Sujet Précédent Sujet Suivant

Problème de charge dédiée: plus de 700mo

dnassur Messages postés 10 Statut Membre -  
sherred Messages postés 8605 Statut Membre -
Bonjour à tous,

Je me retrouve avec une charge dédiée qui voisine les 700 mo, et pourtant mon PC est limité à 592mo de ram. Les lictures audio ou encore video et quelque soit le logiciel utilisé, se heurte à des coupures fréquentes. Cela est de même sur les vidéo sur la toile.

Je pense que j'ai attrapé un virus. J'ai scané mon Pc avec mon antivirus Norton et spywar doctor, rien n'a changé. Je vous prie de bien vouloir m'aider d'éliminer ces virus afin de reduire la charge dédiée pour ne pas perdre mon processeur. J'ai un PC portable Asus A9RP, le processeur : Celeron-M440

J'ai remarqué sur le gestionnaire de tache, il ya un programme au nom de: PctsSvc.exe; ce programme consomme près de 100mo du mémoire virtuel.

Merci pour votre aide

6 réponses

Réponse 1 / 6
sherred Messages postés 8605 Statut Membre 351
 
de memoire pctssvc.exe est un process de PC Tools
mais ca reste a prouver
télecharge ici https://www.clubic.com/telecharger-fiche17891-hijackthis.html

Lance HijackThis en double cliquant sur son icône puis cliquez sur le bouton Do a system scan only

Le rapport est retranscrit aussitôt apres le scan dans une fenêtre de type Bloc-notes
il vous suffit de realiser un copier/coller et de le poster dans le forum
0
dnassur Messages postés 10 Statut Membre
 
Voici le rapport
et merci pour votre rapidité

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:13:57, on 07/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\documents and settings\nassur\local settings\application data\aywcukw.exe
C:\Program Files\ASUS\Asus ChkMail\ChkMail.exe
C:\WINDOWS\system32\ACEngSvr.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\System32\alg.exe
c:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Documents and Settings\NASSUR\Local Settings\Temporary Internet Files\Content.IE5\SUNFKT0M\HiJackThis[1].exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.asus.com/fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - c:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - c:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ASUS Live Update] C:\Program Files\ASUS\ASUS Live Update\ALU.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ACMON] C:\Program Files\ASUS\Splendid\ACMON.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [aywcukw] c:\documents and settings\nassur\local settings\application data\aywcukw.exe aywcukw
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: ASUS ChkMail.lnk = C:\Program Files\ASUS\Asus ChkMail\ChkMail.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.asus.com/fr/
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {E6ACF817-0A85-4EBE-9F0A-096C6488CFEA} (NTR ActiveX 1.1.8) - https://www.ntrconnect.com/main/mod/setup/ntractivex118_24.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: olMntrService - Olivetti - C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
0
Réponse 2 / 6
sherred Messages postés 8605 Statut Membre 351
 
bon c'est bien ca
C:\Program Files\Spyware Doctor\pctsSvc.exe
a savoir: spyware doctor est un gros consomateur
je te conseille donc de le desinstaller
et d'installé a la place terminator
plus léger mais aussi efficace
https://www.01net.com/outils/telecharger/windows/Securite/anti-spyware/fiches/tele41933.html
profite en pour scanner ton pc avec
et reviens nous dire ce qu'il en est
on a pas fini
0
dnassur Messages postés 10 Statut Membre
 
Je viens d'installer le spyware terminator

J'ai fait une première analyse voila le rapport:

Merci


Logfile of Spyware Terminator v2.3.0.487 (db:)
Scan Time: 07/08/2008 18:34:18 length: 38 s
Platform: WXP (5.1.0.2600)
User: Admin
Boot Mode: Normal
Scan type: Fast_Spyware_Scan
Scanned Objects: 4446 (Critical:0)
Filter: No System items, No Safe items, No Invalid items

Running Processes
Ati2evxx.exe [ATI Technologies Inc.] : C:\WINDOWS\system32\Ati2evxx.exe
ccSetMgr.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
ccEvtMgr.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
ccProxy.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
SNDSrvc.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
SPBBCSvc.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
symlcsvc.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
GoogleUpdaterService.exe [Google] : C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
LSSrvc.exe [Hewlett-Packard Company] : C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
navapsvc.exe [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
olMntrService.exe [Olivetti] : C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
ALUSchedulerSvc.exe [Symantec Corporation] : C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
Ati2evxx.exe [ATI Technologies Inc.] : C:\WINDOWS\system32\Ati2evxx.exe
HControl.exe : C:\WINDOWS\ATK0100\HControl.exe
RTHDCPL.EXE [Realtek Semiconductor Corp.] : C:\WINDOWS\RTHDCPL.EXE
ALU.exe : C:\Program Files\ASUS\ASUS Live Update\ALU.exe
SynTPEnh.exe [Synaptics, Inc.] : C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PDVDServ.exe [Cyberlink Corp.] : C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe
ccApp.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
ACMON.exe [ATK] : C:\Program Files\ASUS\Splendid\ACMON.exe
realsched.exe [RealNetworks, Inc.] : C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
GoogleToolbarNotifier.exe [Google Inc.] : C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
ChkMail.exe [asus] : C:\Program Files\ASUS\Asus ChkMail\ChkMail.exe
ACEngSvr.exe [ASUSTeK] : C:\WINDOWS\system32\ACEngSvr.exe
ATKOSD.exe : C:\WINDOWS\ATK0100\ATKOSD.exe
okwei.exe : C:\Documents and Settings\NASSUR\local settings\application data\okwei.exe
NSCSRVCE.EXE [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
CToolbar.exe [Crawler.com] : C:\Program Files\Crawler\Toolbar\CToolbar.exe

Internet Settings
R - HKCU\Software\Microsoft\Internet Explorer\Main, Search Bar = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = https://fr.yahoo.com/
R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant = http://www.google.com/toolbar/ie8/sidebar.html
R - HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName =

BHO
02 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - [Yahoo! Inc.] : C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
02 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - [Adobe Systems Incorporated] : C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
02 - BHO: - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - [Crawler.com] : C:\Program Files\Crawler\Toolbar\ctbr.dll
02 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
02 - BHO: CNavExtBho Class - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
02 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - [Google Inc.] : C:\Program Files\google\googletoolbar3.dll
02 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - [Google Inc.] : C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll

Toolbars
03 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
03 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
03 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - [Google Inc.] : C:\Program Files\google\googletoolbar3.dll
03 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - [Yahoo! Inc.] : C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
03 - Toolbar: Barre d'outils &Crawler - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - [Crawler.com] : C:\Program Files\Crawler\Toolbar\ctbr.dll

StartUps
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, swg : [Google Inc.] : C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, okwei : : C:\Documents and Settings\NASSUR\local settings\application data\okwei.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, HControl : : C:\WINDOWS\ATK0100\HControl.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, RTHDCPL : [Realtek Semiconductor Corp.] : C:\WINDOWS\RTHDCPL.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, Alcmtr : [Realtek Semiconductor Corp.] : C:\WINDOWS\ALCMTR.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, ASUS Live Update : : C:\Program Files\ASUS\ASUS Live Update\ALU.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, SynTPEnh : [Synaptics, Inc.] : C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, RemoteControl : [Cyberlink Corp.] : C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, ccApp : [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, ACMON : [ATK] : C:\Program Files\ASUS\Splendid\ACMON.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, TkBellExe : [RealNetworks, Inc.] : C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
04 - Startup: %STARTUPALL%\ASUS ChkMail.lnk [asus] : C:\Program Files\ASUS\Asus ChkMail\ChkMail.exe

Shell Extensions
- {2F603045-309F-11CF-9774-0020AFD0CFF6} - [Synaptics, Inc.] : C:\Program Files\Synaptics\SynTP\SynTPCpl.dll
RealOne Player Context Menu Class - {F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4} - [RealNetworks, Inc.] : C:\Program Files\Real\RealPlayer\rpshell.dll
Mes dossiers de partage - {FC9FB64A-1EB2-4CCF-AF5E-1A497A9B5C2D} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\fsshext.8.5.1302.1018.dll
Microsoft Office Outlook - {00020D75-0000-0000-C000-000000000046} - [Microsoft Corporation] : C:\Program Files\Microsoft Office\OFFICE11\MLSHEXT.DLL
Outlook File Icon Extension - {0006F045-0000-0000-C000-000000000046} - [Microsoft Corporation] : C:\Program Files\Microsoft Office\OFFICE11\OLKFSTUB.DLL
- {42042206-2D85-11D3-8CFF-005004838597} - [Microsoft Corporation] : C:\Program Files\Microsoft Office\OFFICE11\msohev.dll
YMailShellExt Class - {5464D816-CF16-4784-B9F3-75C0DB52B499} - [Yahoo! Inc.] : C:\Program Files\Yahoo!\Common\ymmapi.dll
WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} - : C:\Program Files\WinRAR\rarext.dll

Protocol Filters
- {807553E5-5146-11D5-A672-00B0D022E945} - [Microsoft Corporation] : C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL

Protocol Handler
- {828030A1-22C1-4009-854F-8E305202313F} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
- {828030A1-22C1-4009-854F-8E305202313F} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
Data Page Pluggable Protocol mso-offdap Handler - {3D9F03FA-7A94-11D3-BE81-0050048385D1} - [Microsoft Corporation] : C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL
Data Page Plugable Protocal mso-offdap11 Handler - {32505114-5902-49B2-880A-1F7738E5A384} - [Microsoft Corporation] : C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL
- {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - [Crawler.com] : C:\Program Files\Crawler\Toolbar\ctbr.dll

Services
23 - [Printing Communications Assoc., Inc. (PCAUSA)] : C:\WINDOWS\system32\ASNDIS5.SYS
23 - [ATI Technologies Inc.] : C:\WINDOWS\system32\Ati2evxx.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
23 - [Google] : C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
23 - [Realtek Semiconductor Corp.] : C:\WINDOWS\system32\drivers\RtkHDAud.sys
23 - [Hewlett-Packard Company] : C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
23 - [Marvell Semiconductor, Inc] : C:\WINDOWS\system32\DRIVERS\MRVW245.sys
23 - : C:\WINDOWS\system32\DRIVERS\ATKACPI.sys
23 - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\VirusDefs\20080807.005\NAVENG.SYS
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\VirusDefs\20080807.005\NAVEX15.SYS
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
23 - [Olivetti] : C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
23 - [Symantec Corporation] : C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
23 - [REDC] : C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
23 - [REDC] : C:\WINDOWS\system32\DRIVERS\risdptsk.sys
23 - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRT.SYS
23 - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRTPEL.SYS
23 - [Motorola Inc.] : C:\WINDOWS\system32\DRIVERS\smserial.sys
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCDrv.sys
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMDNS.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMFW.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMIDS.SYS
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SymcData\idsdefs\20080806.002\SymIDSCo.sys
23 - [Symantec Corporation] : C:\WINDOWS\system32\drivers\symlcbrd.sys
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMNDIS.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMREDRV.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMTDI.SYS
23 - [Synaptics, Inc.] : C:\WINDOWS\system32\DRIVERS\SynTP.sys

Winlogon Notify
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent, DLLName : [ATI Technologies Inc.] : C:\WINDOWS\system32\Ati2evxx.dll

IE URL Search Hooks
Yahoo! Toolbar - {{EF99BD32-C1FB-11D2-892F-0090271D4F88}} - [Yahoo! Inc.] : C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

