall Emu\Online Armor\oaevent.dll [Tall Emu] [Online Armor Security Suite] MD5=C46B856B241AA8503F07860E49818F5A SIZE=633344
%PROGRAMFILES%\Canon\CAL\CALMAIN.exe [Canon Inc.] MD5=5753532C476B83119D85AA43B1B10AB3 SIZE=96341
%PROGRAMFILES%\Windows Live\Messenger\MSIMG32.dll [Patchou] [Messenger Plus! Live] MD5=74F9E855A6A634C99320850758E795C0 SIZE=59728
%PROGRAMFILES%\Messenger Plus! Live\MsgPlusLive.dll [Patchou] [Messenger Plus! Live] MD5=6A148850B1B0469C2A68B5CFE2AA5C8B SIZE=3335504
%PROGRAMFILES%\Messenger Plus! Live\Detoured.dll MD5=6256684495C499B22DCDBA266E4F2494 SIZE=4096
%PROGRAMFILES%\Messenger Plus! Live\MsgPlusLiveRes.dll [Patchou] [Messenger Plus! Live] MD5=50D3B341178EF2BA876507AB43FFD2C1 SIZE=1818960
%PROGRAMFILES%\Messenger Plus! Live\MPSkins.dll [Patchou] [Messenger Plus! Live] MD5=AE402088F6AA1E22299C68EDBD3AE0ED SIZE=8528
%SYSDIR%\Macromed\Flash\Flash9e.ocx [Adobe Systems, Inc.] [Shockwave Flash] MD5=D3C50535C26190FEAD7785A03499C0AC SIZE=2987392
%PROGRAMFILES%\Windows Live\Messenger\usnsvc.exe [Microsoft Corporation] [Messenger] MD5=9D19B042A4FD5C02195071EA2FE0C821 SIZE=98328
%PROGRAMFILES%\Softwin\BitDefender10\bdmcon.exe [SOFTWIN S.R.L.] [BitDefender 10] MD5=0595CCCF2E5BABFC6D5052CFEFFA96F6 SIZE=290816
%PROGRAMFILES%\Softwin\BitDefender10\TxTools.dll [SOFTWIN S.R.L] [BitDefender 8] MD5=791D9863078518147B270D23E45DA93F SIZE=40960
%PROGRAMFILES%\Softwin\BitDefender10\NAG.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=1C98761D5B20703EF3A09735224BDF63 SIZE=49152
%PROGRAMFILES%\Softwin\BitDefender10\popup.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=E59145FB0718653049389BE7DCAACBA1 SIZE=65536
%PROGRAMFILES%\Softwin\BitDefender10\bdusers.dll [TODO: <Company name>] [TODO: <Product name>] MD5=634F3557C054B95DBBB77B0C6D8210CB SIZE=13312
%PROGRAMFILES%\Softwin\BitDefender10\main.dll [SOFTWIN S.R.L.] [Main Dynamic Link Library] MD5=81A21007B5DC1A8F5FFB1C010AC70683 SIZE=561152
%PROGRAMFILES%\Softwin\BitDefender10\antivirus.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=2C1912E2322DF21DF5A3C37FD093098C SIZE=45056
%PROGRAMFILES%\Softwin\BitDefender10\firewall.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=C52FB1C34997A733FE7A649A8E8C6808 SIZE=180224
%PROGRAMFILES%\Softwin\BitDefender10\Wizards.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=8F3D0324058D3BE59A8FC393BB45219F SIZE=159744
%PROGRAMFILES%\Softwin\BitDefender10\dbokf.dll [SOFTWIN] [BitDefender] MD5=900D52B0A565BC9A6CDBBD2C8965DF8A SIZE=40960
%PROGRAMFILES%\Softwin\BitDefender10\antispam.dll [SOFTWIN S.R.L] [BitDefender 10] MD5=9F2608DC6717BF7B0A822829F40E0D3E SIZE=118784
%PROGRAMFILES%\Softwin\BitDefender10\antispy.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=6B6D91041AEA66012A80764798F35519 SIZE=57344
%PROGRAMFILES%\Softwin\BitDefender10\live.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=B6D606BFFCC7D6EB0B6B66E437B3FBB9 SIZE=167936
%PROGRAMFILES%\Softwin\BitDefender10\vshield.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=28B950E1908908D5B2D36FE7D316BBB0 SIZE=315392
%PROGRAMFILES%\Softwin\BitDefender10\vscan.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=FDEA48DC0FD400FF4A0D990E4A86C50A SIZE=372736
%PROGRAMFILES%\Softwin\BitDefender10\quar.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=8D0DFCDC94A5A74FBF437684DA8F2345 SIZE=286720
%PROGRAMFILES%\Softwin\BitDefender10\bwlist.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=5BDC428728BEFF97380A641235261A02 SIZE=180224
%PROGRAMFILES%\Softwin\BitDefender10\ashield.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=2E389E667BC9BC332BE078D5ED2BC9C1 SIZE=172032
%PROGRAMFILES%\Softwin\BitDefender10\privintf.dll [SOFTWIN S.R.L.] [Bitdefender 10] MD5=A2DE3C6449996B44661F39D57620A881 SIZE=110592
%PROGRAMFILES%\Softwin\BitDefender10\sysinfo.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=0998824DAF7CDAE9F0C1125798CB6125 SIZE=303104
%PROGRAMFILES%\Softwin\BitDefender10\BDElev.DLL [SOFTWIN S.R.L.] [BitDefender 10] MD5=EA4A7DD858D2C7A884F07B8E5C570C88 SIZE=96336
%COMMONFILES%\Microsoft Shared\Windows Live\WLLoginProxy.exe [Microsoft Corporation] [Microsoft® Windows Live Login Helper] MD5=7FA0AA2F3DABA5BEB2C4AC1EEC054EFA SIZE=118336
deskpan.dll
%PROGRAMFILES%\MICROSOFT INTELLITYPE PRO\ITCPLZM.DLL [Microsoft Corporation] [Microsoft IntelliType Pro] MD5=9BAA63DABB71CE38C91B4855CC2E6B77 SIZE=204800
%PROGRAMFILES%\MICROSOFT INTELLITYPE PRO\ITCPLWHL.DLL [Microsoft Corporation] [Microsoft IntelliType Pro] MD5=2407FBDB9CB080E8B05928C7FB935C09 SIZE=229376
