Infection ou autre
Fermé
kamallus
Messages postés
44
Date d'inscription
lundi 18 août 2008
Statut
Membre
Dernière intervention
2 juin 2009
-
8 sept. 2008 à 00:34
kamallus Messages postés 44 Date d'inscription lundi 18 août 2008 Statut Membre Dernière intervention 2 juin 2009 - 8 sept. 2008 à 00:53
kamallus Messages postés 44 Date d'inscription lundi 18 août 2008 Statut Membre Dernière intervention 2 juin 2009 - 8 sept. 2008 à 00:53
A voir également:
- Infection ou autre
- Infection url:mal - Forum Virus
- Infection pc ✓ - Forum Virus
- [Pnkbstra]infection ✓ - Forum Virus
- Infection: URL:Mal !!!???? - Forum Virus
- Infection virus ✓ - Forum Virus
2 réponses
pimprenelle27
Messages postés
20857
Date d'inscription
lundi 10 décembre 2007
Statut
Contributeur sécurité
Dernière intervention
8 octobre 2019
2 502
8 sept. 2008 à 00:36
8 sept. 2008 à 00:36
tu peux déjà le poster après on verra.
amd64
Messages postés
5342
Date d'inscription
mardi 17 juillet 2007
Statut
Membre
Dernière intervention
13 octobre 2015
549
8 sept. 2008 à 00:37
8 sept. 2008 à 00:37
instal ce prog : https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/29061.html
fait un scan et copi le raport ici pour voirsi tu as un infection
fait un scan et copi le raport ici pour voirsi tu as un infection
kamallus
Messages postés
44
Date d'inscription
lundi 18 août 2008
Statut
Membre
Dernière intervention
2 juin 2009
1
8 sept. 2008 à 00:45
8 sept. 2008 à 00:45
merci, pour l'instant spryware terminator, il est vraiment efficace et compréhensible
kamallus
Messages postés
44
Date d'inscription
lundi 18 août 2008
Statut
Membre
Dernière intervention
2 juin 2009
1
8 sept. 2008 à 00:53
8 sept. 2008 à 00:53
j'ai fait un rapport avec spyware terminator, si ca peut vous aider,merci encore
Logfile of Spyware Terminator v2.3.0.488 (db:2.009.005.000)
Scan Time: 08/09/2008 00:47:35 length: 82 s
Platform: WXP (5.1.0.2600)
User: Admin
Boot Mode: Normal
Scan type: Fast_Spyware_Scan
Scanned Objects: 38232 (Critical:1)
Filter: No System items, No Safe items, No Invalid items
Running Processes
Ati2evxx.exe [ATI Technologies Inc.] : C:\windows\system32\Ati2evxx.exe
aswUpdSv.exe [ALWIL Software] : C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
ashServ.exe [ALWIL Software] : C:\Program Files\Alwil Software\Avast4\ashServ.exe
Ati2evxx.exe [ATI Technologies Inc.] : C:\windows\system32\Ati2evxx.exe
raid_tool.exe [VIA Technologies] : C:\Program Files\VIA\RAID\raid_tool.exe
FixCamera.exe : C:\windows\FixCamera.exe
vsnpstd3.exe : C:\windows\vsnpstd3.exe
tsnpstd3.exe : C:\windows\tsnpstd3.exe
LClock.exe : C:\Program Files\LClock\LClock.exe
WinManager.exe : C:\Program Files\PC-TV\WinManager\WinManager.exe
LSSrvc.exe [Hewlett-Packard Company] : C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
RichVideo.exe : C:\Program Files\CyberLink\Shared files\RichVideo.exe