Advanced Files Report
%SYSDIR%\Ati2evxx.dll [ATI Technologies Inc.] [ATI External Event Utility for NT, W2K and W9X] MD5=176B19A74840A4C57ED8E74F67C45C57 SIZE=61440
%SYSDIR%\Ati2evxx.exe [ATI Technologies Inc.] [ATI External Event Utility for WindowsNT and Windows9X] MD5=E9B73D638608B5B20608DB28186D3494 SIZE=405504
%SYSDIR%\Ati2edxx.dll [ATI Technologies, Inc.] [ATI External Device Utility] MD5=E776B844F1775C3E17550782B17B2D73 SIZE=41984
%COMMONFILES%\Symantec Shared\ccSetMgr.exe [Symantec Corporation] [Client and Host Security Platform] MD5=3D6268B8EC5EE11BBAF9256252869589 SIZE=169320
%COMMONFILES%\Symantec Shared\ccL40.dll [Symantec Corporation] [Client and Host Security Platform] MD5=E646E2A2D759F55111170565400FBF4A SIZE=379240
%COMMONFILES%\Symantec Shared\ccVrTrst.dll [Symantec Corporation] [Client and Host Security Platform] MD5=0E5E24C0FED1C2DD08FD360EE36881CD SIZE=99688
%COMMONFILES%\Symantec Shared\ccSetEvt.dll [Symantec Corporation] [Client and Host Security Platform] MD5=3B82B72FBA2665D1DFD588144F999342 SIZE=87400
%COMMONFILES%\Symantec Shared\ccEvtMgr.exe [Symantec Corporation] [Client and Host Security Platform] MD5=0ED8EAF3FB6FB671103EECF52CF0D685 SIZE=191848
%COMMONFILES%\Symantec Shared\ccSet.dll [Symantec Corporation] [Client and Host Security Platform] MD5=4FFB9361442B829E3768D9BB6D3D3F4C SIZE=91496
%COMMONFILES%\Symantec Shared\SPBBC\SPBBCEvt.dll [Symantec Corporation] [SPBBC] MD5=B3A926B316949DE61FA297530378788F SIZE=714336
%SYSDIR%\SYMNETI.DLL [Symantec Corporation] [Symantec Security Drivers] MD5=EFE3BE005DEACB306DFFF16718842FBC SIZE=542088
%COMMONFILES%\Symantec Shared\AntiSpam\asSpmEvt.dll [Symantec Corporation] [Norton AntiSpam] MD5=C42A2442652F946E006C047103962C7A SIZE=130144
%COMMONFILES%\Symantec Shared\ccLogin.dll [Symantec Corporation] [Client and Host Security Platform] MD5=66E9483F9EC1FA113C4880E07FCA07AA SIZE=111976
%COMMONFILES%\Symantec Shared\ccPxyEvt.dll [Symantec Corporation] [Client and Host Security Platform] MD5=474E98FEDC903507F3F11B9697C94DDB SIZE=275816
%PROGRAMFILES%\Norton Internet Security\ISSvc.dll [Symantec Corporation] [Internet Security] MD5=EA46BE6214BEFC46443DC9BAEAE31DB4 SIZE=91776
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\HPPEVT32.DLL [Symantec Corporation] [Norton AntiVirus] MD5=80A039A02060954B4F418698DE7467D8 SIZE=145008
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\HPPRES32.LOC [Symantec Corporation] [Norton AntiVirus] MD5=5CF1C89B79E17A0A9D0A5928DF606D9D SIZE=71280
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVEvent.dll [Symantec Corporation] [Norton AntiVirus] MD5=AF5E7FE474631AE9A55F26A93422A468 SIZE=169584
%PROGRAMFILES%\Norton Internet Security\ObrkData.dll [Symantec Corporation] [Internet Security] MD5=875FFAC52BB3DD282B351A3DDE7CDB44 SIZE=278144
%COMMONFILES%\Symantec Shared\ccProxy.exe [Symantec Corporation] [Client and Host Security Platform] MD5=B5DA112DE760722A829F4FDE067F12B0 SIZE=202088
%SYSDIR%\SYMREDIR.dll [Symantec Corporation] [Symantec Security Drivers] MD5=E3C22F0302F2A9B1DEFE792C3E18F9B4 SIZE=161160
%COMMONFILES%\Symantec Shared\DPHTML.dll [Symantec Corporation] [Client and Host Security Platform] MD5=3068A33BE22FFBDC77F817B05F8F8339 SIZE=136552
%COMMONFILES%\Symantec Shared\DPJS.dll [Symantec Corporation] [Client and Host Security Platform] MD5=939EC796A6A75B48A60E78E10067164D SIZE=58728
%COMMONFILES%\Symantec Shared\DPVBS.dll [Symantec Corporation] [Client and Host Security Platform] MD5=850E884B0742B50FDB484A26F16E167D SIZE=54632
%COMMONFILES%\Symantec Shared\PFPriv.dll [Symantec Corporation] [Client and Host Security Platform] MD5=1166734E4ED207FF95A45BE3F1A55629 SIZE=99944
%COMMONFILES%\Symantec Shared\PFSec.dll [Symantec Corporation] [Client and Host Security Platform] MD5=F0CC197D0917197A09522D90C7FD3926 SIZE=54888
%COMMONFILES%\Symantec Shared\PFAdBlk.dll [Symantec Corporation] [Client and Host Security Platform] MD5=70B12DEC21639D36C4600D32DD0F8C8E SIZE=87664
%COMMONFILES%\Symantec Shared\PFMisc.dll [Symantec Corporation] [Client and Host Security Platform] MD5=35D400B91D85DBCCFF1C45AF23A3760A SIZE=44136
%COMMONFILES%\Symantec Shared\PxyHTTP.dll [Symantec Corporation] [Client and Host Security Platform] MD5=57CB0FA5B4E463323EA2E990DD64BACB SIZE=83304
%COMMONFILES%\Symantec Shared\DPHTTP.dll [Symantec Corporation] [Client and Host Security Platform] MD5=B69BF54DD075604DE852AEC0235273BE SIZE=91496
%COMMONFILES%\Symantec Shared\PxyIM.dll [Symantec Corporation] [Client and Host Security Platform] MD5=56E09769E08D63BDE1771D3BF0E9C2DB SIZE=26728
%COMMONFILES%\Symantec Shared\ccProSub.dll [Symantec Corporation] [Client and Host Security Platform] MD5=7558FCEAC03AADE70913231FE272540D SIZE=66920
%COMMONFILES%\Symantec Shared\ccCharCv.dll [Symantec Corporation] [Client and Host Security Platform] MD5=AF4B4B506F5F7AC0A0FAC121AF44ED29 SIZE=2598248
%COMMONFILES%\Symantec Shared\SNDSrvc.exe [Symantec Corporation] [Symantec Security Drivers] MD5=0CB1E12D9741308B5A9CDC5C7D2A1D97 SIZE=214408
%COMMONFILES%\Symantec Shared\SPBBC\SPBBCSvc.exe [Symantec Corporation] [SPBBC] MD5=780DE647691972907D86194577F58C43 SIZE=1160800
%COMMONFILES%\Symantec Shared\SPBBC\bbRGen.dll [Symantec Corporation] [SPBBC] MD5=3329D3F58730C89FDE1F989059861AE7 SIZE=444000
%COMMONFILES%\Symantec Shared\CCPD-LC\symlcsvc.exe [Symantec Corporation] [Symantec Core Component] MD5=FA2F6A8849219B16460BF44F9D1F3AA7 SIZE=1251720
%COMMONFILES%\Symantec Shared\CCPD-LC\symlcnet.dll [Symantec Corporation] [Symantec Core Component] MD5=7C7E6566AD8F97630E40E079E8160EBE SIZE=362376
%PROGRAMFILES%\Google\Common\Google Updater\GoogleUpdaterService.exe [Google] [Google Updater] MD5=1BF044E23206FDDC16891A32922D571B SIZE=137200
%COMMONFILES%\LightScribe\LSSrvc.exe [Hewlett-Packard Company] [LightScribe] MD5=5712DCBE52D68865CCA91AE04807B755 SIZE=73728
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\navapsvc.exe [Symantec Corporation] [Norton AntiVirus] MD5=606C21D97649E5C44B94763380F07B7C SIZE=139888
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\SAVRT32.DLL [Symantec Corporation] [Symantec AntiVirus AutoProtect] MD5=2FC98A3447E97221F1206333223D2247 SIZE=231136
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\navapsvc.loc [Symantec Corporation] [Norton AntiVirus] MD5=DFA46BEB6D28CF7FE78A41B90CADA469 SIZE=11888
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\N32Exclu.dll [Symantec Corporation] [Norton AntiVirus] MD5=049D615D8E6D49C484FD7E7FBF802A2A SIZE=267888
%COMMONFILES%\Symantec Shared\DefUtDCD.dll [Symantec Corporation] [Symantec Definition Utilities] MD5=3CBBA49D8BF1D1F0F3B73375CBDE2289 SIZE=628312
%PROGRAMFILES%\Olivetti\ANY_WAY\olMntrService.exe [Olivetti] [Olivetti ANY_WAY] MD5=55EE2E98C2916914B2A2123250C22179 SIZE=86016
%PROGRAMFILES%\Olivetti\ANY_WAY\olMntrHid.dll [Olivetti] [Olivetti ANY_WAY] MD5=510E943ADDF121079B4CEE19E37202CE SIZE=221184
%PROGRAMFILES%\Symantec\LiveUpdate\ALUSchedulerSvc.exe [Symantec Corporation] [LiveUpdate] MD5=7768CE75C5CBF0D8F441CE2BBD806B7F SIZE=100032
%COMMONFILES%\Symantec Shared\AntiSpam\asOEHook.dll [Symantec Corporation] [Norton AntiSpam] MD5=558176FF5BC01F7C2B4F6B3E7B8E3800 SIZE=123488
%COMMONFILES%\Adobe\Acrobat\ActiveX\PDFShell.dll [Adobe Systems, Inc.] [Adobe PDF Shell Extension] MD5=2094BC9A0FC9C0E15EEA5F4A9581DD14 SIZE=372736
%COMMONFILES%\Adobe\Acrobat\ActiveX\PDFShell.FRA [Adobe Systems, Inc.] [Adobe PDF Shell Extension] MD5=17C964594AC92EE0B67D9EA08F8A8FD0 SIZE=311296
%PROGRAMFILES%\Samsung\Samsung PC Studio 3\FunVideoCodecFilter.ax [Mobile Leader] [DirectShow FunBox Video Codec Filter] MD5=62808576D1BA85BC80B3F8EAFBE9F02E SIZE=53248
%COMMONFILES%\Ahead\DSFilter\NeVideo.ax [Nero AG] [Nero Suite] MD5=396A0060E457E43992E5A5943DB386DF SIZE=1039872
%COMMONFILES%\Ahead\Lib\AdvrCntr.dll [Ahead Software AG] [AdvrCntr Module] MD5=BEAA1253CDEFA26C1A8B1064F7CC9DA5 SIZE=2494530
%WINDIR%\ATK0100\CMSSC.dll MD5=E3E8DC9033D9C2AD2F30F23ADA3C4BE4 SIZE=57344
%WINDIR%\ATK0100\inter_f2.dll [ATK] [ATK0100] MD5=06B4C8D5D9708A7494AC7C02CD54650E SIZE=36864
%WINDIR%\ATK0100\ATKWLIOC.DLL [ACTIONTEC Electronics,Inc] [PRISM Wireless LAN] MD5=388CE212A119271EEA68F42712F3F64F SIZE=80384
%WINDIR%\ATK0100\SiSPkt.dll [Silicon Integrated Systems Corp.] [SiS160 Series Wireless LAN Adapter] MD5=E7C665D4AFAAB45A9086D02FFC87A4B4 SIZE=303104
%WINDIR%\ATK0100\ASUSNET.dll [ASUSNet Dynamic Link Library] MD5=08FFE12012ACF3F78F8A7A420C7A6919 SIZE=163840
%WINDIR%\ATK0100\ASW32N50.dll [Printing Communications Assoc., Inc. (PCAUSA)] [PCAUSA Rawether for Windows] MD5=E67DC20DC4A1F058779AA869176049F8 SIZE=61440
%SYSDIR%\SynCOM.dll [Synaptics, Inc.] [COM SDK] MD5=B5D354C594E70A0633CA7A564D565433 SIZE=82013
%SYSDIR%\SynTPAPI.dll [Synaptics, Inc.] [Synaptics Pointing Device Driver] MD5=A54FBB3E8CD5AE26B161690978308550 SIZE=94298
%PROGRAMFILES%\ASUSTek\ASUSDVD\CLRCEngine2.dll [CyberLink Corp.] [Cyberlink PowerCinema 3.0] MD5=535203DEA5820F3B5F3FAACE0D51252C SIZE=36864
%COMMONFILES%\Symantec Shared\ccAlert.dll [Symantec Corporation] [Client and Host Security Platform] MD5=CF012BE29EAEADAE4F3CD67C81BA2F78 SIZE=222568
%COMMONFILES%\Symantec Shared\ccEmlPxy.dll [Symantec Corporation] [Client and Host Security Platform] MD5=FFA2915CEF332F5BA193848F9E9C9322 SIZE=259432
%COMMONFILES%\Symantec Shared\Options\symDynLd.dll [Symantec Corporation] [Norton AntiSpam] MD5=4ED998FAAD0CAA24B2413D0CCAD9029B SIZE=140384
%COMMONFILES%\Symantec Shared\Security Console\NSCTRAY.DLL [Symantec Corporation] [Norton Security Console] MD5=BE3620AC0CE26ABAE219DC97C62F26DA SIZE=210560
%COMMONFILES%\Symantec Shared\Security Console\NSCTRAY.LOC [Symantec Corporation] [Norton Security Console] MD5=FAF56CEAF2B58B5DC08A4128373436E3 SIZE=8832
%PROGRAMFILES%\Norton Internet Security\ISLAlert.dll [Symantec Corporation] [Internet Security] MD5=7F86DCD55FD3FFFBABD4219EB5F0F37B SIZE=329856
%PROGRAMFILES%\Norton Internet Security\AlertRes.dll [Symantec Corporation] [Internet Security] MD5=CA7B482247519699797AFF0A4807B019 SIZE=258672
%PROGRAMFILES%\Norton Internet Security\NisTray.dll [Symantec Corporation] [Internet Security] MD5=710E7515FE6049BD4AF252E8D980B489 SIZE=315520
%COMMONFILES%\Symantec Shared\Security Console\NSCUICOR.DLL [Symantec Corporation] [Norton Security Console] MD5=9F153F9D691A67774CDD313C5DD79E7A SIZE=689792
%COMMONFILES%\Symantec Shared\Security Console\NSCUICOR.LOC [Symantec Corporation] [Norton Security Console] MD5=3B50CCA46B60001083DA29DC2A866D32 SIZE=231000
%COMMONFILES%\Symantec Shared\Security Console\NSC_Hlpr.dll [Symantec Corporation] [Norton Security Console] MD5=C89F46AB32684C138E117F97DC4E25DD SIZE=79488
%PROGRAMFILES%\Norton Internet Security\NISTrRes.dll [Symantec Corporation] [Internet Security] MD5=3EAA6DFFC8364A547D5E8222F0D7D231 SIZE=24176
%COMMONFILES%\Symantec Shared\AntiSpam\asFilter.dll [Symantec Corporation] [Norton AntiSpam] MD5=639450DEEA7DEFB9D38025E135934952 SIZE=237664
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\ccIMScan.dll [Symantec Corporation] [Client and Host Security Platform] MD5=58CF3590CCAB448C578D5E28D6C42756 SIZE=132768
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\DefAlert.dll [Symantec Corporation] [Norton AntiVirus] MD5=7B3D423B135B03B7753A92A55EE42FF0 SIZE=300656
%COMMONFILES%\Symantec Shared\AntiSpam\asUniPlg.dll [Symantec Corporation] [Norton AntiSpam] MD5=3158B328C6295DDB36D5AC569ADFDC21 SIZE=97376
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\HPP32.DLL [Symantec Corporation] [Norton AntiVirus] MD5=3AB34DCAEDF1FC58097A3565545C7BAB SIZE=255600
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVAPW32.DLL [Symantec Corporation] [Norton AntiVirus] MD5=8F129F76DE1378D2C5344F7DE35DCD76 SIZE=218736
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\APWUTIL.DLL [Symantec Corporation] [Norton AntiVirus] MD5=52309E8FB19D0A1096B106C92F6F0F9A SIZE=124528
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVAPW32.LOC [Symantec Corporation] [Norton AntiVirus] MD5=8AA93D4544E1A6AD80F863D629650976 SIZE=71280
%PROGRAMFILES%\Norton Internet Security\ccFWSetg.dll [Symantec Corporation] [Client and Host Security Platform] MD5=92F3CABD6D5DF7E1A6957888B0D03B9B SIZE=476776
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVOptRF.dll [Symantec Corporation] [Norton AntiVirus] MD5=4535DBF9ACE2E48BA393F06884E19A50 SIZE=435856
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\Statushp.dll [Symantec Corporation] [Norton AntiVirus] MD5=2DBF9013684FD7FF4B48758A82FC4D94 SIZE=140912
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\Navlcom.dll [Symantec Corporation] [Norton AntiVirus] MD5=DFED853F722EC1B590E1C7BB5578C8E4 SIZE=181872
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVError.dll [Symantec Corporation] [Norton AntiVirus] MD5=1865CDB57AA35304B5BB763B9443C660 SIZE=79472
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\APWUTIL.LOC [Symantec Corporation] [Norton AntiVirus] MD5=D9654643BC28118D032C4EB416AF4742 SIZE=10352
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\apwcmdnt.dll [Symantec Corporation] [Norton AntiVirus] MD5=32A6AC48ED10D9AC26959B4872C5729C SIZE=247408
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\naverror.loc [Symantec Corporation] [Norton AntiVirus] MD5=08D93CCEC5F58109E3DC549B52DE1AA2 SIZE=12400
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\apwcmdNT.loc [Symantec Corporation] [Norton AntiVirus] MD5=9EC77B9D13042EDA840F5A28606860C5 SIZE=15984
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\ccAVMail.dll [Symantec Corporation] [Client and Host Security Platform] MD5=B94DF7EE6F09829B8C766A9871D82412 SIZE=108192
%PROGRAMFILES%\Norton Internet Security\ccEmlflt.dll [Symantec Corporation] [Client and Host Security Platform] MD5=449AFFCBD0C2EC388C451100E6494CA5 SIZE=145000
%PROGRAMFILES%\Norton Internet Security\ObrkAV.dll [Symantec Corporation] [Internet Security] MD5=EC8CB4B412270D85EF96F644C99E0555 SIZE=49792
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVSTATS.DLL [Symantec Corporation] [Norton AntiVirus] MD5=B8C82C0A31984480B7ACC15D30C1DB34 SIZE=132720
%PROGRAMFILES%\Norton Internet Security\ObrkIDS.dll [Symantec Corporation] [Internet Security] MD5=1E7967E276EFC14A6246CCC66B7572C2 SIZE=80000
%PROGRAMFILES%\Norton Internet Security\SymFWAgt.dll [Symantec Corporation] [Client and Host Security Platform] MD5=E0A8A2AA3586B34E9A0EE3802461BC86 SIZE=165480
%COMMONFILES%\Symantec Shared\Security Console\NSCSRVPS.DLL [Symantec Corporation] [Norton Security Console] MD5=F8527D249C48903F2F7C72BA924B2EBA SIZE=30848
%COMMONFILES%\Symantec Shared\Security Console\NSCUIBL.DLL [Symantec Corporation] [Norton Security Console] MD5=DD7D5029E57B3C47F2E95AC0DD9377BE SIZE=448128
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVOpts.dll [Symantec Corporation] [Norton AntiVirus] MD5=2C2C15365CE13A557470EEF7E88BD474 SIZE=370288
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\navopts.loc [Symantec Corporation] [Norton AntiVirus] MD5=B134A8D2C14E9D6ECA2566B655F58B45 SIZE=570992
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVAPSCR.dll [Symantec Corporation] [Norton AntiVirus] MD5=1647965D73194F932EEBD6A8CE73CE2F SIZE=87664
%PROGRAMFILES%\Symantec\LiveUpdate\ProductRegCom_3_0.DLL [Symantec Corporation] [LiveUpdate] MD5=F08EA5AA95C26FB9F39940006E727D6D SIZE=259776
%PROGRAMFILES%\Symantec\LiveUpdate\NetDetectController_3_0.DLL [Symantec Corporation] [LiveUpdate] MD5=B08F395B1402540A58D7845921584257 SIZE=75456
%PROGRAMFILES%\Symantec\LiveUpdate\LuComServerPS_3_0.DLL [Symantec Corporation] [LiveUpdate] MD5=8F61E6CBEC31A21CC570CE4FD40B76CD SIZE=75456
%PROGRAMFILES%\Norton Internet Security\NISAlert.dll [Symantec Corporation] [Internet Security] MD5=626A209181B4D3D2968A998C62B9C297 SIZE=263808
%PROGRAMFILES%\Norton Internet Security\NISRes.dll [Symantec Corporation] [Internet Security] MD5=546BFC8755EDB2E7E35EA9239BE37E55 SIZE=886392
%PROGRAMFILES%\Norton Internet Security\TLevel.dll [Symantec Corporation] [Client and Host Security Platform] MD5=694D3F30232736D57291978E5136DBE0 SIZE=108136
%PROGRAMFILES%\ASUS\Splendid\GLCDdll.dll [GLCDdll] MD5=00202E4CB0D0567D3E7475221E84925E SIZE=49152
%PROGRAMFILES%\ASUS\Splendid\OVS.dll [ASUSTek] [OVS] MD5=85C57CD47F292E248E56A41E7E7A19C6 SIZE=32768
%PROGRAMFILES%\ASUS\Splendid\Chameleon.dll [ASUSTeK] [ASUSTeK Chameleon Engine] MD5=98AB7A3AC4155640146F6BEC422C81E4 SIZE=53248
%PROGRAMFILES%\Google\GoogleToolbarNotifier\2.1.1119.1736\gtn.dll [Google Inc.] [GoogleToolbarNotifier] MD5=6FB97E345D387673D28B9D01BDC49248 SIZE=127472
%PROGRAMFILES%\ASUS\Asus ChkMail\ChkMail.exe [asus] [asus ChkMail] MD5=84CC718A4B71EAAC9E98E0A52629D485 SIZE=32768
%SYSDIR%\ACEngSvr.exe [ASUSTeK] [ACEngSvr Module] MD5=A391896CD406E6377F5CEF31FDC12019 SIZE=155648
%WINDIR%\ATK0100\ATKOSD.exe [ATK0100] MD5=BC06D2BA44D43577D0FA841D3F54AEAF SIZE=2170880
%COMMONFILES%\Symantec Shared\Security Console\NSCSRVCE.EXE [Symantec Corporation] [Norton Security Console] MD5=BDFD869422054A90372BF26FF4442C27 SIZE=750720
%COMMONFILES%\Symantec Shared\Security Console\NSCJSBL.DLL [Symantec Corporation] [Norton Security Console] MD5=8E087B891842397C2DF85A11699F1112 SIZE=128640
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\avFPXY.dll [Symantec Corporation] [Norton Security Console] MD5=1B1E38513F5C9230FAC24A762AE6EFF5 SIZE=41584
%PROGRAMFILES%\Norton Internet Security\isFtMst.dll [Symantec Corporation] [Norton Security Console] MD5=9B4FF672902BC0D31A41C6666815799B SIZE=95872
%PROGRAMFILES%\Norton Internet Security\nscNISpi.dll [Symantec Corporation] [Internet Security] MD5=BC2B1C03D1392317D04EE1545719E978 SIZE=167040
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\avNSCPlg.dll [Symantec Corporation] [Norton AntiVirus] MD5=4552C02F7B687C7798568CAA97EA3135 SIZE=181872
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\avNSCPlg.loc [Symantec Corporation] [Norton AntiVirus] MD5=E502B33274C8C0A8B8A0CB78FD795737 SIZE=21616
%COMMONFILES%\Symantec Shared\Security Console\NSC_WSCR.DLL [Symantec Corporation] [Norton Security Console] MD5=5E7F6C071A1E46D3BD31A4C41F06EABB SIZE=312960
%COMMONFILES%\Symantec Shared\Security Console\NSC_WSCR.LOC [Symantec Corporation] [Norton Security Console] MD5=26F2BD09459EDDFA65C607F8C15FE237 SIZE=12928
%PROGRAMFILES%\Norton Internet Security\isFtPxy.dll [Symantec Corporation] [Norton Security Console] MD5=FCAC6C987B88B36A141012D488FE30F9 SIZE=41600
%PROGRAMFILES%\Norton Internet Security\nisProd.dll [Symantec Corporation] [Internet Security] MD5=D63EB1ABFB13B29BD0F089CE6F7AD98E SIZE=501376
%COMMONFILES%\Symantec Shared\AntiSpam\asFtPxy.dll [Symantec Corporation] [Norton Security Console] MD5=CC5D0E949ABE24C8A56E366BA89B67F5 SIZE=41568
%COMMONFILES%\Symantec Shared\AntiSpam\asNSCPlg.dll [Symantec Corporation] [Norton AntiSpam] MD5=BA252928F4F6AC04BE798A52FC3C53EB SIZE=48224
%COMMONFILES%\Symantec Shared\Options\asOpts.dll [Symantec Corporation] [Norton AntiSpam] MD5=CA77836E7762EF48B4A533A2160BD555 SIZE=414304
%COMMONFILES%\Symantec Shared\AdBlocking\adFtPxy.dll [Symantec Corporation] [Norton Security Console] MD5=523374F7CB05EEB5882481982E5212BE SIZE=41568
%COMMONFILES%\Symantec Shared\AdBlocking\adNscPlg.dll [Symantec Corporation] [Ad Blocking] MD5=12E4F6DDDE44222BF43364E864C9BC27 SIZE=75360
%COMMONFILES%\Symantec Shared\Options\SymAd.dll [Symantec Corporation] [Ad Blocking] MD5=02EE088E83F96CDEE53B1EE1C327A639 SIZE=222816
%COMMONFILES%\Symantec Shared\AdBlocking\SHEXTRES.DLL [Symantec Corporation] [Internet Security] MD5=2084BFB95D8EC0C78C2F3B3438D46238 SIZE=11376
%PROGRAMFILES%\Yahoo!\Companion\Installs\cpn\YCAPlugin.dll [Yahoo! Inc.] [Yahoo! Toolbar Anti-Spy Plug-In] MD5=C5E47F9D8E51FE14EFE67A9FD62E1D52 SIZE=110448
%SYSDIR%\Macromed\Flash\Flash9f.ocx [Adobe Systems, Inc.] [Shockwave Flash] MD5=48FDF435B8595604E54125B321924510 SIZE=2991488
%SYSDIR%\Macromed\Common\SwSupport.dll [Macromedia, Inc.] [Shockwave] MD5=6DBBCB773B5EC766D5ECB6EB8CB82FB9 SIZE=53248
%PROGRAMFILES%\Crawler\Toolbar\CToolbar.exe [Crawler.com] [Crawler Toolbar] MD5=FB49390C89BA85F1BB236FCDAD090075 SIZE=2305488
%PROGRAMFILES%\Crawler\Toolbar\ctbcomm.dll [Crawler.com] [Crawler Toolbar] MD5=2E26DFE04C78228A6D41290C4C91AFF8 SIZE=1132544
%PROGRAMFILES%\Crawler\Toolbar\WebSecurityGuard.dll [Crawler.com] [Crawler Toolbar] MD5=390CCC4285556BE3C77BEE0F426B4CA0 SIZE=3937792
deskpan.dll
%PROGRAMFILES%\Synaptics\SynTP\SynTPCpl.dll [Synaptics, Inc.] [Synaptics Pointing Device Driver] MD5=2C9B34BBABFFCB5E1FA1EAE8111E3D80 SIZE=6135898
%PROGRAMFILES%\Real\RealPlayer\rpshell.dll [RealNetworks, Inc.] [RealPlayer] MD5=98D96A612E826294506B4DB4519A88BC SIZE=54584
%PROGRAMFILES%\Windows Live\Messenger\fsshext.8.5.1302.1018.dll [Microsoft Corporation] [Messenger] MD5=8BDE1F61DFBAAE7A2916170E8B75FE0F SIZE=329240
%PROGRAMFILES%\Microsoft Office\OFFICE11\MLSHEXT.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=2C52103F83C6AF5617DC574888582D76 SIZE=29272
%PROGRAMFILES%\Microsoft Office\OFFICE11\OLKFSTUB.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=96EA89DA972DD842910AA9AA80BC013E SIZE=232536
%PROGRAMFILES%\Microsoft Office\OFFICE11\msohev.dll [Microsoft Corporation] [Microsoft Office 2003] MD5=165AE7A443F2139DD2C078AD87699F91 SIZE=67128
%PROGRAMFILES%\Yahoo!\Common\ymmapi.dll [Yahoo! Inc.] [YMMAPI Module] MD5=A0C86DB296BBE76145377D56C5975175 SIZE=190496
%PROGRAMFILES%\WinRAR\rarext.dll MD5=023707D932BA31314210E6844D33D500 SIZE=129024
%SYSDIR%\ASNDIS5.SYS [Printing Communications Assoc., Inc. (PCAUSA)] [PCAUSA Rawether for Windows] MD5=05A56C3156E1B6CC7BBD8E1D54D491F2 SIZE=16269
%SYSDIR%\svchost.exe -k netsvcs
%SYSDIR%\svchost -k DcomLaunch
%SYSDIR%\svchost.exe -k NetworkService
%COMMONFILES%\Symantec Shared\EENGINE\eeCtrl.sys [Symantec Corporation] [ERASER ENGINE] MD5=E89CC1363CB7F5320AE3B41C1333D0C3 SIZE=385072
%COMMONFILES%\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [Symantec Corporation] [ERASER ENGINE] MD5=E7D1A496C71CD56BDD97F32C9141A03B SIZE=109616
%SYSDIR%\drivers\RtkHDAud.sys [Realtek Semiconductor Corp.] [Realtek(r) High Definition Audio Function Driver (HRTF data Copyright 1994 by MIT Media Lab)] MD5=71AE838A88B07268D732F596FC17CED5 SIZE=4262912
%SYSDIR%\svchost.exe -k LocalService
%SYSDIR%\DRIVERS\MRVW245.sys [Marvell Semiconductor, Inc] [Device driver for Marvell 802.11n NIC] MD5=275796D1114B524AEC686091E8AAFD3C SIZE=499328
%SYSDIR%\DRIVERS\ATKACPI.sys [ATK0100 ACPI Utility] MD5=E333010A50BF603ACC350F6019E9CE02 SIZE=5632
%COMMONFILES%\Symantec Shared\VirusDefs\20080807.005\NAVENG.SYS [Symantec Corporation] [Symantec Antivirus Engine] MD5=E8C8A45C761DC2B807698642A3BB0B55 SIZE=89936
%COMMONFILES%\Symantec Shared\VirusDefs\20080807.005\NAVEX15.SYS [Symantec Corporation] [Symantec Antivirus Engine] MD5=672ED614F1E2F388B20290B2DA1B8DAD SIZE=856336
%SYSDIR%\DRIVERS\rimsptsk.sys [REDC] [Ricoh Memorystick Controller] MD5=1BDBA2D2D402415A78A4BA766DFE0F7B SIZE=51328
%SYSDIR%\DRIVERS\risdptsk.sys [REDC] [RICOH SD/MMC Driver] MD5=ACE2CE73D7B04EAC48FB80482E05E770 SIZE=27904
%SYSDIR%\svchost -k rpcss
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\SAVRT.SYS [Symantec Corporation] [Symantec AntiVirus AutoProtect] MD5=21BA125B956A513F85F6AB1DD603F917 SIZE=334984
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\SAVRTPEL.SYS [Symantec Corporation] [Symantec AntiVirus AutoProtect] MD5=0F8E1C05FC1298F8E7CEA935429F66FF SIZE=53896
%SYSDIR%\DRIVERS\smserial.sys [Motorola Inc.] [Motorola SM56 Modem] MD5=491017919CCB78509E227899D89FE0BC SIZE=894336
%COMMONFILES%\Symantec Shared\SPBBC\SPBBCDrv.sys [Symantec Corporation] [SPBBC] MD5=16AA4657806E3EA423D7E9286E763016 SIZE=389728
%SYSDIR%\svchost.exe -k imgsvc
%SYSDIR%\Drivers\SYMDNS.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=61A932F6E04C1D125659EC5F9A158CC1 SIZE=12680
%SYSDIR%\Drivers\SYMEVENT.SYS [Symantec Corporation] [SYMEVENT] MD5=C5EAFB6A8C73FB26B73EE613C1A5AEF6 SIZE=123952
%SYSDIR%\Drivers\SYMFW.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=033A6A91AA4162540C1E39A0D5C563C8 SIZE=98184
%SYSDIR%\Drivers\SYMIDS.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=071F8C6C95D8B632E73DCDBF865D8E46 SIZE=31624
%COMMONFILES%\Symantec Shared\SymcData\idsdefs\20080806.002\SymIDSCo.sys [Symantec Corporation] [Symantec Intrusion Detection] MD5=1DB45C243188F7B4C51DD7305D7E5CBB SIZE=240496
%SYSDIR%\drivers\symlcbrd.sys [Symantec Corporation] [Symantec Core Component] MD5=B226F8A4D780ACDF76145B58BB791D5B SIZE=10344
%SYSDIR%\Drivers\SYMNDIS.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=A6BBADD2472FFC5B6CE3198E13EE0E74 SIZE=28040
%SYSDIR%\Drivers\SYMREDRV.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=DF5514802A2E0A478E29BE2E33360807 SIZE=23944
%SYSDIR%\Drivers\SYMTDI.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=9DA226BC68389FBD6EC0E01286E7639C SIZE=189320
%SYSDIR%\DRIVERS\SynTP.sys [Synaptics, Inc.] [Synaptics Pointing Device Driver] MD5=0B186589EB1F3230A2A5C80B965FB662 SIZE=191936
%COMMONFILES%\Microsoft Shared\OFFICE11\MSOXMLMF.DLL [Microsoft Corporation] [Microsoft Office InfoPath] MD5=7469B9D06F0299273769C3E5365F5469 SIZE=39488
%PROGRAMFILES%\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll [Microsoft Corporation] [Messenger] MD5=56319E6B4D190A2DEB4463A9CE4D4F74 SIZE=66072
%COMMONFILES%\Microsoft Shared\Web Components\10\OWC10.DLL [Microsoft Corporation] [Microsoft Office XP] MD5=3299C3E1B8F103D20895AF663A1B4366 SIZE=7330360
%COMMONFILES%\Microsoft Shared\Web Components\11\OWC11.DLL [Microsoft Corporation] [Microsoft Office 2003] MD5=41FEA807D9FEA8DA5AD3E5705272BCC3 SIZE=8086072