%PROGRAMFILES%\MICROSOFT INTELLITYPE PRO\ITCPLKEY.DLL [Microsoft Corporation] [Microsoft IntelliType Pro] MD5=F7BE7817102BE20FF88E3346EBDD9158 SIZE=352256
%PROGRAMFILES%\MICROSOFT INTELLITYPE PRO\ITCPLWIR.DLL [Microsoft Corporation] [Microsoft IntelliType Pro] MD5=D8C2B64A3E2867B40BEF26218A06E6F7 SIZE=200704
%PROGRAMFILES%\MICROSOFT INTELLIPOINT\IPCPLWIR.DLL [Microsoft Corporation] [Microsoft IntelliPoint] MD5=F9193B5DD2235FFC6A326D866F86FB70 SIZE=335872
%PROGRAMFILES%\MICROSOFT INTELLIPOINT\IPCPLWHL.DLL [Microsoft Corporation] [Microsoft IntelliPoint] MD5=7B2061F41D0A9AEA272F276D585D58D5 SIZE=229376
%PROGRAMFILES%\MICROSOFT INTELLIPOINT\IPCPLACT.DLL [Microsoft Corporation] [Microsoft IntelliPoint] MD5=D1BE3E13EDC5594148586669686170F4 SIZE=176128
%PROGRAMFILES%\MICROSOFT INTELLIPOINT\IPCPLBTN.DLL [Microsoft Corporation] [Microsoft IntelliPoint] MD5=9457A8B86B3027CE486A02EDD4A0CB1C SIZE=348160
%PROGRAMFILES%\Windows Live\Messenger\fsshext.8.5.1302.1018.dll [Microsoft Corporation] [Messenger] MD5=8BDE1F61DFBAAE7A2916170E8B75FE0F SIZE=329240
%PROGRAMFILES%\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe [Microsoft Corporation] [Windows Live Photo Gallery] MD5=86C67242AC4ADA2C20D0748157E3ED8C SIZE=227456
%PROGRAMFILES%\Windows Live\Photo Gallery\PhotoViewerShim.dll [Microsoft Corporation] [Windows Live Photo Gallery] MD5=024F4D95154039B2292F4B856A52AB7D SIZE=46112
%SYSDIR%\rundll32.exe "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoViewer.dll",PhotoViewerComServer {2BE99FD4-A181-4996-BFA9-58C5FFD11F6C}
%SYSDIR%\rundll32.exe "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoViewer.dll",PhotoViewerComServer {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C}
%SYSDIR%\rundll32.exe "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoViewer.dll",PhotoViewerComServer {00F374B7-B390-4884-B372-2FC349F2172B}
%SYSDIR%\drivers\ALCXWDM.SYS [Realtek Semiconductor Corp.] [Windows (R) WDM driver for Realtek AC'97 Audio(HRTF data Copyright 1994 by MIT Media Lab)] MD5=706AA8374B4FC02D8A42493F16D5C3A4 SIZE=3960000
%SYSDIR%\svchost.exe -k LocalService
%SYSDIR%\svchost.exe -k netsvcs
%PROGRAMFILES%\Softwin\BitDefender10\bdfdll.sys MD5=ED2179E5CD86EABFDC227601C3094C64 SIZE=7808
%PROGRAMFILES%\Softwin\BitDefender10\bdfsdrv.sys MD5=09144A34A6BC8C1228DB81995BACC0F8 SIZE=14145
%PROGRAMFILES%\Softwin\BitDefender10\bdrsdrv.sys MD5=6F85116C3A51C2C07EFBE957B69F1199 SIZE=10768
%SYSDIR%\svchost -k DcomLaunch
%SYSDIR%\svchost.exe -k NetworkService
%SYSDIR%\DRIVERS\fetnd5bv.sys [VIA Technologies, Inc.] [VIA Rhine Family Fast Ethernet Adapter] MD5=AF8AF100F0DD397A34BB273BC64AEF1A SIZE=42496
%SYSDIR%\svchost.exe -k HTTPFilter
%SYSDIR%\DRIVERS\InCDPass.sys [Nero AG] [InCD] MD5=CDC98D9FF11DC8A88D99370F0786005E SIZE=29696
%SYSDIR%\drivers\iviaspi.sys [InterVideo, Inc.] [InterVideo ASPI Shell] MD5=94A8C9436C36CD9657CFED0043066B9C SIZE=10368
%SYSDIR%\drivers\NDISRD.sys SIZE=18944
%SYSDIR%\drivers\OADriver.sys SIZE=68608
%SYSDIR%\drivers\OAmon.sys SIZE=25600
%SYSDIR%\DRIVERS\P1120Vid.sys [Creative Technology Ltd.] MD5=DB78FAED7D72774DF78B1A60F1618798 SIZE=1252474
%SYSDIR%\svchost -k rpcss
%SYSDIR%\Drivers\sptd.sys SIZE=716272
%SYSDIR%\svchost.exe -k imgsvc
%SYSDIR%\DRIVERS\vtmini.sys [Copyright (C) VIA/S3 Graphics Co, Ltd.] [UniChrome(Pro) IGP Driver] MD5=3A1CFC248C5CD9170370671BA4075562 SIZE=234368
%SYSDIR%\DRIVERS\viamraid.sys [VIA Technologies inc,.ltd] [VIA RAID driver] MD5=F199939205DCCC7836AE5AB8B5DD5E83 SIZE=74112
%PROGRAMFILES%\HP\hpcoretech\comp\hpuiprot.dll [Hewlett-Packard Company] [hp coretech (COmponent REuse TECHnology)] MD5=7863F5A6DB70289FF9434CD484B3274C SIZE=81920
%PROGRAMFILES%\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll [Microsoft Corporation] [Messenger] MD5=56319E6B4D190A2DEB4463A9CE4D4F74 SIZE=66072
End of Report
Suppression:
Suppression:
Préparation…
Création d'un point de restauration
Supprimer Affiliate tracking cookie
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\morgane gentric\cookies\morgane gentric@ads.pointroll[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\morgane gentric\cookies\morgane gentric@serving-sys[1].txt
Supprimer SPR.Tool.Hardoff.A
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\morgane gentric\Bureau\SmitfraudFix\restart.exe
Supprimer RiskTool.Reboot.f
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\morgane gentric\Bureau\SmitfraudFix\Reboot.exe
Fermeture du point de restauration système
Analyse(s) terminée(s)
ogLogfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:38:22, on 30/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Tall Emu\Online Armor\oasrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\netdde.exe
C:\WINDOWS\system32\clipsrv.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\Tall Emu\Online Armor\oaui.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\morgane gentric\Bureau\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60076
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60076
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [OnlineArmor GUI] "C:\Program Files\Tall Emu\Online Armor\oaui.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} (DjVuCtl Class) - http://downloadcenter.samsung.com/content/common/cab/DjVuControlLite_EN.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Google Desktop Manager 5.7.801.1629 (GoogleDesktopManager-010108-205858) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - D:\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Online Armor (SvcOnlineArmor) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\oasrv.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - Unknown owner - C:\WINDOWS\System32\TuneUpDefragService.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
Version de la base de données: 1008
Windows 5.1.2600 Service Pack 2
12:49:04 30/07/2008
mbam-log-7-30-2008 (12-49-04).txt
Type de recherche: Examen complet (C:\|D:\|E:\|F:\|G:\|I:\|)
Eléments examinés: 108643
Temps écoulé: 1 hour(s), 8 minute(s), 19 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
voila les autre rapport; SFR.Tool.Hardoff.A (Unclassified Treat) et Risk Tool.Reboot.f (Unclassified)
Lfile of Spyware Terminator v2.2.1.433 (db:2.007.029.001)
Scan Time: 30/07/2008 16:27:00 length: 167 s
Platform: WXP (5.1.0.2600)
User: Admin
Boot Mode: Normal
Scan type: Fast_Spyware_Scan
Scanned Objects: 31919 (Critical:2)
Filter: No System items, No Safe items, No Invalid items
Running Processes
InCDsrv.exe [Nero AG] : C:\Program Files\Ahead\InCD\InCDsrv.exe
oasrv.exe [Tall Emu] : C:\Program Files\Tall Emu\Online Armor\oasrv.exe
LSSrvc.exe [Hewlett-Packard Company] : C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
ULCDRSvr.exe [Ulead Systems, Inc.] : C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
xcommsvr.exe [Softwin] : C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
bdss.exe : C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
livesrv.exe [SOFTWIN S.R.L.] : C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
vsserv.exe [SOFTWIN S.R.L.] : C:\Program Files\Softwin\BitDefender10\vsserv.exe
CALMAIN.exe [Canon Inc.] : C:\Program Files\Canon\CAL\CALMAIN.exe
oaui.exe [Tall Emu] : C:\Program Files\Tall Emu\Online Armor\oaui.exe
msnmsgr.exe [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msnmsgr.exe
usnsvc.exe [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\usnsvc.exe
bdmcon.exe [SOFTWIN S.R.L.] : C:\Program Files\Softwin\BitDefender10\bdmcon.exe
WLLoginProxy.exe [Microsoft Corporation] : C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
Internet Settings
R - HKLM\Software\Microsoft\Internet Explorer\Main, SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60076
R - HKLM\Software\Microsoft\Internet Explorer\Main, CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60076
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
R - HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName =
BHO
02 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - [Google Inc.] : C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
StartUps
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, msnmsgr : [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msnmsgr.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, OnlineArmor GUI : [Tall Emu] : C:\Program Files\Tall Emu\Online Armor\oaui.exe
Shell Extensions
IntelliType Pro Zooming Property Page - {97FA8AA2-EE77-4FF2-9449-424D8924EF21} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLITYPE PRO\ITCPLZM.DLL
IntelliType Pro Scrolling Property Page - {111D8120-25EB-4E1C-A4DF-C9EE5FCA35CB} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLITYPE PRO\ITCPLWHL.DLL
IntelliType Pro Key Settings Property Page - {ED6E87C6-8A83-43aa-8208-8DBC8247F4D2} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLITYPE PRO\ITCPLKEY.DLL
IntelliType Pro Wireless Control Panel Property Page - {A2569D1F-4E06-43EC-9825-0088B471BE47} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLITYPE PRO\ITCPLWIR.DLL
Page de propriétés sans fil - {20082881-FC36-4E47-9A7A-644C95FF749F} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLIPOINT\IPCPLWIR.DLL