uTorrent.exe [BitTorrent, Inc.] : F:\uTorrent.exe
Internet Settings
R - HKCU\Software\Microsoft\Internet Explorer\Main, Search Bar =
R - HKLM\Software\Microsoft\Internet Explorer\Main, SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R - HKLM\Software\Microsoft\Internet Explorer\Main, CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant =
R - HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName =
BHO
02 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - [Microsoft Corporation] : C:\Program Files\Windows Live Toolbar\msntb.dll
Toolbars
03 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - [Microsoft Corporation] : C:\Program Files\Windows Live Toolbar\msntb.dll
StartUps
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, LClock : : C:\Program Files\LClock\LClock.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, LanguageShortcut : : C:\Program Files\CYBERLINK\POWERDVD\LANGUAGE\LANGUAGE.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, RaidTool : [VIA Technologies] : C:\Program Files\VIA\RAID\raid_tool.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, FixCamera : : C:\windows\FixCamera.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, snpstd3 : : C:\windows\vsnpstd3.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, tsnpstd3 : : C:\windows\tsnpstd3.exe
04 - Startup: %STARTUPALL%\WinManager.lnk : C:\Program Files\PC-TV\WinManager\WinManager.exe
Shell Extensions
WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} - : C:\Program Files\WinRAR\rarext.dll
Microsoft Office Outlook - {00020D75-0000-0000-C000-000000000046} - [Microsoft Corporation] : C:\Program Files\Microsoft Office\OFFICE11\MLSHEXT.DLL
Outlook File Icon Extension - {0006F045-0000-0000-C000-000000000046} - [Microsoft Corporation] : C:\Program Files\Microsoft Office\OFFICE11\OLKFSTUB.DLL
avast - {472083B0-C522-11CF-8763-00608CC02F24} - [ALWIL Software] : C:\Program Files\Alwil Software\Avast4\ashShell.dll
Services
23 - [Sensaura] : C:\windows\system32\drivers\ALCXSENS.SYS
23 - [Realtek Semiconductor Corp.] : C:\windows\system32\drivers\ALCXWDM.SYS
23 - [ALWIL Software] : C:\windows\system32\DRIVERS\aswFsBlk.sys
23 - [ALWIL Software] : C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
23 - [ATI Technologies Inc.] : C:\windows\system32\Ati2evxx.exe
23 - [ALWIL Software] : C:\Program Files\Alwil Software\Avast4\ashServ.exe
23 - [TwinHan Provide] : C:\windows\system32\DRIVERS\DtvAudio.sys
23 - [TwinHan Provide] : C:\windows\system32\DRIVERS\DtvVideo.sys
23 - [Hewlett-Packard Company] : C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
23 - : C:\Program Files\CyberLink\Shared files\RichVideo.exe
23 - [VIA Technologies inc,.ltd] : C:\windows\system32\DRIVERS\viamraid.sys
23 - [VIA Technologies, Inc.] : C:\windows\system32\Drivers\vulfnth.sys
23 - [VIA Technologies, Inc.] : C:\windows\system32\Drivers\vulfntr.sys
Winlogon Notify