End of Report
0
dnassur Messages postés 10 Statut Membre
 
Je viens de refaire une 2ème analyse plutot complète voici le rapport:

J'ai trouver 2 virus je les ai mis en quarantaine le rapport de quarantaine se trouve également en bas

Logfile of Spyware Terminator v2.3.0.487 (db:2.008.007.001)
Scan Time: 07/08/2008 18:37:29 length: 924 s
Platform: WXP (5.1.0.2600)
User: Admin
Boot Mode: Normal
Scan type: Full_Spyware_Scan
Scanned Objects: 108464 (Critical:1)
Filter: No System items, No Safe items, No Invalid items

Running Processes
Ati2evxx.exe [ATI Technologies Inc.] : C:\WINDOWS\system32\Ati2evxx.exe
ccSetMgr.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
ccProxy.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
SNDSrvc.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
SPBBCSvc.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
symlcsvc.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
LSSrvc.exe [Hewlett-Packard Company] : C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
navapsvc.exe [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
olMntrService.exe [Olivetti] : C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
ALUSchedulerSvc.exe [Symantec Corporation] : C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
Ati2evxx.exe [ATI Technologies Inc.] : C:\WINDOWS\system32\Ati2evxx.exe
HControl.exe : C:\WINDOWS\ATK0100\HControl.exe
ALU.exe : C:\Program Files\ASUS\ASUS Live Update\ALU.exe
PDVDServ.exe [Cyberlink Corp.] : C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe
ACMON.exe [ATK] : C:\Program Files\ASUS\Splendid\ACMON.exe
ChkMail.exe [asus] : C:\Program Files\ASUS\Asus ChkMail\ChkMail.exe
ACEngSvr.exe [ASUSTeK] : C:\WINDOWS\system32\ACEngSvr.exe
ATKOSD.exe : C:\WINDOWS\ATK0100\ATKOSD.exe
okwei.exe : C:\Documents and Settings\NASSUR\local settings\application data\okwei.exe
NSCSRVCE.EXE [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE

Internet Settings
R - HKCU\Software\Microsoft\Internet Explorer\Main, Search Bar = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = https://fr.yahoo.com/
R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant = http://www.google.com/toolbar/ie8/sidebar.html
R - HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName =

BHO
02 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - [Yahoo! Inc.] : C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
02 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
02 - BHO: CNavExtBho Class - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
02 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - [Google Inc.] : C:\Program Files\google\googletoolbar3.dll

Toolbars
03 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
03 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
03 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - [Google Inc.] : C:\Program Files\google\googletoolbar3.dll
03 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - [Yahoo! Inc.] : C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

StartUps
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, okwei : : C:\Documents and Settings\NASSUR\local settings\application data\okwei.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, HControl : : C:\WINDOWS\ATK0100\HControl.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, ASUS Live Update : : C:\Program Files\ASUS\ASUS Live Update\ALU.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, RemoteControl : [Cyberlink Corp.] : C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, ACMON : [ATK] : C:\Program Files\ASUS\Splendid\ACMON.exe
04 - Startup: %STARTUPALL%\ASUS ChkMail.lnk [asus] : C:\Program Files\ASUS\Asus ChkMail\ChkMail.exe

Shell Extensions
- {2F603045-309F-11CF-9774-0020AFD0CFF6} - [Synaptics, Inc.] : C:\Program Files\Synaptics\SynTP\SynTPCpl.dll
Mes dossiers de partage - {FC9FB64A-1EB2-4CCF-AF5E-1A497A9B5C2D} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\fsshext.8.5.1302.1018.dll
Microsoft Office Outlook - {00020D75-0000-0000-C000-000000000046} - [Microsoft Corporation] : C:\Program Files\Microsoft Office\OFFICE11\MLSHEXT.DLL
Outlook File Icon Extension - {0006F045-0000-0000-C000-000000000046} - [Microsoft Corporation] : C:\Program Files\Microsoft Office\OFFICE11\OLKFSTUB.DLL
YMailShellExt Class - {5464D816-CF16-4784-B9F3-75C0DB52B499} - [Yahoo! Inc.] : C:\Program Files\Yahoo!\Common\ymmapi.dll
WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} - : C:\Program Files\WinRAR\rarext.dll

Protocol Handler
- {828030A1-22C1-4009-854F-8E305202313F} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
- {828030A1-22C1-4009-854F-8E305202313F} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll

Services
23 - [Printing Communications Assoc., Inc. (PCAUSA)] : C:\WINDOWS\system32\ASNDIS5.SYS
23 - [ATI Technologies Inc.] : C:\WINDOWS\system32\Ati2evxx.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
23 - [Realtek Semiconductor Corp.] : C:\WINDOWS\system32\drivers\RtkHDAud.sys
23 - [Hewlett-Packard Company] : C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
23 - [Marvell Semiconductor, Inc] : C:\WINDOWS\system32\DRIVERS\MRVW245.sys
23 - : C:\WINDOWS\system32\DRIVERS\ATKACPI.sys
23 - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\VirusDefs\20080807.005\NAVENG.SYS
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\VirusDefs\20080807.005\NAVEX15.SYS
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
23 - [Olivetti] : C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
23 - [Symantec Corporation] : C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
23 - [REDC] : C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
23 - [REDC] : C:\WINDOWS\system32\DRIVERS\risdptsk.sys
23 - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRT.SYS
23 - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRTPEL.SYS
23 - [Motorola Inc.] : C:\WINDOWS\system32\DRIVERS\smserial.sys
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCDrv.sys
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMDNS.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMFW.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMIDS.SYS
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SymcData\idsdefs\20080806.002\SymIDSCo.sys
23 - [Symantec Corporation] : C:\WINDOWS\system32\drivers\symlcbrd.sys
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMNDIS.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMREDRV.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMTDI.SYS
23 - [Synaptics, Inc.] : C:\WINDOWS\system32\DRIVERS\SynTP.sys

Winlogon Notify
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent, DLLName : [ATI Technologies Inc.] : C:\WINDOWS\system32\Ati2evxx.dll

IE URL Search Hooks
Yahoo! Toolbar - {{EF99BD32-C1FB-11D2-892F-0090271D4F88}} - [Yahoo! Inc.] : C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