Page des propriétés de la roulette - {AF90F543-6A3A-4C1B-8B16-ECEC073E69BE} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLIPOINT\IPCPLWHL.DLL
Page des propriétés des activités - {653DCCC2-13DB-45B2-A389-427885776CFE} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLIPOINT\IPCPLACT.DLL
Page des propriétés des boutons - {124597D8-850A-41AE-849C-017A4FA99CA2} - [Microsoft Corporation] : C:\Program Files\MICROSOFT INTELLIPOINT\IPCPLBTN.DLL
Mes dossiers de partage - {FC9FB64A-1EB2-4CCF-AF5E-1A497A9B5C2D} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\fsshext.8.5.1302.1018.dll
Shell Extension for CDRW - {950FF917-7A57-46BC-8017-59D9BF474000} - [Nero AG] : C:\Program Files\Ahead\InCD\incdshx.dll
- {06A2568A-CED6-4187-BB20-400B8C02BE5A} - [Microsoft Corporation] : C:\Program Files\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe
Windows Live Photo Gallery Import Autoplay Shim - {00F33137-EE26-412F-8D71-F84E4C2C6625} - [Microsoft Corporation] : C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
Windows Live Photo Gallery Viewer Shim - {00F346CB-35A4-465B-8B8F-65A29DBAB1F6} - [Microsoft Corporation] : C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
Windows Live Photo Gallery Editor Shim - {00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} - [Microsoft Corporation] : C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
Windows Live Photo Gallery Viewer Autoplay Shim - {00F30F90-3E96-453B-AFCD-D71989ECC2C7} - [Microsoft Corporation] : C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} - : C:\Program Files\WinRAR\rarext.dll
Shell Extecute Hooks
OA Shell Helper - {{4F07DA45-8170-4859-9B5F-037EF2970034}} - [Tall Emu] : C:\Program Files\Tall Emu\Online Armor\oaevent.dll
Protocol Handler
CZipHandler Object - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - [Hewlett-Packard Company] : C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll
- {828030A1-22C1-4009-854F-8E305202313F} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
- {828030A1-22C1-4009-854F-8E305202313F} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
Services
23 - [Realtek Semiconductor Corp.] : C:\WINDOWS\system32\drivers\ALCXWDM.SYS
23 - : C:\Program Files\Softwin\BitDefender10\bdfdll.sys
23 - : C:\Program Files\Softwin\BitDefender10\bdfsdrv.sys
23 - : C:\Program Files\Softwin\BitDefender10\bdrsdrv.sys
23 - : C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
23 - [Canon Inc.] : C:\Program Files\Canon\CAL\CALMAIN.exe
23 - [VIA Technologies, Inc.] : C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys
23 - [Nero AG] : C:\WINDOWS\system32\DRIVERS\InCDPass.sys
23 - [Nero AG] : C:\Program Files\Ahead\InCD\InCDsrv.exe
23 - [InterVideo, Inc.] : C:\WINDOWS\system32\drivers\iviaspi.sys
23 - [Hewlett-Packard Company] : C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
23 - [SOFTWIN S.R.L.] : C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
23 - : C:\WINDOWS\system32\drivers\NDISRD.sys
23 - : C:\WINDOWS\system32\drivers\OADriver.sys
23 - : C:\WINDOWS\system32\drivers\OAmon.sys
23 - [Creative Technology Ltd.] : C:\WINDOWS\system32\DRIVERS\P1120Vid.sys
23 - : C:\WINDOWS\system32\Drivers\sptd.sys
23 - [Tall Emu] : C:\Program Files\Tall Emu\Online Armor\oasrv.exe
23 - [Ulead Systems, Inc.] : C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
23 - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\usnsvc.exe
23 - [Copyright (C) VIA/S3 Graphics Co, Ltd.] : C:\WINDOWS\system32\DRIVERS\vtmini.sys
23 - [VIA Technologies inc,.ltd] : C:\WINDOWS\system32\DRIVERS\viamraid.sys
23 - [SOFTWIN S.R.L.] : C:\Program Files\Softwin\BitDefender10\vsserv.exe
23 - [Softwin] : C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
Threat Files
<RiskTool.Reboot.f> : C:\Documents and Settings\morgane gentric\Bureau\SmitfraudFix\Reboot.exe
<SPR.Tool.Hardoff.A> : C:\Documents and Settings\morgane gentric\Bureau\SmitfraudFix\restart.exe
Advanced Files Report
%PROGRAMFILES%\Ahead\InCD\InCDsrv.exe [Nero AG] [Nero AG incdsrv] MD5=67AD1011F18AF0E3FAC38F2D7024FBC1 SIZE=869888
%PROGRAMFILES%\Ahead\InCD\incdshx.dll [Nero AG] [Nero AG InCD Shell Extension] MD5=885AF3F222D3DF4EC8918BF3C6655464 SIZE=103424
%PROGRAMFILES%\Tall Emu\Online Armor\oasrv.exe [Tall Emu] [Online Armor Security Suite] MD5=FFB880A39B047EEBBB2B5E3B1DA9FC33 SIZE=4625984
%SYSDIR%\hpzlnt10.dll [HP] [HP DeskJet] MD5=2030AF1F7504A82E31C892D14BE55D6F SIZE=135249
%COMMONFILES%\LightScribe\LSSrvc.exe [Hewlett-Packard Company] [LightScribe] MD5=6E5DAC168D1FF9843E84A59D51D31107 SIZE=61440