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent, DLLName : [ATI Technologies Inc.] : C:\windows\system32\Ati2evxx.dll
Advanced Files Report
%SYSDIR%\Ati2evxx.dll [ATI Technologies Inc.] [ATI External Event Utility for NT, W2K and W9X] MD5=E9494846E51171DEC2FFEDEAA694E060 SIZE=46080
%SYSDIR%\Ati2evxx.exe [ATI Technologies Inc.] [ATI External Event Utility for WindowsNT and Windows9X] MD5=A8043EF14F9C02F67DEA00B7931A1DFD SIZE=376832
%SYSDIR%\Ati2edxx.dll [ATI Technologies, Inc.] [ATI External Device Utility] MD5=2463422B4252916676FD7CA936320D13 SIZE=39936
%PROGRAMFILES%\Alwil Software\Avast4\aswUpdSv.exe [ALWIL Software] [avast! Antivirus] MD5=E2323AD197689D607EBC52137B4DFB2E SIZE=16056
%PROGRAMFILES%\Alwil Software\Avast4\aswCmnS.dll [ALWIL Software] [avast! Antivirus] MD5=EE5868C228DACB015014DCB9810023C6 SIZE=192512
%PROGRAMFILES%\Alwil Software\Avast4\aswCmnOS.dll [ALWIL Software] [avast! Antivirus] MD5=0BC8734A59FC998B58F4515F57A719C4 SIZE=86016
%PROGRAMFILES%\Alwil Software\Avast4\aswCmnB.dll [ALWIL Software] [avast! Antivirus] MD5=1DC8FE93BE7598CD2CB7FB61087806BC SIZE=131072
%PROGRAMFILES%\Alwil Software\Avast4\ashServ.exe [ALWIL Software] [avast! Antivirus] MD5=58E57D723BD437049F74408016E1735D SIZE=147640
%PROGRAMFILES%\Alwil Software\Avast4\aswAux.dll [ALWIL Software] [avast! Antivirus] MD5=D863C000468302E4366A7976507848D3 SIZE=659456
%PROGRAMFILES%\Alwil Software\Avast4\aswEngin.dll [ALWIL Software] [avast! Antivirus] MD5=ED5313B3E140CAF8401645CE3C1913B3 SIZE=1245184
%PROGRAMFILES%\Alwil Software\Avast4\aswScan.dll [ALWIL Software] [avast! Antivirus] MD5=D3C726477CB93ED06171BD99CACE431A SIZE=81920
%PROGRAMFILES%\Alwil Software\Avast4\ashBase.dll [ALWIL Software] [avast! Antivirus] MD5=1B3B652ECD4B2C282088BA15BC5D2487 SIZE=229376
%PROGRAMFILES%\Alwil Software\Avast4\ashTask.dll [ALWIL Software] [avast! Antivirus] MD5=BE93124A24A7A837470433C7CBC99B73 SIZE=118784
%PROGRAMFILES%\Alwil Software\Avast4\aswInteg.dll [ALWIL Software] [avast! Antivirus] MD5=362372D8BCCA1B4B729146C17EC1A837 SIZE=22528
%PROGRAMFILES%\Alwil Software\Avast4\aswIdle.dll [ALWIL Software] [avast! Antivirus] MD5=DBE791D6555444145732F6886DEDA4FC SIZE=8888
%PROGRAMFILES%\Alwil Software\Avast4\Aavm4h.dll [ALWIL Software] [avast! Antivirus] MD5=2DB5AAF0474202C9A99BD7135FE56540 SIZE=221184
%PROGRAMFILES%\Alwil Software\Avast4\AavmRpch.dll [ALWIL Software] [avast! Antivirus] MD5=62C82FCE08A754D4D07696D69F71F091 SIZE=20992
%PROGRAMFILES%\Alwil Software\Avast4\French\Base.dll [ALWIL Software] [avast! Antivirus] MD5=056DECD877CD89F32EFDF65BD21AD3CD SIZE=98304
%PROGRAMFILES%\Alwil Software\Avast4\AhResMai.dll [ALWIL Software] [avast! Antivirus] MD5=8126A86FF9804C334310D9A3DE0B1710 SIZE=35840
%PROGRAMFILES%\Alwil Software\Avast4\ahResMes.dll [ALWIL Software] [avast! Antivirus] MD5=A00E4B36F115DB6CCF9DCBD9C365117A SIZE=32768