Threat Files
<AdWare.MailSkinner> : C:\WINDOWS\temp\msksetup.log

Advanced Files Report
%SYSDIR%\Ati2evxx.dll [ATI Technologies Inc.] [ATI External Event Utility for NT, W2K and W9X] MD5=176B19A74840A4C57ED8E74F67C45C57 SIZE=61440
%SYSDIR%\Ati2evxx.exe [ATI Technologies Inc.] [ATI External Event Utility for WindowsNT and Windows9X] MD5=E9B73D638608B5B20608DB28186D3494 SIZE=405504
%SYSDIR%\Ati2edxx.dll [ATI Technologies, Inc.] [ATI External Device Utility] MD5=E776B844F1775C3E17550782B17B2D73 SIZE=41984
%COMMONFILES%\Symantec Shared\ccSetMgr.exe [Symantec Corporation] [Client and Host Security Platform] MD5=3D6268B8EC5EE11BBAF9256252869589 SIZE=169320
%COMMONFILES%\Symantec Shared\ccL40.dll [Symantec Corporation] [Client and Host Security Platform] MD5=E646E2A2D759F55111170565400FBF4A SIZE=379240
%COMMONFILES%\Symantec Shared\ccVrTrst.dll [Symantec Corporation] [Client and Host Security Platform] MD5=0E5E24C0FED1C2DD08FD360EE36881CD SIZE=99688
%COMMONFILES%\Symantec Shared\ccSetEvt.dll [Symantec Corporation] [Client and Host Security Platform] MD5=3B82B72FBA2665D1DFD588144F999342 SIZE=87400
%COMMONFILES%\Symantec Shared\ccSet.dll [Symantec Corporation] [Client and Host Security Platform] MD5=4FFB9361442B829E3768D9BB6D3D3F4C SIZE=91496
%COMMONFILES%\Symantec Shared\SPBBC\SPBBCEvt.dll [Symantec Corporation] [SPBBC] MD5=B3A926B316949DE61FA297530378788F SIZE=714336
%SYSDIR%\SYMNETI.DLL [Symantec Corporation] [Symantec Security Drivers] MD5=EFE3BE005DEACB306DFFF16718842FBC SIZE=542088
%COMMONFILES%\Symantec Shared\AntiSpam\asSpmEvt.dll [Symantec Corporation] [Norton AntiSpam] MD5=C42A2442652F946E006C047103962C7A SIZE=130144
%COMMONFILES%\Symantec Shared\ccLogin.dll [Symantec Corporation] [Client and Host Security Platform] MD5=66E9483F9EC1FA113C4880E07FCA07AA SIZE=111976
%COMMONFILES%\Symantec Shared\ccPxyEvt.dll [Symantec Corporation] [Client and Host Security Platform] MD5=474E98FEDC903507F3F11B9697C94DDB SIZE=275816
%PROGRAMFILES%\Norton Internet Security\ISSvc.dll [Symantec Corporation] [Internet Security] MD5=EA46BE6214BEFC46443DC9BAEAE31DB4 SIZE=91776
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\HPPEVT32.DLL [Symantec Corporation] [Norton AntiVirus] MD5=80A039A02060954B4F418698DE7467D8 SIZE=145008
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\HPPRES32.LOC [Symantec Corporation] [Norton AntiVirus] MD5=5CF1C89B79E17A0A9D0A5928DF606D9D SIZE=71280
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVEvent.dll [Symantec Corporation] [Norton AntiVirus] MD5=AF5E7FE474631AE9A55F26A93422A468 SIZE=169584
%PROGRAMFILES%\Norton Internet Security\ObrkData.dll [Symantec Corporation] [Internet Security] MD5=875FFAC52BB3DD282B351A3DDE7CDB44 SIZE=278144
%COMMONFILES%\Symantec Shared\ccProxy.exe [Symantec Corporation] [Client and Host Security Platform] MD5=B5DA112DE760722A829F4FDE067F12B0 SIZE=202088
%SYSDIR%\SYMREDIR.dll [Symantec Corporation] [Symantec Security Drivers] MD5=E3C22F0302F2A9B1DEFE792C3E18F9B4 SIZE=161160
%COMMONFILES%\Symantec Shared\DPHTML.dll [Symantec Corporation] [Client and Host Security Platform] MD5=3068A33BE22FFBDC77F817B05F8F8339 SIZE=136552
%COMMONFILES%\Symantec Shared\DPJS.dll [Symantec Corporation] [Client and Host Security Platform] MD5=939EC796A6A75B48A60E78E10067164D SIZE=58728
%COMMONFILES%\Symantec Shared\DPVBS.dll [Symantec Corporation] [Client and Host Security Platform] MD5=850E884B0742B50FDB484A26F16E167D SIZE=54632
%COMMONFILES%\Symantec Shared\PFPriv.dll [Symantec Corporation] [Client and Host Security Platform] MD5=1166734E4ED207FF95A45BE3F1A55629 SIZE=99944
%COMMONFILES%\Symantec Shared\PFSec.dll [Symantec Corporation] [Client and Host Security Platform] MD5=F0CC197D0917197A09522D90C7FD3926 SIZE=54888
%COMMONFILES%\Symantec Shared\PFAdBlk.dll [Symantec Corporation] [Client and Host Security Platform] MD5=70B12DEC21639D36C4600D32DD0F8C8E SIZE=87664
%COMMONFILES%\Symantec Shared\PFMisc.dll [Symantec Corporation] [Client and Host Security Platform] MD5=35D400B91D85DBCCFF1C45AF23A3760A SIZE=44136
%COMMONFILES%\Symantec Shared\PxyHTTP.dll [Symantec Corporation] [Client and Host Security Platform] MD5=57CB0FA5B4E463323EA2E990DD64BACB SIZE=83304
%COMMONFILES%\Symantec Shared\DPHTTP.dll [Symantec Corporation] [Client and Host Security Platform] MD5=B69BF54DD075604DE852AEC0235273BE SIZE=91496
%COMMONFILES%\Symantec Shared\PxyIM.dll [Symantec Corporation] [Client and Host Security Platform] MD5=56E09769E08D63BDE1771D3BF0E9C2DB SIZE=26728
%COMMONFILES%\Symantec Shared\ccProSub.dll [Symantec Corporation] [Client and Host Security Platform] MD5=7558FCEAC03AADE70913231FE272540D SIZE=66920
%COMMONFILES%\Symantec Shared\ccCharCv.dll [Symantec Corporation] [Client and Host Security Platform] MD5=AF4B4B506F5F7AC0A0FAC121AF44ED29 SIZE=2598248
%COMMONFILES%\Symantec Shared\SNDSrvc.exe [Symantec Corporation] [Symantec Security Drivers] MD5=0CB1E12D9741308B5A9CDC5C7D2A1D97 SIZE=214408
%COMMONFILES%\Symantec Shared\SPBBC\SPBBCSvc.exe [Symantec Corporation] [SPBBC] MD5=780DE647691972907D86194577F58C43 SIZE=1160800
%COMMONFILES%\Symantec Shared\SPBBC\bbRGen.dll [Symantec Corporation] [SPBBC] MD5=3329D3F58730C89FDE1F989059861AE7 SIZE=444000
%COMMONFILES%\Symantec Shared\CCPD-LC\symlcsvc.exe [Symantec Corporation] [Symantec Core Component] MD5=FA2F6A8849219B16460BF44F9D1F3AA7 SIZE=1251720
%COMMONFILES%\Symantec Shared\CCPD-LC\symlcnet.dll [Symantec Corporation] [Symantec Core Component] MD5=7C7E6566AD8F97630E40E079E8160EBE SIZE=362376
%COMMONFILES%\LightScribe\LSSrvc.exe [Hewlett-Packard Company] [LightScribe] MD5=5712DCBE52D68865CCA91AE04807B755 SIZE=73728
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\navapsvc.exe [Symantec Corporation] [Norton AntiVirus] MD5=606C21D97649E5C44B94763380F07B7C SIZE=139888
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\SAVRT32.DLL [Symantec Corporation] [Symantec AntiVirus AutoProtect] MD5=2FC98A3447E97221F1206333223D2247 SIZE=231136
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\navapsvc.loc [Symantec Corporation] [Norton AntiVirus] MD5=DFA46BEB6D28CF7FE78A41B90CADA469 SIZE=11888
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\N32Exclu.dll [Symantec Corporation] [Norton AntiVirus] MD5=049D615D8E6D49C484FD7E7FBF802A2A SIZE=267888
%COMMONFILES%\Symantec Shared\DefUtDCD.dll [Symantec Corporation] [Symantec Definition Utilities] MD5=3CBBA49D8BF1D1F0F3B73375CBDE2289 SIZE=628312
%PROGRAMFILES%\Olivetti\ANY_WAY\olMntrService.exe [Olivetti] [Olivetti ANY_WAY] MD5=55EE2E98C2916914B2A2123250C22179 SIZE=86016
%PROGRAMFILES%\Olivetti\ANY_WAY\olMntrHid.dll [Olivetti] [Olivetti ANY_WAY] MD5=510E943ADDF121079B4CEE19E37202CE SIZE=221184
%PROGRAMFILES%\Symantec\LiveUpdate\ALUSchedulerSvc.exe [Symantec Corporation] [LiveUpdate] MD5=7768CE75C5CBF0D8F441CE2BBD806B7F SIZE=100032
%COMMONFILES%\Symantec Shared\AntiSpam\asOEHook.dll [Symantec Corporation] [Norton AntiSpam] MD5=558176FF5BC01F7C2B4F6B3E7B8E3800 SIZE=123488
%COMMONFILES%\Adobe\Acrobat\ActiveX\PDFShell.FRA [Adobe Systems, Inc.] [Adobe PDF Shell Extension] MD5=17C964594AC92EE0B67D9EA08F8A8FD0 SIZE=311296
%PROGRAMFILES%\Samsung\Samsung PC Studio 3\FunVideoCodecFilter.ax [Mobile Leader] [DirectShow FunBox Video Codec Filter] MD5=62808576D1BA85BC80B3F8EAFBE9F02E SIZE=53248
%COMMONFILES%\Ahead\DSFilter\NeVideo.ax [Nero AG] [Nero Suite] MD5=396A0060E457E43992E5A5943DB386DF SIZE=1039872
%COMMONFILES%\Ahead\Lib\AdvrCntr.dll [Ahead Software AG] [AdvrCntr Module] MD5=BEAA1253CDEFA26C1A8B1064F7CC9DA5 SIZE=2494530
%WINDIR%\ATK0100\CMSSC.dll MD5=E3E8DC9033D9C2AD2F30F23ADA3C4BE4 SIZE=57344
%WINDIR%\ATK0100\inter_f2.dll [ATK] [ATK0100] MD5=06B4C8D5D9708A7494AC7C02CD54650E SIZE=36864
%WINDIR%\ATK0100\ATKWLIOC.DLL [ACTIONTEC Electronics,Inc] [PRISM Wireless LAN] MD5=388CE212A119271EEA68F42712F3F64F SIZE=80384
%WINDIR%\ATK0100\SiSPkt.dll [Silicon Integrated Systems Corp.] [SiS160 Series Wireless LAN Adapter] MD5=E7C665D4AFAAB45A9086D02FFC87A4B4 SIZE=303104
%WINDIR%\ATK0100\ASUSNET.dll [ASUSNet Dynamic Link Library] MD5=08FFE12012ACF3F78F8A7A420C7A6919 SIZE=163840
%WINDIR%\ATK0100\ASW32N50.dll [Printing Communications Assoc., Inc. (PCAUSA)] [PCAUSA Rawether for Windows] MD5=E67DC20DC4A1F058779AA869176049F8 SIZE=61440
%SYSDIR%\SynCOM.dll [Synaptics, Inc.] [COM SDK] MD5=B5D354C594E70A0633CA7A564D565433 SIZE=82013
%SYSDIR%\SynTPAPI.dll [Synaptics, Inc.] [Synaptics Pointing Device Driver] MD5=A54FBB3E8CD5AE26B161690978308550 SIZE=94298
%COMMONFILES%\Symantec Shared\ccAlert.dll [Symantec Corporation] [Client and Host Security Platform] MD5=CF012BE29EAEADAE4F3CD67C81BA2F78 SIZE=222568
%COMMONFILES%\Symantec Shared\ccEmlPxy.dll [Symantec Corporation] [Client and Host Security Platform] MD5=FFA2915CEF332F5BA193848F9E9C9322 SIZE=259432
%COMMONFILES%\Symantec Shared\Options\symDynLd.dll [Symantec Corporation] [Norton AntiSpam] MD5=4ED998FAAD0CAA24B2413D0CCAD9029B SIZE=140384
%COMMONFILES%\Symantec Shared\Security Console\NSCTRAY.DLL [Symantec Corporation] [Norton Security Console] MD5=BE3620AC0CE26ABAE219DC97C62F26DA SIZE=210560
%COMMONFILES%\Symantec Shared\Security Console\NSCTRAY.LOC [Symantec Corporation] [Norton Security Console] MD5=FAF56CEAF2B58B5DC08A4128373436E3 SIZE=8832
%PROGRAMFILES%\Norton Internet Security\ISLAlert.dll [Symantec Corporation] [Internet Security] MD5=7F86DCD55FD3FFFBABD4219EB5F0F37B SIZE=329856
%PROGRAMFILES%\Norton Internet Security\AlertRes.dll [Symantec Corporation] [Internet Security] MD5=CA7B482247519699797AFF0A4807B019 SIZE=258672
%PROGRAMFILES%\Norton Internet Security\NisTray.dll [Symantec Corporation] [Internet Security] MD5=710E7515FE6049BD4AF252E8D980B489 SIZE=315520
%COMMONFILES%\Symantec Shared\Security Console\NSCUICOR.DLL [Symantec Corporation] [Norton Security Console] MD5=9F153F9D691A67774CDD313C5DD79E7A SIZE=689792
%COMMONFILES%\Symantec Shared\Security Console\NSCUICOR.LOC [Symantec Corporation] [Norton Security Console] MD5=3B50CCA46B60001083DA29DC2A866D32 SIZE=231000
%COMMONFILES%\Symantec Shared\Security Console\NSC_Hlpr.dll [Symantec Corporation] [Norton Security Console] MD5=C89F46AB32684C138E117F97DC4E25DD SIZE=79488
%PROGRAMFILES%\Norton Internet Security\NISTrRes.dll [Symantec Corporation] [Internet Security] MD5=3EAA6DFFC8364A547D5E8222F0D7D231 SIZE=24176
%COMMONFILES%\Symantec Shared\AntiSpam\asFilter.dll [Symantec Corporation] [Norton AntiSpam] MD5=639450DEEA7DEFB9D38025E135934952 SIZE=237664
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\ccIMScan.dll [Symantec Corporation] [Client and Host Security Platform] MD5=58CF3590CCAB448C578D5E28D6C42756 SIZE=132768
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\DefAlert.dll [Symantec Corporation] [Norton AntiVirus] MD5=7B3D423B135B03B7753A92A55EE42FF0 SIZE=300656
%COMMONFILES%\Symantec Shared\AntiSpam\asUniPlg.dll [Symantec Corporation] [Norton AntiSpam] MD5=3158B328C6295DDB36D5AC569ADFDC21 SIZE=97376
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\HPP32.DLL [Symantec Corporation] [Norton AntiVirus] MD5=3AB34DCAEDF1FC58097A3565545C7BAB SIZE=255600
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVAPW32.DLL [Symantec Corporation] [Norton AntiVirus] MD5=8F129F76DE1378D2C5344F7DE35DCD76 SIZE=218736
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\APWUTIL.DLL [Symantec Corporation] [Norton AntiVirus] MD5=52309E8FB19D0A1096B106C92F6F0F9A SIZE=124528
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVAPW32.LOC [Symantec Corporation] [Norton AntiVirus] MD5=8AA93D4544E1A6AD80F863D629650976 SIZE=71280
%PROGRAMFILES%\Norton Internet Security\ccFWSetg.dll [Symantec Corporation] [Client and Host Security Platform] MD5=92F3CABD6D5DF7E1A6957888B0D03B9B SIZE=476776
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVOptRF.dll [Symantec Corporation] [Norton AntiVirus] MD5=4535DBF9ACE2E48BA393F06884E19A50 SIZE=435856
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\Statushp.dll [Symantec Corporation] [Norton AntiVirus] MD5=2DBF9013684FD7FF4B48758A82FC4D94 SIZE=140912
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\Navlcom.dll [Symantec Corporation] [Norton AntiVirus] MD5=DFED853F722EC1B590E1C7BB5578C8E4 SIZE=181872
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVError.dll [Symantec Corporation] [Norton AntiVirus] MD5=1865CDB57AA35304B5BB763B9443C660 SIZE=79472
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\APWUTIL.LOC [Symantec Corporation] [Norton AntiVirus] MD5=D9654643BC28118D032C4EB416AF4742 SIZE=10352
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\apwcmdnt.dll [Symantec Corporation] [Norton AntiVirus] MD5=32A6AC48ED10D9AC26959B4872C5729C SIZE=247408
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\naverror.loc [Symantec Corporation] [Norton AntiVirus] MD5=08D93CCEC5F58109E3DC549B52DE1AA2 SIZE=12400
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\apwcmdNT.loc [Symantec Corporation] [Norton AntiVirus] MD5=9EC77B9D13042EDA840F5A28606860C5 SIZE=15984
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\ccAVMail.dll [Symantec Corporation] [Client and Host Security Platform] MD5=B94DF7EE6F09829B8C766A9871D82412 SIZE=108192
%PROGRAMFILES%\Norton Internet Security\ccEmlflt.dll [Symantec Corporation] [Client and Host Security Platform] MD5=449AFFCBD0C2EC388C451100E6494CA5 SIZE=145000
%PROGRAMFILES%\Norton Internet Security\ObrkAV.dll [Symantec Corporation] [Internet Security] MD5=EC8CB4B412270D85EF96F644C99E0555 SIZE=49792
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVSTATS.DLL [Symantec Corporation] [Norton AntiVirus] MD5=B8C82C0A31984480B7ACC15D30C1DB34 SIZE=132720
%PROGRAMFILES%\Norton Internet Security\ObrkIDS.dll [Symantec Corporation] [Internet Security] MD5=1E7967E276EFC14A6246CCC66B7572C2 SIZE=80000
%PROGRAMFILES%\Norton Internet Security\SymFWAgt.dll [Symantec Corporation] [Client and Host Security Platform] MD5=E0A8A2AA3586B34E9A0EE3802461BC86 SIZE=165480
%COMMONFILES%\Symantec Shared\Security Console\NSCSRVPS.DLL [Symantec Corporation] [Norton Security Console] MD5=F8527D249C48903F2F7C72BA924B2EBA SIZE=30848
%COMMONFILES%\Symantec Shared\Security Console\NSCUIBL.DLL [Symantec Corporation] [Norton Security Console] MD5=DD7D5029E57B3C47F2E95AC0DD9377BE SIZE=448128
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVOpts.dll [Symantec Corporation] [Norton AntiVirus] MD5=2C2C15365CE13A557470EEF7E88BD474 SIZE=370288
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\navopts.loc [Symantec Corporation] [Norton AntiVirus] MD5=B134A8D2C14E9D6ECA2566B655F58B45 SIZE=570992
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVAPSCR.dll [Symantec Corporation] [Norton AntiVirus] MD5=1647965D73194F932EEBD6A8CE73CE2F SIZE=87664
%PROGRAMFILES%\Symantec\LiveUpdate\ProductRegCom_3_0.DLL [Symantec Corporation] [LiveUpdate] MD5=F08EA5AA95C26FB9F39940006E727D6D SIZE=259776
%PROGRAMFILES%\Symantec\LiveUpdate\NetDetectController_3_0.DLL [Symantec Corporation] [LiveUpdate] MD5=B08F395B1402540A58D7845921584257 SIZE=75456
%PROGRAMFILES%\Symantec\LiveUpdate\LuComServerPS_3_0.DLL [Symantec Corporation] [LiveUpdate] MD5=8F61E6CBEC31A21CC570CE4FD40B76CD SIZE=75456
%PROGRAMFILES%\Norton Internet Security\NISAlert.dll [Symantec Corporation] [Internet Security] MD5=626A209181B4D3D2968A998C62B9C297 SIZE=263808
%PROGRAMFILES%\Norton Internet Security\NISRes.dll [Symantec Corporation] [Internet Security] MD5=546BFC8755EDB2E7E35EA9239BE37E55 SIZE=886392
%PROGRAMFILES%\Norton Internet Security\TLevel.dll [Symantec Corporation] [Client and Host Security Platform] MD5=694D3F30232736D57291978E5136DBE0 SIZE=108136
%PROGRAMFILES%\ASUS\Splendid\GLCDdll.dll [GLCDdll] MD5=00202E4CB0D0567D3E7475221E84925E SIZE=49152
%PROGRAMFILES%\ASUS\Splendid\OVS.dll [ASUSTek] [OVS] MD5=85C57CD47F292E248E56A41E7E7A19C6 SIZE=32768
%PROGRAMFILES%\ASUS\Splendid\Chameleon.dll [ASUSTeK] [ASUSTeK Chameleon Engine] MD5=98AB7A3AC4155640146F6BEC422C81E4 SIZE=53248
%PROGRAMFILES%\ASUS\Asus ChkMail\ChkMail.exe [asus] [asus ChkMail] MD5=84CC718A4B71EAAC9E98E0A52629D485 SIZE=32768
%SYSDIR%\ACEngSvr.exe [ASUSTeK] [ACEngSvr Module] MD5=A391896CD406E6377F5CEF31FDC12019 SIZE=155648
%WINDIR%\ATK0100\ATKOSD.exe [ATK0100] MD5=BC06D2BA44D43577D0FA841D3F54AEAF SIZE=2170880
%COMMONFILES%\Symantec Shared\Security Console\NSCSRVCE.EXE [Symantec Corporation] [Norton Security Console] MD5=BDFD869422054A90372BF26FF4442C27 SIZE=750720
%COMMONFILES%\Symantec Shared\Security Console\NSCJSBL.DLL [Symantec Corporation] [Norton Security Console] MD5=8E087B891842397C2DF85A11699F1112 SIZE=128640
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\avFPXY.dll [Symantec Corporation] [Norton Security Console] MD5=1B1E38513F5C9230FAC24A762AE6EFF5 SIZE=41584
%PROGRAMFILES%\Norton Internet Security\isFtMst.dll [Symantec Corporation] [Norton Security Console] MD5=9B4FF672902BC0D31A41C6666815799B SIZE=95872
%PROGRAMFILES%\Norton Internet Security\nscNISpi.dll [Symantec Corporation] [Internet Security] MD5=BC2B1C03D1392317D04EE1545719E978 SIZE=167040
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\avNSCPlg.dll [Symantec Corporation] [Norton AntiVirus] MD5=4552C02F7B687C7798568CAA97EA3135 SIZE=181872
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\avNSCPlg.loc [Symantec Corporation] [Norton AntiVirus] MD5=E502B33274C8C0A8B8A0CB78FD795737 SIZE=21616
%COMMONFILES%\Symantec Shared\Security Console\NSC_WSCR.DLL [Symantec Corporation] [Norton Security Console] MD5=5E7F6C071A1E46D3BD31A4C41F06EABB SIZE=312960
%COMMONFILES%\Symantec Shared\Security Console\NSC_WSCR.LOC [Symantec Corporation] [Norton Security Console] MD5=26F2BD09459EDDFA65C607F8C15FE237 SIZE=12928
%PROGRAMFILES%\Norton Internet Security\isFtPxy.dll [Symantec Corporation] [Norton Security Console] MD5=FCAC6C987B88B36A141012D488FE30F9 SIZE=41600
%PROGRAMFILES%\Norton Internet Security\nisProd.dll [Symantec Corporation] [Internet Security] MD5=D63EB1ABFB13B29BD0F089CE6F7AD98E SIZE=501376
%COMMONFILES%\Symantec Shared\AntiSpam\asFtPxy.dll [Symantec Corporation] [Norton Security Console] MD5=CC5D0E949ABE24C8A56E366BA89B67F5 SIZE=41568
%COMMONFILES%\Symantec Shared\AntiSpam\asNSCPlg.dll [Symantec Corporation] [Norton AntiSpam] MD5=BA252928F4F6AC04BE798A52FC3C53EB SIZE=48224
%COMMONFILES%\Symantec Shared\Options\asOpts.dll [Symantec Corporation] [Norton AntiSpam] MD5=CA77836E7762EF48B4A533A2160BD555 SIZE=414304
%COMMONFILES%\Symantec Shared\AdBlocking\adFtPxy.dll [Symantec Corporation] [Norton Security Console] MD5=523374F7CB05EEB5882481982E5212BE SIZE=41568
%COMMONFILES%\Symantec Shared\AdBlocking\adNscPlg.dll [Symantec Corporation] [Ad Blocking] MD5=12E4F6DDDE44222BF43364E864C9BC27 SIZE=75360
%COMMONFILES%\Symantec Shared\Options\SymAd.dll [Symantec Corporation] [Ad Blocking] MD5=02EE088E83F96CDEE53B1EE1C327A639 SIZE=222816
%COMMONFILES%\Symantec Shared\AdBlocking\SHEXTRES.DLL [Symantec Corporation] [Internet Security] MD5=2084BFB95D8EC0C78C2F3B3438D46238 SIZE=11376
%PROGRAMFILES%\google\googletoolbar3.dll [Google Inc.] [Barre d'outils Google pour IE] MD5=F5F55FD61AB135233C24B90D9EDA2521 SIZE=2582136
%PROGRAMFILES%\Yahoo!\Companion\Installs\cpn\yt.dll [Yahoo! Inc.] [Yahoo! Toolbar] MD5=5A9E77C71D6D7030BC170DD7CF04CF5D SIZE=817936
%PROGRAMFILES%\Yahoo!\Companion\Installs\cpn\YCAPlugin.dll [Yahoo! Inc.] [Yahoo! Toolbar Anti-Spy Plug-In] MD5=C5E47F9D8E51FE14EFE67A9FD62E1D52 SIZE=110448
%SYSDIR%\Macromed\Flash\Flash9f.ocx [Adobe Systems, Inc.] [Shockwave Flash] MD5=48FDF435B8595604E54125B321924510 SIZE=2991488
deskpan.dll
%PROGRAMFILES%\Synaptics\SynTP\SynTPCpl.dll [Synaptics, Inc.] [Synaptics Pointing Device Driver] MD5=2C9B34BBABFFCB5E1FA1EAE8111E3D80 SIZE=6135898
%PROGRAMFILES%\Windows Live\Messenger\fsshext.8.5.1302.1018.dll [Microsoft Corporation] [Messenger] MD5=8BDE1F61DFBAAE7A2916170E8B75FE0F SIZE=329240
%PROGRAMFILES%\Microsoft Office\OFFICE11\MLSHEXT.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=2C52103F83C6AF5617DC574888582D76 SIZE=29272
%PROGRAMFILES%\Microsoft Office\OFFICE11\OLKFSTUB.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=96EA89DA972DD842910AA9AA80BC013E SIZE=232536
%PROGRAMFILES%\Yahoo!\Common\ymmapi.dll [Yahoo! Inc.] [YMMAPI Module] MD5=A0C86DB296BBE76145377D56C5975175 SIZE=190496
%PROGRAMFILES%\WinRAR\rarext.dll MD5=023707D932BA31314210E6844D33D500 SIZE=129024
%SYSDIR%\ASNDIS5.SYS [Printing Communications Assoc., Inc. (PCAUSA)] [PCAUSA Rawether for Windows] MD5=05A56C3156E1B6CC7BBD8E1D54D491F2 SIZE=16269
%SYSDIR%\svchost.exe -k netsvcs
%SYSDIR%\svchost -k DcomLaunch
%SYSDIR%\svchost.exe -k NetworkService
%COMMONFILES%\Symantec Shared\EENGINE\eeCtrl.sys [Symantec Corporation] [ERASER ENGINE] MD5=E89CC1363CB7F5320AE3B41C1333D0C3 SIZE=385072
%COMMONFILES%\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [Symantec Corporation] [ERASER ENGINE] MD5=E7D1A496C71CD56BDD97F32C9141A03B SIZE=109616
%SYSDIR%\drivers\RtkHDAud.sys [Realtek Semiconductor Corp.] [Realtek(r) High Definition Audio Function Driver (HRTF data Copyright 1994 by MIT Media Lab)] MD5=71AE838A88B07268D732F596FC17CED5 SIZE=4262912
%SYSDIR%\svchost.exe -k LocalService
%SYSDIR%\DRIVERS\MRVW245.sys [Marvell Semiconductor, Inc] [Device driver for Marvell 802.11n NIC] MD5=275796D1114B524AEC686091E8AAFD3C SIZE=499328
%SYSDIR%\DRIVERS\ATKACPI.sys [ATK0100 ACPI Utility] MD5=E333010A50BF603ACC350F6019E9CE02 SIZE=5632
%COMMONFILES%\Symantec Shared\VirusDefs\20080807.005\NAVENG.SYS [Symantec Corporation] [Symantec Antivirus Engine] MD5=E8C8A45C761DC2B807698642A3BB0B55 SIZE=89936
%COMMONFILES%\Symantec Shared\VirusDefs\20080807.005\NAVEX15.SYS [Symantec Corporation] [Symantec Antivirus Engine] MD5=672ED614F1E2F388B20290B2DA1B8DAD SIZE=856336
%SYSDIR%\DRIVERS\rimsptsk.sys [REDC] [Ricoh Memorystick Controller] MD5=1BDBA2D2D402415A78A4BA766DFE0F7B SIZE=51328
%SYSDIR%\DRIVERS\risdptsk.sys [REDC] [RICOH SD/MMC Driver] MD5=ACE2CE73D7B04EAC48FB80482E05E770 SIZE=27904
%SYSDIR%\svchost -k rpcss
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\SAVRT.SYS [Symantec Corporation] [Symantec AntiVirus AutoProtect] MD5=21BA125B956A513F85F6AB1DD603F917 SIZE=334984
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\SAVRTPEL.SYS [Symantec Corporation] [Symantec AntiVirus AutoProtect] MD5=0F8E1C05FC1298F8E7CEA935429F66FF SIZE=53896
%SYSDIR%\DRIVERS\smserial.sys [Motorola Inc.] [Motorola SM56 Modem] MD5=491017919CCB78509E227899D89FE0BC SIZE=894336
%COMMONFILES%\Symantec Shared\SPBBC\SPBBCDrv.sys [Symantec Corporation] [SPBBC] MD5=16AA4657806E3EA423D7E9286E763016 SIZE=389728
%SYSDIR%\svchost.exe -k imgsvc
%SYSDIR%\Drivers\SYMDNS.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=61A932F6E04C1D125659EC5F9A158CC1 SIZE=12680
%SYSDIR%\Drivers\SYMEVENT.SYS [Symantec Corporation] [SYMEVENT] MD5=C5EAFB6A8C73FB26B73EE613C1A5AEF6 SIZE=123952
%SYSDIR%\Drivers\SYMFW.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=033A6A91AA4162540C1E39A0D5C563C8 SIZE=98184
%SYSDIR%\Drivers\SYMIDS.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=071F8C6C95D8B632E73DCDBF865D8E46 SIZE=31624
%COMMONFILES%\Symantec Shared\SymcData\idsdefs\20080806.002\SymIDSCo.sys [Symantec Corporation] [Symantec Intrusion Detection] MD5=1DB45C243188F7B4C51DD7305D7E5CBB SIZE=240496
%SYSDIR%\drivers\symlcbrd.sys [Symantec Corporation] [Symantec Core Component] MD5=B226F8A4D780ACDF76145B58BB791D5B SIZE=10344
%SYSDIR%\Drivers\SYMNDIS.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=A6BBADD2472FFC5B6CE3198E13EE0E74 SIZE=28040
%SYSDIR%\Drivers\SYMREDRV.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=DF5514802A2E0A478E29BE2E33360807 SIZE=23944
%SYSDIR%\Drivers\SYMTDI.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=9DA226BC68389FBD6EC0E01286E7639C SIZE=189320
%SYSDIR%\DRIVERS\SynTP.sys [Synaptics, Inc.] [Synaptics Pointing Device Driver] MD5=0B186589EB1F3230A2A5C80B965FB662 SIZE=191936
%PROGRAMFILES%\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll [Microsoft Corporation] [Messenger] MD5=56319E6B4D190A2DEB4463A9CE4D4F74 SIZE=66072
%COMMONFILES%\Adobe\Updater5\AdobeUpdater.es_ES [Adobe Systems Incorporated] [Adobe Updater] MD5=9CD71F31D3D66802F41CB85FC40E351B SIZE=65728
%SYSDIR%\pxdrv.dll [Sonic Solutions] [Px] MD5=09BA2A524D95884E2D6B973167BC696F SIZE=518904