%COMMONFILES%\LightScribe\LSSProxy.dll [Hewlett-Packard Company] [LightScribe] MD5=F3918787F9D5F5FF2DA57CDEFB858EC5 SIZE=81920
%COMMONFILES%\LightScribe\LSLog.dll [Hewlett-Packard Company] [LightScribe] MD5=C1A3AF85DBFC67988FB71CE5E8F3B570 SIZE=32256
%SYSDIR%\P1120Sti.dll [Creative Technology Ltd.] MD5=D58EEE530ECFF0310F42C4349596FEA7 SIZE=45056
%COMMONFILES%\Ulead Systems\DVD\ULCDRSvr.exe [Ulead Systems, Inc.] [Ulead Systems ULCDRSvr] MD5=332D341D92B933600D41953B08360DFB SIZE=49152
%COMMONFILES%\Softwin\BitDefender Communicator\xcommsvr.exe [Softwin] [Softwin BitDefender Communicator Server] MD5=B31359D3CD699A484AF46477231C019C SIZE=86016
%COMMONFILES%\Softwin\BitDefender Scan Server\bdss.exe MD5=A20EB9A2772C8D2130FF10783E9B42EA SIZE=81920
%SYSDIR%\XCOMM.dll [Softwin] [Softwin BitDefender Communicator] MD5=E4BFBEE58C3F20F4A22A206DFD6E21CB SIZE=77824
%COMMONFILES%\Softwin\BitDefender Scan Server\bdcore.dll [SOFTWIN SRL] [bdcore.dll] MD5=78D05B6FDE7AFC66CB7F47B5A40AC907 SIZE=181760
%COMMONFILES%\Softwin\BitDefender Scan Server\bdsubmit.dll [SOFTWIN] [BitDefender Submission] MD5=3DE2E1B30203A2F3DB3E5D1C3B6354EB SIZE=188416
%COMMONFILES%\Softwin\BitDefender Scan Server\libfn.dll MD5=C022B72435CCD829DB83759B278C93CE SIZE=142848
%COMMONFILES%\Softwin\BitDefender Scan Server\avxdisk.dll MD5=686927D99E35411B0EED9E8E9B7134EA SIZE=45056
%COMMONFILES%\Softwin\BitDefender Update Service\livesrv.exe [SOFTWIN S.R.L.] [BitDefender 10] MD5=677C7E6A93CC89998713FA05E1E84362 SIZE=237568
%COMMONFILES%\Softwin\BitDefender Update Service\HTTPGETF.dll MD5=B1653072CD2F8FFD4D972A9925379541 SIZE=69632
%COMMONFILES%\Softwin\BitDefender Update Service\zlib.dll [zlib] MD5=4D60C419FB5BB06D30B6F6AD5607E480 SIZE=196608
%COMMONFILES%\Softwin\BitDefender Update Service\bdch.dll [SOFTWIN] [BitDefender Crash Handler] MD5=FABDDB481FECE68CA3CE504ABD9F6779 SIZE=45056
%COMMONFILES%\Softwin\BitDefender Update Service\bdsubmit.dll [SOFTWIN] [BitDefender Submission] MD5=8D72A62B037194548CD8DD283A3D31C8 SIZE=192512
%PROGRAMFILES%\Softwin\BitDefender10\vsserv.exe [SOFTWIN S.R.L.] [BitDefender 10] MD5=411A48D09F0FA6C51FAD1499AA918B42 SIZE=462848
%PROGRAMFILES%\Softwin\BitDefender10\bdfltlib.dll MD5=87467961380736A2F676C5B01B325CA6 SIZE=106496
%PROGRAMFILES%\Softwin\BitDefender10\zlib.dll [zlib] MD5=4D60C419FB5BB06D30B6F6AD5607E480 SIZE=196608
%PROGRAMFILES%\Softwin\BitDefender10\procinf.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=A4EB2AB47361D59282A893A158FB03E6 SIZE=81920
%PROGRAMFILES%\Softwin\BitDefender10\mimeinf.dll MD5=09F3215D2162E6B72C09D1C70FD77735 SIZE=49152
%PROGRAMFILES%\Softwin\BitDefender10\bdch.dll [SOFTWIN] [BitDefender Crash Handler] MD5=FABDDB481FECE68CA3CE504ABD9F6779 SIZE=45056
%PROGRAMFILES%\Softwin\BitDefender10\bdsubmit.dll [SOFTWIN] [BitDefender Submission] MD5=8D72A62B037194548CD8DD283A3D31C8 SIZE=192512
%PROGRAMFILES%\Softwin\BitDefender10\bdfdll_x86.dll MD5=E9E1F4E3C5DB7AE94ACC1B1633CC71DB SIZE=69632
%PROGRAMFILES%\Softwin\BitDefender10\bdutils.dll [BDUtils Dynamic Link Library] MD5=F6CFD8551C7C96B4C9B093CB274D65F2 SIZE=61440
%PROGRAMFILES%\Softwin\BitDefender10\WSLib.dll MD5=EC78F8E299F79832EC2D0CF006211554 SIZE=94208
%PROGRAMFILES%\Softwin\BitDefender10\quarcore.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=071283F5FE6B5E6F3D9BC0F4B0C1121C SIZE=118784
%PROGRAMFILES%\Softwin\BitDefender10\NTTools.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=2430EB90A61095474DF0691C2B9DEB83 SIZE=33792
%PROGRAMFILES%\Softwin\BitDefender10\privscan.dll [SOFTWIN S.R.L.] [Bitdefender 10] MD5=071D376784AFD5CB74210CDB410FCC50 SIZE=77824
%PROGRAMFILES%\Softwin\BitDefender10\agentreg.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=E8AEF78784BEB54FC14DA8B864E3266F SIZE=81920
%PROGRAMFILES%\Softwin\BitDefender10\getfile.dll MD5=9804CB8F120BAA3A00419EB805A802D9 SIZE=5632
%PROGRAMFILES%\Softwin\BitDefender10\BDGUICtl.dll [Softwin] [BDGUI Dynamic Link Library] MD5=28D8A4F8C7190F105A74BF1D9CCD1A03 SIZE=438272
%PROGRAMFILES%\Softwin\BitDefender10\txmlx.dll [Softwin] [txmlx Dynamic Link Library] MD5=D98D019ABF466BE7F80B0FE403D20141 SIZE=110592
%PROGRAMFILES%\Softwin\BitDefender10\wsid.dll [SOFTWIN S.R.L.] [BitDefender 11] MD5=5B4AF216A7AB90B4DF492F19B373125B SIZE=65536
%PROGRAMFILES%\Softwin\BitDefender10\as2core.dll [SOFTWIN S.R.L.] [BitDefender] MD5=EBD90E66EC3DCC23B31C45F5B45EE639 SIZE=184320
%PROGRAMFILES%\Softwin\BitDefender10\astracer.dll MD5=4117C85AC9997CD4E80E086D9CE19F94 SIZE=41472