%PROGRAMFILES%\Alwil Software\Avast4\AhResNS.dll [ALWIL Software] [avast! Antivirus] MD5=27A0A86B093A77A59147D44B0181F61F SIZE=31744
%PROGRAMFILES%\Alwil Software\Avast4\AhResOut.dll [ALWIL Software] [avast! Antivirus] MD5=AEA39A3D680C7252FC72973284661AEF SIZE=29696
%PROGRAMFILES%\Alwil Software\Avast4\ahResP2P.dll [ALWIL Software] [avast! Antivirus] MD5=4694638E7FD2813D5E67E348B66CA54B SIZE=33280
%PROGRAMFILES%\Alwil Software\Avast4\AhResStd.dll [ALWIL Software] [avast! Antivirus] MD5=AF4F229D6B3BD322F1487D0AA5F159D4 SIZE=43008
%PROGRAMFILES%\Alwil Software\Avast4\AhResWS.dll [ALWIL Software] [avast! Antivirus] MD5=6C413DD6E2614281D70C2DDE48F9621B SIZE=53248
%PROGRAMFILES%\Alwil Software\Avast4\ashSSqlt.dll [ALWIL Software] [avast! Antivirus] MD5=78608D4A2E163D5F4F428019786171E0 SIZE=233472
%PROGRAMFILES%\LClock\LC.dll MD5=7E9EEA54A977C52859F3A80627CD0779 SIZE=69632
%COMMONFILES%\Adobe\Acrobat\ActiveX\PDFShell.FRA [Adobe Systems, Inc.] [Adobe PDF Shell Extension] MD5=17C964594AC92EE0B67D9EA08F8A8FD0 SIZE=311296
%PROGRAMFILES%\Alwil Software\Avast4\ashShell.dll [ALWIL Software] [avast! Antivirus] MD5=6B418CD914E9580BDAEBA17D62A19198 SIZE=73912
%PROGRAMFILES%\WinRAR\rarext.dll MD5=3B42317C8A22B82B04BF8C4E13B27CF0 SIZE=125440
%PROGRAMFILES%\CyberLink\PowerDVD\CLRCEngine3.dll [CyberLink Corp.] [Cyberlink PowerCinema] MD5=ACD326014941167733074BFBF77296E1 SIZE=69632
%PROGRAMFILES%\VIA\RAID\drvInterface.dll [Build_2K Dynamic Link Library] MD5=B2B3847C6A02F85E911559134758EEFD SIZE=184320
%PROGRAMFILES%\Alwil Software\Avast4\French\Lang.dll [ALWIL Software] [avast! Antivirus] MD5=02FDA873282D5EA52492327363E2AE16 SIZE=2568192
%PROGRAMFILES%\alwil software\avast4\ahruimai.dll [ALWIL Software] [avast! Antivirus] MD5=58574CB26DA6A03683A48B85B4AB508A SIZE=65536
%PROGRAMFILES%\Alwil Software\Avast4\ashUInt.dll [ALWIL Software] [avast! Antivirus] MD5=DE8EA5B6B0D9A1BBCFC2FFAEC2E79C6F SIZE=319488
%PROGRAMFILES%\Alwil Software\Avast4\XT1922.dll [Codejock Software] [XTToolkit Dynamic Link Library] MD5=92ACEE03566D4B37788084D4C497E2D8 SIZE=917504
%PROGRAMFILES%\alwil software\avast4\ahruimes.dll [ALWIL Software] [avast! Antivirus] MD5=60F84A8EECFC7FE642B52C3FF52262BC SIZE=36864
%PROGRAMFILES%\alwil software\avast4\ahruins.dll [ALWIL Software] [avast! Antivirus] MD5=640D325DFFBD7EFC166C53A02076BFC0 SIZE=36864
%PROGRAMFILES%\alwil software\avast4\ahruiout.dll [ALWIL Software] [avast! Antivirus] MD5=2E375BD719CDA445A69E05212322823B SIZE=90112
%PROGRAMFILES%\alwil software\avast4\ahruip2p.dll [ALWIL Software] [avast! Antivirus] MD5=4FAF7AD13C5D8326BB982ED0A1E1A83D SIZE=22528
%PROGRAMFILES%\alwil software\avast4\ahruistd.dll [ALWIL Software] [avast! Antivirus] MD5=FF98D5D450484BF787A60AF84DEB1017 SIZE=57344
%PROGRAMFILES%\alwil software\avast4\ahruiws.dll [ALWIL Software] [avast! Antivirus] MD5=CD6F5B7087D7A452FF531D66AA7FDC71 SIZE=49152