End of Report


Déplacement en quarantaine:

Préparation…
Création d'un point de restauration
Quarantaine AdWare.MailSkinner
Les fichiers sélectionnés ont été déplacés.: C:\WINDOWS\temp\msksetup.log
Fermeture du point de restauration système
Analyse(s) terminée(s)
0
sherred Messages postés 8605 Statut Membre 351 > dnassur Messages postés 10 Statut Membre
 
Mailskinner est un "faux" logiciel qui propose des émoticônes
reposte un hijack stp
0
Réponse 3 / 6
dnassur Messages postés 10 Statut Membre
 
Je scane une 2ème fois et je poste le nouveau raport?
0
sherred Messages postés 8605 Statut Membre 351
 
oui avec hijack
0
Réponse 4 / 6
dnassur Messages postés 10 Statut Membre
 
Voici l nouveau rapport.

Je pense que le PC a été infecté par un vius ""Spyware-secure" une page se lance automatiquement en m'invitant à telecharger ça:

Logfile of Spyware Terminator v2.3.0.487 (db:2.008.007.001)
Scan Time: 08/08/2008 10:54:39 length: 983 s
Platform: WXP (5.1.0.2600)
User: Admin
Boot Mode: Normal
Scan type: Full_Spyware_Scan
Scanned Objects: 111074 (Critical:0)
Filter: No System items, No Safe items, No Invalid items

Running Processes
Ati2evxx.exe [ATI Technologies Inc.] : C:\WINDOWS\system32\Ati2evxx.exe
ccSetMgr.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
ccProxy.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
SNDSrvc.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
SPBBCSvc.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
symlcsvc.exe [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
LSSrvc.exe [Hewlett-Packard Company] : C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
navapsvc.exe [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
olMntrService.exe [Olivetti] : C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
ALUSchedulerSvc.exe [Symantec Corporation] : C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
Ati2evxx.exe [ATI Technologies Inc.] : C:\WINDOWS\system32\Ati2evxx.exe
HControl.exe : C:\WINDOWS\ATK0100\HControl.exe
ALU.exe : C:\Program Files\ASUS\ASUS Live Update\ALU.exe
PDVDServ.exe [Cyberlink Corp.] : C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe
ACMON.exe [ATK] : C:\Program Files\ASUS\Splendid\ACMON.exe
ACEngSvr.exe [ASUSTeK] : C:\WINDOWS\system32\ACEngSvr.exe
okwei.exe : C:\Documents and Settings\NASSUR\local settings\application data\okwei.exe
msnmsgr.exe [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msnmsgr.exe
ATKOSD.exe : C:\WINDOWS\ATK0100\ATKOSD.exe
ChkMail.exe [asus] : C:\Program Files\ASUS\Asus ChkMail\ChkMail.exe
NSCSRVCE.EXE [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE

Internet Settings
R - HKCU\Software\Microsoft\Internet Explorer\Main, Search Bar = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R - HKLM\Software\Microsoft\Internet Explorer\Main, SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R - HKLM\Software\Microsoft\Internet Explorer\Main, CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = https://fr.yahoo.com/
R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R - HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName =

BHO
02 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - [Yahoo! Inc.] : C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
02 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
02 - BHO: CNavExtBho Class - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
02 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - [Google Inc.] : C:\Program Files\google\googletoolbar3.dll

Toolbars
03 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
03 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
03 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - [Google Inc.] : C:\Program Files\google\googletoolbar3.dll
03 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - [Yahoo! Inc.] : C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

StartUps
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, okwei : : C:\Documents and Settings\NASSUR\local settings\application data\okwei.exe
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, msnmsgr : [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msnmsgr.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, HControl : : C:\WINDOWS\ATK0100\HControl.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, ASUS Live Update : : C:\Program Files\ASUS\ASUS Live Update\ALU.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, RemoteControl : [Cyberlink Corp.] : C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, ACMON : [ATK] : C:\Program Files\ASUS\Splendid\ACMON.exe
04 - Startup: %STARTUPALL%\ASUS ChkMail.lnk [asus] : C:\Program Files\ASUS\Asus ChkMail\ChkMail.exe

Shell Extensions
- {2F603045-309F-11CF-9774-0020AFD0CFF6} - [Synaptics, Inc.] : C:\Program Files\Synaptics\SynTP\SynTPCpl.dll
Mes dossiers de partage - {FC9FB64A-1EB2-4CCF-AF5E-1A497A9B5C2D} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\fsshext.8.5.1302.1018.dll
Microsoft Office Outlook - {00020D75-0000-0000-C000-000000000046} - [Microsoft Corporation] : C:\Program Files\Microsoft Office\OFFICE11\MLSHEXT.DLL
Outlook File Icon Extension - {0006F045-0000-0000-C000-000000000046} - [Microsoft Corporation] : C:\Program Files\Microsoft Office\OFFICE11\OLKFSTUB.DLL
YMailShellExt Class - {5464D816-CF16-4784-B9F3-75C0DB52B499} - [Yahoo! Inc.] : C:\Program Files\Yahoo!\Common\ymmapi.dll
WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} - : C:\Program Files\WinRAR\rarext.dll

Protocol Handler
- {828030A1-22C1-4009-854F-8E305202313F} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
- {828030A1-22C1-4009-854F-8E305202313F} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll

Services
23 - [Printing Communications Assoc., Inc. (PCAUSA)] : C:\WINDOWS\system32\ASNDIS5.SYS
23 - [ATI Technologies Inc.] : C:\WINDOWS\system32\Ati2evxx.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
23 - [Realtek Semiconductor Corp.] : C:\WINDOWS\system32\drivers\RtkHDAud.sys
23 - [Hewlett-Packard Company] : C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
23 - [Marvell Semiconductor, Inc] : C:\WINDOWS\system32\DRIVERS\MRVW245.sys
23 - : C:\WINDOWS\system32\DRIVERS\ATKACPI.sys
23 - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\VirusDefs\20080807.005\NAVENG.SYS
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\VirusDefs\20080807.005\NAVEX15.SYS
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
23 - [Olivetti] : C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
23 - [Symantec Corporation] : C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
23 - [REDC] : C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
23 - [REDC] : C:\WINDOWS\system32\DRIVERS\risdptsk.sys
23 - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRT.SYS
23 - [Symantec Corporation] : C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRTPEL.SYS
23 - [Motorola Inc.] : C:\WINDOWS\system32\DRIVERS\smserial.sys
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCDrv.sys
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMDNS.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMFW.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMIDS.SYS
23 - [Symantec Corporation] : C:\Program Files\Fichiers communs\Symantec Shared\SymcData\idsdefs\20080806.002\SymIDSCo.sys
23 - [Symantec Corporation] : C:\WINDOWS\system32\drivers\symlcbrd.sys
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMNDIS.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMREDRV.SYS
23 - [Symantec Corporation] : C:\WINDOWS\system32\Drivers\SYMTDI.SYS
23 - [Synaptics, Inc.] : C:\WINDOWS\system32\DRIVERS\SynTP.sys

Winlogon Notify
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent, DLLName : [ATI Technologies Inc.] : C:\WINDOWS\system32\Ati2evxx.dll