%PROGRAMFILES%\Softwin\BitDefender10\asemlbr.mdl [SOFTWIN S.R.L.] [BitDefender] MD5=8BF3755B3AF5BC063BD3F933D58FA76D SIZE=593920
%PROGRAMFILES%\Softwin\BitDefender10\asemldsp.mdl [SOFTWIN S.R.L.] [BitDefender] MD5=CA165690B6E7C6C3270586330521A10B SIZE=143360
%PROGRAMFILES%\Softwin\BitDefender10\asemlf.mdl [SOFTWIN S.R.L.] [BitDefender] MD5=E50A36B96670B83A57C4E65C70A535DF SIZE=311296
%PROGRAMFILES%\Softwin\BitDefender10\asemlimg.mdl [SOFTWIN S.R.L.] [BitDefender] MD5=4DEE96C532B1BCD538AD2311722461B6 SIZE=217088
%PROGRAMFILES%\Softwin\BitDefender10\asemlnn2.mdl [SOFTWIN S.R.L.] [BitDefender] MD5=461D8917B0A43C36207FA01C56365FAE SIZE=548864
%PROGRAMFILES%\Softwin\BitDefender10\asemlrtr.mdl [SOFTWIN S.R.L.] [BitDefender] MD5=63A599BC8EF97C5A5479DE548EF00521 SIZE=151552
%PROGRAMFILES%\Softwin\BitDefender10\asemlsgn.mdl [SOFTWIN S.R.L.] [BitDefender] MD5=2137E693D20DA1D38E8235E5E6513DCB SIZE=458752
%PROGRAMFILES%\Softwin\BitDefender10\iconv.dll [Free Software Foundation] [libiconv: character set conversion library] MD5=0EFDEADBB051451B3AD664D1434FD847 SIZE=888832
%PROGRAMFILES%\Softwin\BitDefender10\asregex.dll MD5=D1792ADC7B7A36CDB06C1025C269C088 SIZE=106496
%PROGRAMFILES%\Softwin\BitDefender10\mimepack.dll MD5=4D86F505F874004248082E1F46903F71 SIZE=47616
%PROGRAMFILES%\Softwin\BitDefender10\sch_serv.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=0C98C49C451A0D1DB15B46E93636371C SIZE=98304
%PROGRAMFILES%\Softwin\BitDefender10\bdardrv.dll [SOFTWIN S.R.L] [BitDefender Scan Drivers Loader] MD5=571C74B649BAAFBBA2C1F4C3CC4B7B52 SIZE=61440
%PROGRAMFILES%\Softwin\BitDefender10\PROFOS.dll MD5=06C5BBC60603EB1BB27B3960A613FB11 SIZE=4608
%PROGRAMFILES%\Softwin\BitDefender10\trufos.dll MD5=C4014D65BCCEAECF099B6EE993CE8609 SIZE=8704
%PROGRAMFILES%\Softwin\BitDefender10\libmpack.dll MD5=54BCA967D9B4697E2D9C8B8C465DFABE SIZE=98304
%SYSDIR%\XRegLib.dll MD5=4E32603A149B607BF37A2CDF6A1B0EC9 SIZE=913408
%PROGRAMFILES%\Softwin\BitDefender10\htmlpack.dll [SOFTWIN S.R.L.] [Bitdefender 10] MD5=4E2FDAC6C7C32302BF8C20F51945B31B SIZE=29184
%PROGRAMFILES%\Softwin\BitDefender10\bdpredir.dll [Softwin SRL] [BitDefender 10] MD5=AC7B8918EA42F6E1D00BAE7E556BA023 SIZE=19968
%PROGRAMFILES%\Softwin\BitDefender10\bdpop3p.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=4A20882662CB210141EC592DE630A69A SIZE=77824
%PROGRAMFILES%\Softwin\BitDefender10\bdsmtpp.dll MD5=8BF578F31D33A479B918EC31C2874312 SIZE=23552
%PROGRAMFILES%\Softwin\BitDefender10\httproxy.dll [SOFTWIN SRL] [HTTP Dynamic Link Library] MD5=D7DBFD3268365310BFD0B057017229D4 SIZE=212992
%PROGRAMFILES%\Tall Emu\Online Armor\OAWatch.dll [Tall Emu] [Online Armor Security Suite] MD5=2B20AADCCB44A8697D29D6BF5A45C45D SIZE=743424
%COMMONFILES%\Ahead\Lib\AdvrCntr.dll [Ahead Software AG] [AdvrCntr Module] MD5=40C6F95A678920D660C3856716F3867D SIZE=1937488
%SYSDIR%\LameACM.acm http://www.mp3dev.org/ [Lame MP3 codec] MD5=AA079EFBDAB436CAE20445FE6FB67DA4 SIZE=393216
%PROGRAMFILES%\Malwarebytes' Anti-Malware\mbamext.dll [Malwarebytes Corporation] [Malwarebytes' Anti-Malware] MD5=B3D6BE8F68F4AAF9065B3A77E236F6DD SIZE=73336
%PROGRAMFILES%\Softwin\BitDefender10\bdshelxt.dll [BDShellExt Module] MD5=F0DB5B73F531F02A7F6873AB8F8A3794 SIZE=58368
%PROGRAMFILES%\WinRAR\rarext.dll MD5=023707D932BA31314210E6844D33D500 SIZE=129024
%PROGRAMFILES%\Tall Emu\Online Armor\oaevent.dll [Tall Emu] [Online Armor Security Suite] MD5=C46B856B241AA8503F07860E49818F5A SIZE=633344
%PROGRAMFILES%\Canon\CAL\CALMAIN.exe [Canon Inc.] MD5=5753532C476B83119D85AA43B1B10AB3 SIZE=96341
%PROGRAMFILES%\Windows Live\Messenger\MSIMG32.dll [Patchou] [Messenger Plus! Live] MD5=74F9E855A6A634C99320850758E795C0 SIZE=59728
%PROGRAMFILES%\Messenger Plus! Live\MsgPlusLive.dll [Patchou] [Messenger Plus! Live] MD5=6A148850B1B0469C2A68B5CFE2AA5C8B SIZE=3335504
%PROGRAMFILES%\Messenger Plus! Live\Detoured.dll MD5=6256684495C499B22DCDBA266E4F2494 SIZE=4096
%PROGRAMFILES%\Messenger Plus! Live\MsgPlusLiveRes.dll [Patchou] [Messenger Plus! Live] MD5=50D3B341178EF2BA876507AB43FFD2C1 SIZE=1818960
%PROGRAMFILES%\Messenger Plus! Live\MPSkins.dll [Patchou] [Messenger Plus! Live] MD5=AE402088F6AA1E22299C68EDBD3AE0ED SIZE=8528
%SYSDIR%\Macromed\Flash\Flash9e.ocx [Adobe Systems, Inc.] [Shockwave Flash] MD5=D3C50535C26190FEAD7785A03499C0AC SIZE=2987392
%PROGRAMFILES%\Windows Live\Messenger\usnsvc.exe [Microsoft Corporation] [Messenger] MD5=9D19B042A4FD5C02195071EA2FE0C821 SIZE=98328
%PROGRAMFILES%\Softwin\BitDefender10\bdmcon.exe [SOFTWIN S.R.L.] [BitDefender 10] MD5=0595CCCF2E5BABFC6D5052CFEFFA96F6 SIZE=290816