%PROGRAMFILES%\LClock\Calendar.dll MD5=E76C5C230BD0549BED486FDF12044F95 SIZE=81920
%PROGRAMFILES%\PC-TV\WinManager\WinManager.exe [WinManager Application] MD5=986517F64D0E145CAD144F09D1E81C4B SIZE=69632
%PROGRAMFILES%\PC-TV\WinManager\thdise.dll MD5=B2CE9DC4E0134D45DE31235FEC5D3BC1 SIZE=77824
%COMMONFILES%\LightScribe\LSSrvc.exe [Hewlett-Packard Company] [LightScribe] MD5=AB8134127F786C9603817B5318DCEEAA SIZE=73728
%PROGRAMFILES%\CyberLink\Shared files\RichVideo.exe [RichVideo Module] MD5=BD517C7FB119997EFFBE39D5E4B37B05 SIZE=167936
%PROGRAMFILES%\Alwil Software\Avast4\French\langmai.dll [ALWIL Software] [avast! Antivirus] MD5=6FAAE58EEC511FAF39603F809B9FC7BD SIZE=61440
%PROGRAMFILES%\Alwil Software\Avast4\ashWsFtr.dll [ALWIL Software] [avast! Antivirus] MD5=C2D83820FB57B7B11EBE6C61BFC66D3C SIZE=61440
D:\ProgDVB\Filters\elaudec.ax [Elecard Ltd] [Elecard Audio Decoder] MD5=65BC164691324846B73009B2343293A5 SIZE=808496
D:\ProgDVB\Filters\LC.dll [MainConcept AG] [Licence Control] MD5=6316C4082CACF8F3F4F22DAEF56CB15C SIZE=77824
%PROGRAMFILES%\K-Lite Codec Pack\filters\ac3filter.ax [AC3Filter] MD5=CD8208BCF97CA4DD4E35D4D50451ACB9 SIZE=516096
%PROGRAMFILES%\K-Lite Codec Pack\ffdshow\ffdshow.ax [ffdshow] MD5=D136374BD215EB864ECC947C6D719C3D SIZE=2183168
%PROGRAMFILES%\K-Lite Codec Pack\filters\vsfilter.dll [Gabest] [VSFilter] MD5=9FB7AA32D307712398A7EFE576DABA8D SIZE=958464
%PROGRAMFILES%\Ahead\WMPBurn\NeroBurnPlugin.dll [Ahead Software AG] [Nero Fast CD-Burning Plug-in] MD5=4400C6F12B411727D19B3D00287475D5 SIZE=331776
%PROGRAMFILES%\Windows Live Toolbar\Components\fr-fr\SmaMenRes.dll.mui [Microsoft Corporation.] [Windows Live Toolbar] MD5=53822A2A6D2DCE9218913546DE323676 SIZE=3072
%PROGRAMFILES%\Windows Live Toolbar\Components\SmaMenRes.dll [Microsoft Corporation.] [Windows Live Toolbar] MD5=5EC59DA09F30A7FC692F1CEA1E13AE4D SIZE=4096
%PROGRAMFILES%\Windows Live Toolbar\Components\smamen.dll [Microsoft Corporation.] [Windows Live Toolbar] MD5=C5C792723F991957D11CEEF64C2BEFDC SIZE=505856
%PROGRAMFILES%\Windows Live Toolbar\Components\COMCRF\COMCRF.dll [Microsoft Corporation.] [Windows Live Toolbar] MD5=B3E017D5E68400529BA351F4C07EA632 SIZE=140288
%SYSDIR%\Macromed\Flash\Flash9f.ocx [Adobe Systems, Inc.] [Shockwave Flash] MD5=48FDF435B8595604E54125B321924510 SIZE=2991488
F:\uTorrent.exe [BitTorrent, Inc.] [µTorrent] MD5=4ADD7DAE19AE850B29BF5F1B631BDA8A SIZE=267056
%PROGRAMFILES%\Windows Live Toolbar\msntb.dll [Microsoft Corporation] [Windows Live Toolbar] MD5=3D97244F1254E41036458BCACB8FDA4F SIZE=544032
deskpan.dll
%PROGRAMFILES%\Microsoft Office\OFFICE11\MLSHEXT.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=2C52103F83C6AF5617DC574888582D76 SIZE=29272
%PROGRAMFILES%\Microsoft Office\OFFICE11\OLKFSTUB.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=96EA89DA972DD842910AA9AA80BC013E SIZE=232536
%SYSDIR%\drivers\ALCXSENS.SYS [Sensaura] MD5=BA88534A3CEB6161E7432438B9EA4F54 SIZE=400384