Advanced Files Report
%SYSDIR%\Ati2evxx.dll [ATI Technologies Inc.] [ATI External Event Utility for NT, W2K and W9X] MD5=176B19A74840A4C57ED8E74F67C45C57 SIZE=61440
%SYSDIR%\Ati2evxx.exe [ATI Technologies Inc.] [ATI External Event Utility for WindowsNT and Windows9X] MD5=E9B73D638608B5B20608DB28186D3494 SIZE=405504
%SYSDIR%\Ati2edxx.dll [ATI Technologies, Inc.] [ATI External Device Utility] MD5=E776B844F1775C3E17550782B17B2D73 SIZE=41984
%COMMONFILES%\Symantec Shared\ccSetMgr.exe [Symantec Corporation] [Client and Host Security Platform] MD5=3D6268B8EC5EE11BBAF9256252869589 SIZE=169320
%COMMONFILES%\Symantec Shared\ccL40.dll [Symantec Corporation] [Client and Host Security Platform] MD5=E646E2A2D759F55111170565400FBF4A SIZE=379240
%COMMONFILES%\Symantec Shared\ccVrTrst.dll [Symantec Corporation] [Client and Host Security Platform] MD5=0E5E24C0FED1C2DD08FD360EE36881CD SIZE=99688
%COMMONFILES%\Symantec Shared\ccSetEvt.dll [Symantec Corporation] [Client and Host Security Platform] MD5=3B82B72FBA2665D1DFD588144F999342 SIZE=87400
%COMMONFILES%\Symantec Shared\ccSet.dll [Symantec Corporation] [Client and Host Security Platform] MD5=4FFB9361442B829E3768D9BB6D3D3F4C SIZE=91496
%COMMONFILES%\Symantec Shared\SPBBC\SPBBCEvt.dll [Symantec Corporation] [SPBBC] MD5=B3A926B316949DE61FA297530378788F SIZE=714336
%SYSDIR%\SYMNETI.DLL [Symantec Corporation] [Symantec Security Drivers] MD5=EFE3BE005DEACB306DFFF16718842FBC SIZE=542088
%COMMONFILES%\Symantec Shared\AntiSpam\asSpmEvt.dll [Symantec Corporation] [Norton AntiSpam] MD5=C42A2442652F946E006C047103962C7A SIZE=130144
%COMMONFILES%\Symantec Shared\ccLogin.dll [Symantec Corporation] [Client and Host Security Platform] MD5=66E9483F9EC1FA113C4880E07FCA07AA SIZE=111976
%COMMONFILES%\Symantec Shared\ccPxyEvt.dll [Symantec Corporation] [Client and Host Security Platform] MD5=474E98FEDC903507F3F11B9697C94DDB SIZE=275816
%PROGRAMFILES%\Norton Internet Security\ISSvc.dll [Symantec Corporation] [Internet Security] MD5=EA46BE6214BEFC46443DC9BAEAE31DB4 SIZE=91776
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\HPPEVT32.DLL [Symantec Corporation] [Norton AntiVirus] MD5=80A039A02060954B4F418698DE7467D8 SIZE=145008
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\HPPRES32.LOC [Symantec Corporation] [Norton AntiVirus] MD5=5CF1C89B79E17A0A9D0A5928DF606D9D SIZE=71280
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVEvent.dll [Symantec Corporation] [Norton AntiVirus] MD5=AF5E7FE474631AE9A55F26A93422A468 SIZE=169584
%PROGRAMFILES%\Norton Internet Security\ObrkData.dll [Symantec Corporation] [Internet Security] MD5=875FFAC52BB3DD282B351A3DDE7CDB44 SIZE=278144
%COMMONFILES%\Symantec Shared\ccProxy.exe [Symantec Corporation] [Client and Host Security Platform] MD5=B5DA112DE760722A829F4FDE067F12B0 SIZE=202088
%SYSDIR%\SYMREDIR.dll [Symantec Corporation] [Symantec Security Drivers] MD5=E3C22F0302F2A9B1DEFE792C3E18F9B4 SIZE=161160
%COMMONFILES%\Symantec Shared\DPHTML.dll [Symantec Corporation] [Client and Host Security Platform] MD5=3068A33BE22FFBDC77F817B05F8F8339 SIZE=136552
%COMMONFILES%\Symantec Shared\DPJS.dll [Symantec Corporation] [Client and Host Security Platform] MD5=939EC796A6A75B48A60E78E10067164D SIZE=58728
%COMMONFILES%\Symantec Shared\DPVBS.dll [Symantec Corporation] [Client and Host Security Platform] MD5=850E884B0742B50FDB484A26F16E167D SIZE=54632
%COMMONFILES%\Symantec Shared\PFPriv.dll [Symantec Corporation] [Client and Host Security Platform] MD5=1166734E4ED207FF95A45BE3F1A55629 SIZE=99944
%COMMONFILES%\Symantec Shared\PFSec.dll [Symantec Corporation] [Client and Host Security Platform] MD5=F0CC197D0917197A09522D90C7FD3926 SIZE=54888
%COMMONFILES%\Symantec Shared\PFAdBlk.dll [Symantec Corporation] [Client and Host Security Platform] MD5=70B12DEC21639D36C4600D32DD0F8C8E SIZE=87664
%COMMONFILES%\Symantec Shared\PFMisc.dll [Symantec Corporation] [Client and Host Security Platform] MD5=35D400B91D85DBCCFF1C45AF23A3760A SIZE=44136
%COMMONFILES%\Symantec Shared\PxyHTTP.dll [Symantec Corporation] [Client and Host Security Platform] MD5=57CB0FA5B4E463323EA2E990DD64BACB SIZE=83304
%COMMONFILES%\Symantec Shared\DPHTTP.dll [Symantec Corporation] [Client and Host Security Platform] MD5=B69BF54DD075604DE852AEC0235273BE SIZE=91496
%COMMONFILES%\Symantec Shared\PxyIM.dll [Symantec Corporation] [Client and Host Security Platform] MD5=56E09769E08D63BDE1771D3BF0E9C2DB SIZE=26728
%COMMONFILES%\Symantec Shared\ccProSub.dll [Symantec Corporation] [Client and Host Security Platform] MD5=7558FCEAC03AADE70913231FE272540D SIZE=66920
%COMMONFILES%\Symantec Shared\ccCharCv.dll [Symantec Corporation] [Client and Host Security Platform] MD5=AF4B4B506F5F7AC0A0FAC121AF44ED29 SIZE=2598248
%COMMONFILES%\Symantec Shared\SNDSrvc.exe [Symantec Corporation] [Symantec Security Drivers] MD5=0CB1E12D9741308B5A9CDC5C7D2A1D97 SIZE=214408
%COMMONFILES%\Symantec Shared\SPBBC\SPBBCSvc.exe [Symantec Corporation] [SPBBC] MD5=780DE647691972907D86194577F58C43 SIZE=1160800
%COMMONFILES%\Symantec Shared\SPBBC\bbRGen.dll [Symantec Corporation] [SPBBC] MD5=3329D3F58730C89FDE1F989059861AE7 SIZE=444000
%COMMONFILES%\Symantec Shared\CCPD-LC\symlcsvc.exe [Symantec Corporation] [Symantec Core Component] MD5=FA2F6A8849219B16460BF44F9D1F3AA7 SIZE=1251720
%COMMONFILES%\Symantec Shared\CCPD-LC\symlcnet.dll [Symantec Corporation] [Symantec Core Component] MD5=7C7E6566AD8F97630E40E079E8160EBE SIZE=362376
%COMMONFILES%\LightScribe\LSSrvc.exe [Hewlett-Packard Company] [LightScribe] MD5=5712DCBE52D68865CCA91AE04807B755 SIZE=73728
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\navapsvc.exe [Symantec Corporation] [Norton AntiVirus] MD5=606C21D97649E5C44B94763380F07B7C SIZE=139888
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\SAVRT32.DLL [Symantec Corporation] [Symantec AntiVirus AutoProtect] MD5=2FC98A3447E97221F1206333223D2247 SIZE=231136
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\navapsvc.loc [Symantec Corporation] [Norton AntiVirus] MD5=DFA46BEB6D28CF7FE78A41B90CADA469 SIZE=11888
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\N32Exclu.dll [Symantec Corporation] [Norton AntiVirus] MD5=049D615D8E6D49C484FD7E7FBF802A2A SIZE=267888
%PROGRAMFILES%\Olivetti\ANY_WAY\olMntrService.exe [Olivetti] [Olivetti ANY_WAY] MD5=55EE2E98C2916914B2A2123250C22179 SIZE=86016
%PROGRAMFILES%\Olivetti\ANY_WAY\olMntrHid.dll [Olivetti] [Olivetti ANY_WAY] MD5=510E943ADDF121079B4CEE19E37202CE SIZE=221184
%PROGRAMFILES%\Symantec\LiveUpdate\ALUSchedulerSvc.exe [Symantec Corporation] [LiveUpdate] MD5=7768CE75C5CBF0D8F441CE2BBD806B7F SIZE=100032
%COMMONFILES%\Symantec Shared\AntiSpam\asOEHook.dll [Symantec Corporation] [Norton AntiSpam] MD5=558176FF5BC01F7C2B4F6B3E7B8E3800 SIZE=123488
%WINDIR%\ATK0100\CMSSC.dll MD5=E3E8DC9033D9C2AD2F30F23ADA3C4BE4 SIZE=57344
%WINDIR%\ATK0100\inter_f2.dll [ATK] [ATK0100] MD5=06B4C8D5D9708A7494AC7C02CD54650E SIZE=36864
%WINDIR%\ATK0100\ATKWLIOC.DLL [ACTIONTEC Electronics,Inc] [PRISM Wireless LAN] MD5=388CE212A119271EEA68F42712F3F64F SIZE=80384
%WINDIR%\ATK0100\SiSPkt.dll [Silicon Integrated Systems Corp.] [SiS160 Series Wireless LAN Adapter] MD5=E7C665D4AFAAB45A9086D02FFC87A4B4 SIZE=303104
%WINDIR%\ATK0100\ASUSNET.dll [ASUSNet Dynamic Link Library] MD5=08FFE12012ACF3F78F8A7A420C7A6919 SIZE=163840
%WINDIR%\ATK0100\ASW32N50.dll [Printing Communications Assoc., Inc. (PCAUSA)] [PCAUSA Rawether for Windows] MD5=E67DC20DC4A1F058779AA869176049F8 SIZE=61440
%SYSDIR%\SynCOM.dll [Synaptics, Inc.] [COM SDK] MD5=B5D354C594E70A0633CA7A564D565433 SIZE=82013
%SYSDIR%\SynTPAPI.dll [Synaptics, Inc.] [Synaptics Pointing Device Driver] MD5=A54FBB3E8CD5AE26B161690978308550 SIZE=94298
%COMMONFILES%\Symantec Shared\ccAlert.dll [Symantec Corporation] [Client and Host Security Platform] MD5=CF012BE29EAEADAE4F3CD67C81BA2F78 SIZE=222568
%COMMONFILES%\Symantec Shared\ccEmlPxy.dll [Symantec Corporation] [Client and Host Security Platform] MD5=FFA2915CEF332F5BA193848F9E9C9322 SIZE=259432
%COMMONFILES%\Symantec Shared\Options\symDynLd.dll [Symantec Corporation] [Norton AntiSpam] MD5=4ED998FAAD0CAA24B2413D0CCAD9029B SIZE=140384
%COMMONFILES%\Symantec Shared\Security Console\NSCTRAY.DLL [Symantec Corporation] [Norton Security Console] MD5=BE3620AC0CE26ABAE219DC97C62F26DA SIZE=210560
%COMMONFILES%\Symantec Shared\Security Console\NSCTRAY.LOC [Symantec Corporation] [Norton Security Console] MD5=FAF56CEAF2B58B5DC08A4128373436E3 SIZE=8832
%PROGRAMFILES%\Norton Internet Security\ISLAlert.dll [Symantec Corporation] [Internet Security] MD5=7F86DCD55FD3FFFBABD4219EB5F0F37B SIZE=329856
%PROGRAMFILES%\Norton Internet Security\AlertRes.dll [Symantec Corporation] [Internet Security] MD5=CA7B482247519699797AFF0A4807B019 SIZE=258672
%COMMONFILES%\Symantec Shared\Security Console\NSCUICOR.DLL [Symantec Corporation] [Norton Security Console] MD5=9F153F9D691A67774CDD313C5DD79E7A SIZE=689792
%COMMONFILES%\Symantec Shared\Security Console\NSCUICOR.LOC [Symantec Corporation] [Norton Security Console] MD5=3B50CCA46B60001083DA29DC2A866D32 SIZE=231000
%PROGRAMFILES%\Norton Internet Security\NisTray.dll [Symantec Corporation] [Internet Security] MD5=710E7515FE6049BD4AF252E8D980B489 SIZE=315520
%COMMONFILES%\Symantec Shared\Security Console\NSC_Hlpr.dll [Symantec Corporation] [Norton Security Console] MD5=C89F46AB32684C138E117F97DC4E25DD SIZE=79488
%PROGRAMFILES%\Norton Internet Security\NISTrRes.dll [Symantec Corporation] [Internet Security] MD5=3EAA6DFFC8364A547D5E8222F0D7D231 SIZE=24176
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\ccIMScan.dll [Symantec Corporation] [Client and Host Security Platform] MD5=58CF3590CCAB448C578D5E28D6C42756 SIZE=132768
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\DefAlert.dll [Symantec Corporation] [Norton AntiVirus] MD5=7B3D423B135B03B7753A92A55EE42FF0 SIZE=300656
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\HPP32.DLL [Symantec Corporation] [Norton AntiVirus] MD5=3AB34DCAEDF1FC58097A3565545C7BAB SIZE=255600
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVAPW32.DLL [Symantec Corporation] [Norton AntiVirus] MD5=8F129F76DE1378D2C5344F7DE35DCD76 SIZE=218736
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\APWUTIL.DLL [Symantec Corporation] [Norton AntiVirus] MD5=52309E8FB19D0A1096B106C92F6F0F9A SIZE=124528
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVAPW32.LOC [Symantec Corporation] [Norton AntiVirus] MD5=8AA93D4544E1A6AD80F863D629650976 SIZE=71280
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVOptRF.dll [Symantec Corporation] [Norton AntiVirus] MD5=4535DBF9ACE2E48BA393F06884E19A50 SIZE=435856
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\Statushp.dll [Symantec Corporation] [Norton AntiVirus] MD5=2DBF9013684FD7FF4B48758A82FC4D94 SIZE=140912
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\APWUTIL.LOC [Symantec Corporation] [Norton AntiVirus] MD5=D9654643BC28118D032C4EB416AF4742 SIZE=10352
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\Navlcom.dll [Symantec Corporation] [Norton AntiVirus] MD5=DFED853F722EC1B590E1C7BB5578C8E4 SIZE=181872
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\apwcmdnt.dll [Symantec Corporation] [Norton AntiVirus] MD5=32A6AC48ED10D9AC26959B4872C5729C SIZE=247408
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVError.dll [Symantec Corporation] [Norton AntiVirus] MD5=1865CDB57AA35304B5BB763B9443C660 SIZE=79472
%COMMONFILES%\Symantec Shared\AntiSpam\asFilter.dll [Symantec Corporation] [Norton AntiSpam] MD5=639450DEEA7DEFB9D38025E135934952 SIZE=237664
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\apwcmdNT.loc [Symantec Corporation] [Norton AntiVirus] MD5=9EC77B9D13042EDA840F5A28606860C5 SIZE=15984
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\naverror.loc [Symantec Corporation] [Norton AntiVirus] MD5=08D93CCEC5F58109E3DC549B52DE1AA2 SIZE=12400
%COMMONFILES%\Symantec Shared\AntiSpam\asUniPlg.dll [Symantec Corporation] [Norton AntiSpam] MD5=3158B328C6295DDB36D5AC569ADFDC21 SIZE=97376
%PROGRAMFILES%\Norton Internet Security\ccFWSetg.dll [Symantec Corporation] [Client and Host Security Platform] MD5=92F3CABD6D5DF7E1A6957888B0D03B9B SIZE=476776
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\ccAVMail.dll [Symantec Corporation] [Client and Host Security Platform] MD5=B94DF7EE6F09829B8C766A9871D82412 SIZE=108192
%PROGRAMFILES%\Norton Internet Security\ccEmlflt.dll [Symantec Corporation] [Client and Host Security Platform] MD5=449AFFCBD0C2EC388C451100E6494CA5 SIZE=145000
%PROGRAMFILES%\Norton Internet Security\ObrkAV.dll [Symantec Corporation] [Internet Security] MD5=EC8CB4B412270D85EF96F644C99E0555 SIZE=49792
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVSTATS.DLL [Symantec Corporation] [Norton AntiVirus] MD5=B8C82C0A31984480B7ACC15D30C1DB34 SIZE=132720
%PROGRAMFILES%\Norton Internet Security\ObrkIDS.dll [Symantec Corporation] [Internet Security] MD5=1E7967E276EFC14A6246CCC66B7572C2 SIZE=80000
%PROGRAMFILES%\Norton Internet Security\SymFWAgt.dll [Symantec Corporation] [Client and Host Security Platform] MD5=E0A8A2AA3586B34E9A0EE3802461BC86 SIZE=165480
%COMMONFILES%\Symantec Shared\Security Console\NSCSRVPS.DLL [Symantec Corporation] [Norton Security Console] MD5=F8527D249C48903F2F7C72BA924B2EBA SIZE=30848
%COMMONFILES%\Symantec Shared\Security Console\NSCUIBL.DLL [Symantec Corporation] [Norton Security Console] MD5=DD7D5029E57B3C47F2E95AC0DD9377BE SIZE=448128
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVOpts.dll [Symantec Corporation] [Norton AntiVirus] MD5=2C2C15365CE13A557470EEF7E88BD474 SIZE=370288
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\navopts.loc [Symantec Corporation] [Norton AntiVirus] MD5=B134A8D2C14E9D6ECA2566B655F58B45 SIZE=570992
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVAPSCR.dll [Symantec Corporation] [Norton AntiVirus] MD5=1647965D73194F932EEBD6A8CE73CE2F SIZE=87664
%PROGRAMFILES%\Symantec\LiveUpdate\ProductRegCom_3_0.DLL [Symantec Corporation] [LiveUpdate] MD5=F08EA5AA95C26FB9F39940006E727D6D SIZE=259776
%PROGRAMFILES%\Symantec\LiveUpdate\NetDetectController_3_0.DLL [Symantec Corporation] [LiveUpdate] MD5=B08F395B1402540A58D7845921584257 SIZE=75456
%PROGRAMFILES%\Symantec\LiveUpdate\LuComServerPS_3_0.DLL [Symantec Corporation] [LiveUpdate] MD5=8F61E6CBEC31A21CC570CE4FD40B76CD SIZE=75456
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVTasks.dll [Symantec Corporation] [Norton AntiVirus] MD5=C8C774C8F6D863C05B938F225A5C5365 SIZE=194160
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\NAVTasks.loc [Symantec Corporation] [Norton AntiVirus] MD5=A8B866C17E045C8B632B863660FEA99F SIZE=108144
%PROGRAMFILES%\ASUS\Splendid\GLCDdll.dll [GLCDdll] MD5=00202E4CB0D0567D3E7475221E84925E SIZE=49152
%PROGRAMFILES%\ASUS\Splendid\OVS.dll [ASUSTek] [OVS] MD5=85C57CD47F292E248E56A41E7E7A19C6 SIZE=32768
%PROGRAMFILES%\ASUS\Splendid\Chameleon.dll [ASUSTeK] [ASUSTeK Chameleon Engine] MD5=98AB7A3AC4155640146F6BEC422C81E4 SIZE=53248
%SYSDIR%\ACEngSvr.exe [ASUSTeK] [ACEngSvr Module] MD5=A391896CD406E6377F5CEF31FDC12019 SIZE=155648
%WINDIR%\ATK0100\ATKOSD.exe [ATK0100] MD5=BC06D2BA44D43577D0FA841D3F54AEAF SIZE=2170880
%PROGRAMFILES%\ASUS\Asus ChkMail\ChkMail.exe [asus] [asus ChkMail] MD5=84CC718A4B71EAAC9E98E0A52629D485 SIZE=32768
%COMMONFILES%\Symantec Shared\Security Console\NSCSRVCE.EXE [Symantec Corporation] [Norton Security Console] MD5=BDFD869422054A90372BF26FF4442C27 SIZE=750720
%COMMONFILES%\Symantec Shared\Security Console\NSCJSBL.DLL [Symantec Corporation] [Norton Security Console] MD5=8E087B891842397C2DF85A11699F1112 SIZE=128640
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\avFPXY.dll [Symantec Corporation] [Norton Security Console] MD5=1B1E38513F5C9230FAC24A762AE6EFF5 SIZE=41584
%PROGRAMFILES%\Norton Internet Security\isFtMst.dll [Symantec Corporation] [Norton Security Console] MD5=9B4FF672902BC0D31A41C6666815799B SIZE=95872
%PROGRAMFILES%\Norton Internet Security\nscNISpi.dll [Symantec Corporation] [Internet Security] MD5=BC2B1C03D1392317D04EE1545719E978 SIZE=167040
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\avNSCPlg.dll [Symantec Corporation] [Norton AntiVirus] MD5=4552C02F7B687C7798568CAA97EA3135 SIZE=181872
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\avNSCPlg.loc [Symantec Corporation] [Norton AntiVirus] MD5=E502B33274C8C0A8B8A0CB78FD795737 SIZE=21616
%COMMONFILES%\Symantec Shared\Security Console\NSC_WSCR.DLL [Symantec Corporation] [Norton Security Console] MD5=5E7F6C071A1E46D3BD31A4C41F06EABB SIZE=312960
%COMMONFILES%\Symantec Shared\Security Console\NSC_WSCR.LOC [Symantec Corporation] [Norton Security Console] MD5=26F2BD09459EDDFA65C607F8C15FE237 SIZE=12928
%PROGRAMFILES%\Norton Internet Security\isFtPxy.dll [Symantec Corporation] [Norton Security Console] MD5=FCAC6C987B88B36A141012D488FE30F9 SIZE=41600
%PROGRAMFILES%\Norton Internet Security\NISRes.dll [Symantec Corporation] [Internet Security] MD5=546BFC8755EDB2E7E35EA9239BE37E55 SIZE=886392
%PROGRAMFILES%\Norton Internet Security\nisProd.dll [Symantec Corporation] [Internet Security] MD5=D63EB1ABFB13B29BD0F089CE6F7AD98E SIZE=501376
%COMMONFILES%\Symantec Shared\AntiSpam\asFtPxy.dll [Symantec Corporation] [Norton Security Console] MD5=CC5D0E949ABE24C8A56E366BA89B67F5 SIZE=41568
%COMMONFILES%\Symantec Shared\AntiSpam\asNSCPlg.dll [Symantec Corporation] [Norton AntiSpam] MD5=BA252928F4F6AC04BE798A52FC3C53EB SIZE=48224
%COMMONFILES%\Symantec Shared\Options\asOpts.dll [Symantec Corporation] [Norton AntiSpam] MD5=CA77836E7762EF48B4A533A2160BD555 SIZE=414304
%COMMONFILES%\Symantec Shared\AdBlocking\adFtPxy.dll [Symantec Corporation] [Norton Security Console] MD5=523374F7CB05EEB5882481982E5212BE SIZE=41568
%COMMONFILES%\Symantec Shared\AdBlocking\adNscPlg.dll [Symantec Corporation] [Ad Blocking] MD5=12E4F6DDDE44222BF43364E864C9BC27 SIZE=75360
%COMMONFILES%\Symantec Shared\Options\SymAd.dll [Symantec Corporation] [Ad Blocking] MD5=02EE088E83F96CDEE53B1EE1C327A639 SIZE=222816
%COMMONFILES%\Symantec Shared\AdBlocking\SHEXTRES.DLL [Symantec Corporation] [Internet Security] MD5=2084BFB95D8EC0C78C2F3B3438D46238 SIZE=11376
%PROGRAMFILES%\google\googletoolbar3.dll [Google Inc.] [Barre d'outils Google pour IE] MD5=F5F55FD61AB135233C24B90D9EDA2521 SIZE=2582136
%PROGRAMFILES%\Yahoo!\Companion\Installs\cpn\yt.dll [Yahoo! Inc.] [Yahoo! Toolbar] MD5=5A9E77C71D6D7030BC170DD7CF04CF5D SIZE=817936
%PROGRAMFILES%\Yahoo!\Companion\Installs\cpn\YCAPlugin.dll [Yahoo! Inc.] [Yahoo! Toolbar Anti-Spy Plug-In] MD5=C5E47F9D8E51FE14EFE67A9FD62E1D52 SIZE=110448
%SYSDIR%\Macromed\Flash\Flash9f.ocx [Adobe Systems, Inc.] [Shockwave Flash] MD5=48FDF435B8595604E54125B321924510 SIZE=2991488
deskpan.dll
%PROGRAMFILES%\Synaptics\SynTP\SynTPCpl.dll [Synaptics, Inc.] [Synaptics Pointing Device Driver] MD5=2C9B34BBABFFCB5E1FA1EAE8111E3D80 SIZE=6135898
%PROGRAMFILES%\Windows Live\Messenger\fsshext.8.5.1302.1018.dll [Microsoft Corporation] [Messenger] MD5=8BDE1F61DFBAAE7A2916170E8B75FE0F SIZE=329240
%PROGRAMFILES%\Microsoft Office\OFFICE11\MLSHEXT.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=2C52103F83C6AF5617DC574888582D76 SIZE=29272
%PROGRAMFILES%\Microsoft Office\OFFICE11\OLKFSTUB.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=96EA89DA972DD842910AA9AA80BC013E SIZE=232536
%PROGRAMFILES%\Yahoo!\Common\ymmapi.dll [Yahoo! Inc.] [YMMAPI Module] MD5=A0C86DB296BBE76145377D56C5975175 SIZE=190496
%PROGRAMFILES%\WinRAR\rarext.dll MD5=023707D932BA31314210E6844D33D500 SIZE=129024
%SYSDIR%\ASNDIS5.SYS [Printing Communications Assoc., Inc. (PCAUSA)] [PCAUSA Rawether for Windows] MD5=05A56C3156E1B6CC7BBD8E1D54D491F2 SIZE=16269
%SYSDIR%\svchost.exe -k netsvcs
%SYSDIR%\svchost -k DcomLaunch
%SYSDIR%\svchost.exe -k NetworkService
%COMMONFILES%\Symantec Shared\EENGINE\eeCtrl.sys [Symantec Corporation] [ERASER ENGINE] MD5=E89CC1363CB7F5320AE3B41C1333D0C3 SIZE=385072
%COMMONFILES%\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [Symantec Corporation] [ERASER ENGINE] MD5=E7D1A496C71CD56BDD97F32C9141A03B SIZE=109616
%SYSDIR%\drivers\RtkHDAud.sys [Realtek Semiconductor Corp.] [Realtek(r) High Definition Audio Function Driver (HRTF data Copyright 1994 by MIT Media Lab)] MD5=71AE838A88B07268D732F596FC17CED5 SIZE=4262912
%SYSDIR%\svchost.exe -k LocalService
%SYSDIR%\DRIVERS\MRVW245.sys [Marvell Semiconductor, Inc] [Device driver for Marvell 802.11n NIC] MD5=275796D1114B524AEC686091E8AAFD3C SIZE=499328
%SYSDIR%\DRIVERS\ATKACPI.sys [ATK0100 ACPI Utility] MD5=E333010A50BF603ACC350F6019E9CE02 SIZE=5632
%COMMONFILES%\Symantec Shared\VirusDefs\20080807.005\NAVENG.SYS [Symantec Corporation] [Symantec Antivirus Engine] MD5=E8C8A45C761DC2B807698642A3BB0B55 SIZE=89936
%COMMONFILES%\Symantec Shared\VirusDefs\20080807.005\NAVEX15.SYS [Symantec Corporation] [Symantec Antivirus Engine] MD5=672ED614F1E2F388B20290B2DA1B8DAD SIZE=856336
%SYSDIR%\DRIVERS\rimsptsk.sys [REDC] [Ricoh Memorystick Controller] MD5=1BDBA2D2D402415A78A4BA766DFE0F7B SIZE=51328
%SYSDIR%\DRIVERS\risdptsk.sys [REDC] [RICOH SD/MMC Driver] MD5=ACE2CE73D7B04EAC48FB80482E05E770 SIZE=27904
%SYSDIR%\svchost -k rpcss
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\SAVRT.SYS [Symantec Corporation] [Symantec AntiVirus AutoProtect] MD5=21BA125B956A513F85F6AB1DD603F917 SIZE=334984
%PROGRAMFILES%\Norton Internet Security\Norton AntiVirus\SAVRTPEL.SYS [Symantec Corporation] [Symantec AntiVirus AutoProtect] MD5=0F8E1C05FC1298F8E7CEA935429F66FF SIZE=53896
%SYSDIR%\DRIVERS\smserial.sys [Motorola Inc.] [Motorola SM56 Modem] MD5=491017919CCB78509E227899D89FE0BC SIZE=894336
%COMMONFILES%\Symantec Shared\SPBBC\SPBBCDrv.sys [Symantec Corporation] [SPBBC] MD5=16AA4657806E3EA423D7E9286E763016 SIZE=389728
%SYSDIR%\svchost.exe -k imgsvc
%SYSDIR%\Drivers\SYMDNS.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=61A932F6E04C1D125659EC5F9A158CC1 SIZE=12680
%SYSDIR%\Drivers\SYMEVENT.SYS [Symantec Corporation] [SYMEVENT] MD5=C5EAFB6A8C73FB26B73EE613C1A5AEF6 SIZE=123952
%SYSDIR%\Drivers\SYMFW.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=033A6A91AA4162540C1E39A0D5C563C8 SIZE=98184
%SYSDIR%\Drivers\SYMIDS.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=071F8C6C95D8B632E73DCDBF865D8E46 SIZE=31624
%COMMONFILES%\Symantec Shared\SymcData\idsdefs\20080806.002\SymIDSCo.sys [Symantec Corporation] [Symantec Intrusion Detection] MD5=1DB45C243188F7B4C51DD7305D7E5CBB SIZE=240496
%SYSDIR%\drivers\symlcbrd.sys [Symantec Corporation] [Symantec Core Component] MD5=B226F8A4D780ACDF76145B58BB791D5B SIZE=10344
%SYSDIR%\Drivers\SYMNDIS.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=A6BBADD2472FFC5B6CE3198E13EE0E74 SIZE=28040
%SYSDIR%\Drivers\SYMREDRV.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=DF5514802A2E0A478E29BE2E33360807 SIZE=23944
%SYSDIR%\Drivers\SYMTDI.SYS [Symantec Corporation] [Symantec Security Drivers] MD5=9DA226BC68389FBD6EC0E01286E7639C SIZE=189320
%SYSDIR%\DRIVERS\SynTP.sys [Synaptics, Inc.] [Synaptics Pointing Device Driver] MD5=0B186589EB1F3230A2A5C80B965FB662 SIZE=191936
%PROGRAMFILES%\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll [Microsoft Corporation] [Messenger] MD5=56319E6B4D190A2DEB4463A9CE4D4F74 SIZE=66072
%COMMONFILES%\Adobe\Updater5\AdobeUpdater.es_ES [Adobe Systems Incorporated] [Adobe Updater] MD5=9CD71F31D3D66802F41CB85FC40E351B SIZE=65728
%SYSDIR%\pxdrv.dll [Sonic Solutions] [Px] MD5=09BA2A524D95884E2D6B973167BC696F SIZE=518904