%PROGRAMFILES%\Softwin\BitDefender10\TxTools.dll [SOFTWIN S.R.L] [BitDefender 8] MD5=791D9863078518147B270D23E45DA93F SIZE=40960
%PROGRAMFILES%\Softwin\BitDefender10\NAG.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=1C98761D5B20703EF3A09735224BDF63 SIZE=49152
%PROGRAMFILES%\Softwin\BitDefender10\popup.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=E59145FB0718653049389BE7DCAACBA1 SIZE=65536
%PROGRAMFILES%\Softwin\BitDefender10\bdusers.dll [TODO: <Company name>] [TODO: <Product name>] MD5=634F3557C054B95DBBB77B0C6D8210CB SIZE=13312
%PROGRAMFILES%\Softwin\BitDefender10\main.dll [SOFTWIN S.R.L.] [Main Dynamic Link Library] MD5=81A21007B5DC1A8F5FFB1C010AC70683 SIZE=561152
%PROGRAMFILES%\Softwin\BitDefender10\antivirus.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=2C1912E2322DF21DF5A3C37FD093098C SIZE=45056
%PROGRAMFILES%\Softwin\BitDefender10\firewall.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=C52FB1C34997A733FE7A649A8E8C6808 SIZE=180224
%PROGRAMFILES%\Softwin\BitDefender10\Wizards.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=8F3D0324058D3BE59A8FC393BB45219F SIZE=159744
%PROGRAMFILES%\Softwin\BitDefender10\dbokf.dll [SOFTWIN] [BitDefender] MD5=900D52B0A565BC9A6CDBBD2C8965DF8A SIZE=40960
%PROGRAMFILES%\Softwin\BitDefender10\antispam.dll [SOFTWIN S.R.L] [BitDefender 10] MD5=9F2608DC6717BF7B0A822829F40E0D3E SIZE=118784
%PROGRAMFILES%\Softwin\BitDefender10\antispy.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=6B6D91041AEA66012A80764798F35519 SIZE=57344
%PROGRAMFILES%\Softwin\BitDefender10\live.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=B6D606BFFCC7D6EB0B6B66E437B3FBB9 SIZE=167936
%PROGRAMFILES%\Softwin\BitDefender10\vshield.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=28B950E1908908D5B2D36FE7D316BBB0 SIZE=315392
%PROGRAMFILES%\Softwin\BitDefender10\vscan.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=FDEA48DC0FD400FF4A0D990E4A86C50A SIZE=372736
%PROGRAMFILES%\Softwin\BitDefender10\quar.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=8D0DFCDC94A5A74FBF437684DA8F2345 SIZE=286720
%PROGRAMFILES%\Softwin\BitDefender10\bwlist.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=5BDC428728BEFF97380A641235261A02 SIZE=180224
%PROGRAMFILES%\Softwin\BitDefender10\ashield.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=2E389E667BC9BC332BE078D5ED2BC9C1 SIZE=172032
%PROGRAMFILES%\Softwin\BitDefender10\privintf.dll [SOFTWIN S.R.L.] [Bitdefender 10] MD5=A2DE3C6449996B44661F39D57620A881 SIZE=110592
%PROGRAMFILES%\Softwin\BitDefender10\sysinfo.dll [SOFTWIN S.R.L.] [BitDefender 10] MD5=0998824DAF7CDAE9F0C1125798CB6125 SIZE=303104
%PROGRAMFILES%\Softwin\BitDefender10\BDElev.DLL [SOFTWIN S.R.L.] [BitDefender 10] MD5=EA4A7DD858D2C7A884F07B8E5C570C88 SIZE=96336
%COMMONFILES%\Microsoft Shared\Windows Live\WLLoginProxy.exe [Microsoft Corporation] [Microsoft® Windows Live Login Helper] MD5=7FA0AA2F3DABA5BEB2C4AC1EEC054EFA SIZE=118336
deskpan.dll
%PROGRAMFILES%\MICROSOFT INTELLITYPE PRO\ITCPLZM.DLL [Microsoft Corporation] [Microsoft IntelliType Pro] MD5=9BAA63DABB71CE38C91B4855CC2E6B77 SIZE=204800
%PROGRAMFILES%\MICROSOFT INTELLITYPE PRO\ITCPLWHL.DLL [Microsoft Corporation] [Microsoft IntelliType Pro] MD5=2407FBDB9CB080E8B05928C7FB935C09 SIZE=229376
%PROGRAMFILES%\MICROSOFT INTELLITYPE PRO\ITCPLKEY.DLL [Microsoft Corporation] [Microsoft IntelliType Pro] MD5=F7BE7817102BE20FF88E3346EBDD9158 SIZE=352256
%PROGRAMFILES%\MICROSOFT INTELLITYPE PRO\ITCPLWIR.DLL [Microsoft Corporation] [Microsoft IntelliType Pro] MD5=D8C2B64A3E2867B40BEF26218A06E6F7 SIZE=200704
%PROGRAMFILES%\MICROSOFT INTELLIPOINT\IPCPLWIR.DLL [Microsoft Corporation] [Microsoft IntelliPoint] MD5=F9193B5DD2235FFC6A326D866F86FB70 SIZE=335872
%PROGRAMFILES%\MICROSOFT INTELLIPOINT\IPCPLWHL.DLL [Microsoft Corporation] [Microsoft IntelliPoint] MD5=7B2061F41D0A9AEA272F276D585D58D5 SIZE=229376
%PROGRAMFILES%\MICROSOFT INTELLIPOINT\IPCPLACT.DLL [Microsoft Corporation] [Microsoft IntelliPoint] MD5=D1BE3E13EDC5594148586669686170F4 SIZE=176128
%PROGRAMFILES%\MICROSOFT INTELLIPOINT\IPCPLBTN.DLL [Microsoft Corporation] [Microsoft IntelliPoint] MD5=9457A8B86B3027CE486A02EDD4A0CB1C SIZE=348160
%PROGRAMFILES%\Windows Live\Messenger\fsshext.8.5.1302.1018.dll [Microsoft Corporation] [Messenger] MD5=8BDE1F61DFBAAE7A2916170E8B75FE0F SIZE=329240
%PROGRAMFILES%\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe [Microsoft Corporation] [Windows Live Photo Gallery] MD5=86C67242AC4ADA2C20D0748157E3ED8C SIZE=227456