End of Report

Suppression:

Préparation…
Supprimer Affiliate tracking cookie
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@doubleclick[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@advertising[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@apmebf[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@videomateur[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@amazon[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@atdmt[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@larrymovies[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@av.sexy.easy-rencontre[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@tacoda[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@media.archiveporno[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@fr.ebayrtm[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@mediaplex[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@hitbox[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@revsci[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@zedo[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@www.abweb[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@statse.webtrendslive[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@serving-sys[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\NASSUR\cookies\nassur@2o7[2].txt
Analyse(s) terminée(s)
0
sherred Messages postés 8605 Statut Membre 351
 
non non
ce n'est pas ce que je te demande

fait moi un rapport HIJACKTHIS
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 6
dnassur Messages postés 10 Statut Membre
 
Voila le rapport:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:55:24, on 08/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\ACEngSvr.exe
C:\documents and settings\nassur\local settings\application data\okwei.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\ASUS\Asus ChkMail\ChkMail.exe
c:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\12Voip.com\12Voip\12Voip.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Crawler\Toolbar\CToolbar.exe
C:\Program Files\Spyware Terminator\SpywareTerminator.exe
C:\Documents and Settings\NASSUR\Local Settings\Temporary Internet Files\Content.IE5\SUNFKT0M\HiJackThis[1].exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.asus.com/fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - c:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - c:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Barre d'outils &Crawler - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ASUS Live Update] C:\Program Files\ASUS\ASUS Live Update\ALU.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ACMON] C:\Program Files\ASUS\Splendid\ACMON.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [okwei] "c:\documents and settings\nassur\local settings\application data\okwei.exe" okwei
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [12Voip] "C:\Program Files\12Voip.com\12Voip\12Voip.exe" -nosplash -minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: ASUS ChkMail.lnk = C:\Program Files\ASUS\Asus ChkMail\ChkMail.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.asus.com/fr/
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {E6ACF817-0A85-4EBE-9F0A-096C6488CFEA} (NTR ActiveX 1.1.8) - https://www.ntrconnect.com/main/mod/setup/ntractivex118_24.cab
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: olMntrService - Olivetti - C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
0
sherred Messages postés 8605 Statut Membre 351
 
bon je ne vois rien
a part que je ne sais pas ce que c'est ----->nassur
0
Réponse 6 / 6
dnassur Messages postés 10 Statut Membre
 
--------------nassur--- c'est le nom de l'ordinateur

Je suis arrivé maintenant entre 590 et 640 de charge dédiée. Les fichiers audio et video bugue (se coupe) toujours et même la téléphonie. Je constate également que j'ai également 54 processus encours. et puis à chaque connexion, une page infectée s'affiche. Spyware-secure.

Je n'ai pas dutout envi formater le PC parce que j'ai ne veux pas perdre certains logiciel.

Merci pour tout ce que vous faites
0
sherred Messages postés 8605 Statut Membre 351
 
ok on essaye ca
Telecharge malwarebytes

-> http://www.malwarebytes.org/mbam/program/mbam-setup.exe

Tu l´installe; le programme va se mettre automatiquement a jour automatiquement
Une fois a jour, le programme va se lancer; click sur l´onglet parametre, et coche la case : "Arreter internet explorer pendant la suppression".

Click maintenant sur l´onglet recherche et coche la case : "executer un examen complet".

Puis click sur "rechercher".

Laisse le scanner le pc...

Si des elements on ete trouvés > click sur supprimer la selection.

si il t´es demandé de redemarrer > click sur "yes".

A la fin un rapport va s´ouvrir; sauvegarde le de maniere a le retrouver en vu de le poster sur le forum.


Copie et colle le rapport stp.

PS : les rapport sont aussi rangé dans l onglet rapport/log
0

Discussions similaires

Snap média chargé
Tessfuen -
Lilith22h22 -

2 réponses
Comment envoyer un Snap violet avec ses vidéos ?
Nono -
Radinoz -

1 réponse
Carte snap
Antho1515151515 -
IrvLox -

1 réponse
Dictature d’une appli devenus trop grosse Snap !
chuky-chuk -
brucine -

2 réponses
PAYPRO-CHARGE.C GB 16468736857 EU 000000011880 TRANSACTION DU :0
Michu -
Judge_DT -

2 réponses