%PROGRAMFILES%\Windows Live\Photo Gallery\PhotoViewerShim.dll [Microsoft Corporation] [Windows Live Photo Gallery] MD5=024F4D95154039B2292F4B856A52AB7D SIZE=46112
%SYSDIR%\rundll32.exe "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoViewer.dll",PhotoViewerComServer {2BE99FD4-A181-4996-BFA9-58C5FFD11F6C}
%SYSDIR%\rundll32.exe "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoViewer.dll",PhotoViewerComServer {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C}
%SYSDIR%\rundll32.exe "C:\Program Files\Windows Live\Photo Gallery\WLXPhotoViewer.dll",PhotoViewerComServer {00F374B7-B390-4884-B372-2FC349F2172B}
%SYSDIR%\drivers\ALCXWDM.SYS [Realtek Semiconductor Corp.] [Windows (R) WDM driver for Realtek AC'97 Audio(HRTF data Copyright 1994 by MIT Media Lab)] MD5=706AA8374B4FC02D8A42493F16D5C3A4 SIZE=3960000
%SYSDIR%\svchost.exe -k LocalService
%SYSDIR%\svchost.exe -k netsvcs
%PROGRAMFILES%\Softwin\BitDefender10\bdfdll.sys MD5=ED2179E5CD86EABFDC227601C3094C64 SIZE=7808
%PROGRAMFILES%\Softwin\BitDefender10\bdfsdrv.sys MD5=09144A34A6BC8C1228DB81995BACC0F8 SIZE=14145
%PROGRAMFILES%\Softwin\BitDefender10\bdrsdrv.sys MD5=6F85116C3A51C2C07EFBE957B69F1199 SIZE=10768
%SYSDIR%\svchost -k DcomLaunch
%SYSDIR%\svchost.exe -k NetworkService
%SYSDIR%\DRIVERS\fetnd5bv.sys [VIA Technologies, Inc.] [VIA Rhine Family Fast Ethernet Adapter] MD5=AF8AF100F0DD397A34BB273BC64AEF1A SIZE=42496
%SYSDIR%\svchost.exe -k HTTPFilter
%SYSDIR%\DRIVERS\InCDPass.sys [Nero AG] [InCD] MD5=CDC98D9FF11DC8A88D99370F0786005E SIZE=29696
%SYSDIR%\drivers\iviaspi.sys [InterVideo, Inc.] [InterVideo ASPI Shell] MD5=94A8C9436C36CD9657CFED0043066B9C SIZE=10368
%SYSDIR%\drivers\NDISRD.sys SIZE=18944
%SYSDIR%\drivers\OADriver.sys SIZE=68608
%SYSDIR%\drivers\OAmon.sys SIZE=25600
%SYSDIR%\DRIVERS\P1120Vid.sys [Creative Technology Ltd.] MD5=DB78FAED7D72774DF78B1A60F1618798 SIZE=1252474
%SYSDIR%\svchost -k rpcss
%SYSDIR%\Drivers\sptd.sys SIZE=716272
%SYSDIR%\svchost.exe -k imgsvc
%SYSDIR%\DRIVERS\vtmini.sys [Copyright (C) VIA/S3 Graphics Co, Ltd.] [UniChrome(Pro) IGP Driver] MD5=3A1CFC248C5CD9170370671BA4075562 SIZE=234368
%SYSDIR%\DRIVERS\viamraid.sys [VIA Technologies inc,.ltd] [VIA RAID driver] MD5=F199939205DCCC7836AE5AB8B5DD5E83 SIZE=74112
%PROGRAMFILES%\HP\hpcoretech\comp\hpuiprot.dll [Hewlett-Packard Company] [hp coretech (COmponent REuse TECHnology)] MD5=7863F5A6DB70289FF9434CD484B3274C SIZE=81920
%PROGRAMFILES%\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll [Microsoft Corporation] [Messenger] MD5=56319E6B4D190A2DEB4463A9CE4D4F74 SIZE=66072
End of Report
Suppression:
Suppression:
Préparation…
Création d'un point de restauration
Supprimer Affiliate tracking cookie
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\morgane gentric\cookies\morgane gentric@ads.pointroll[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\morgane gentric\cookies\morgane gentric@serving-sys[1].txt
Supprimer SPR.Tool.Hardoff.A
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\morgane gentric\Bureau\SmitfraudFix\restart.exe
Supprimer RiskTool.Reboot.f
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\morgane gentric\Bureau\SmitfraudFix\Reboot.exe
Fermeture du point de restauration système
Analyse(s) terminée(s)
ogLogfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:38:22, on 30/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Tall Emu\Online Armor\oasrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\netdde.exe
C:\WINDOWS\system32\clipsrv.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\Tall Emu\Online Armor\oaui.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\morgane gentric\Bureau\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60076
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60076
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [OnlineArmor GUI] "C:\Program Files\Tall Emu\Online Armor\oaui.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} (DjVuCtl Class) - http://downloadcenter.samsung.com/content/common/cab/DjVuControlLite_EN.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Google Desktop Manager 5.7.801.1629 (GoogleDesktopManager-010108-205858) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - D:\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Online Armor (SvcOnlineArmor) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\oasrv.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - Unknown owner - C:\WINDOWS\System32\TuneUpDefragService.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
30 juil. 2008 à 10:27