%SYSDIR%\drivers\ALCXWDM.SYS [Realtek Semiconductor Corp.] [Windows (R) WDM driver for Realtek AC'97 Audio] MD5=69CBB79CCCCB7AB08F5E00109E9703BD SIZE=611820
%SYSDIR%\DRIVERS\aswFsBlk.sys [ALWIL Software] [avast! Antivirus System] MD5=976E2AD5A62044629C2DE2CA8563722A SIZE=20560
%SYSDIR%\svchost.exe -k netsvcs
%SYSDIR%\svchost -k DcomLaunch
%SYSDIR%\svchost.exe -k NetworkService
%SYSDIR%\DRIVERS\DtvAudio.sys [TwinHan Provide] [DTVAudio] MD5=5A4B065D01E98EC0936A9BF1D358A13D SIZE=10330
%SYSDIR%\DRIVERS\DtvVideo.sys [TwinHan Provide] [DTV Video Controller.] MD5=89BCC026EBEFE8D866378755E9E1330C SIZE=25600
%SYSDIR%\svchost.exe -k LocalService
%SYSDIR%\svchost -k rpcss
%SYSDIR%\svchost.exe -k imgsvc
%SYSDIR%\DRIVERS\viamraid.sys [VIA Technologies inc,.ltd] [VIA RAID driver] MD5=0363E216E4EB5052969C96608934DBDE SIZE=60928
%SYSDIR%\Drivers\vulfnth.sys [VIA Technologies, Inc.] [VIA USB Host Controller Lower Filter Driver] MD5=C0F55CC0903CFDC819F6D857402B697C SIZE=6912
%SYSDIR%\Drivers\vulfntr.sys [VIA Technologies, Inc.] [VIA USB Roothub Lower Filter Driver] MD5=AE838ADDFC733455464C87BE0697A810 SIZE=11264
%COMMONFILES%\Adobe\Updater5\AdobeUpdater.es_ES [Adobe Systems Incorporated] [Adobe Updater] MD5=9CD71F31D3D66802F41CB85FC40E351B SIZE=65728
%COMMONFILES%\Microsoft Shared\GRPHFLT\CGMIMP32.FLT [Microsoft Corporation] [Microsoft Office 2003] MD5=43C35B628DC652662C3F592C7EC15CCD SIZE=284760
%COMMONFILES%\Microsoft Shared\PROOF\MSHY3ES.DLL [SIGNUM Cía. Ltda.
Quito, Ecuador] [Spanish Hyphenation Engine] MD5=48233DD3DABD301D1CE79F8F2C09CFDD SIZE=753664
%COMMONFILES%\Microsoft Shared\Smart Tag\FPERSON.DLL [Microsoft Corporation] [Microsoft Office 2003] MD5=B88AECBFC7434B37D6921199D9C47947 SIZE=179768
%PROGRAMFILES%\Microsoft Works\ltkrn13n.dll [LEAD Technologies, Inc.] [LEADTOOLS(r) DLL for Win32] MD5=6D853FA6843DF479F456D0B498D654FE SIZE=446976
End of Report
Suppression:
Préparation…
Création d'un point de restauration
Supprimer MessenPass
Suppression de la clé registre : HKCU\Software\NirSoft\MessenPass
Supprimer Affiliate tracking cookie
Le fichier sélectionné pour la suppression n'existe pas: C:\Documents and Settings\maxi\cookies\maxi@advertising[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\maxi\cookies\maxi@apmebf[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\maxi\cookies\maxi@doubleclick[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\maxi\cookies\maxi@fastclick[2].txt
Le fichier sélectionné pour la suppression n'existe pas: C:\Documents and Settings\maxi\cookies\maxi@mediaplex[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\maxi\cookies\maxi@serving-sys[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\maxi\cookies\maxi@statcounter[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\maxi\cookies\maxi@zedo[1].txt
Fermeture du point de restauration système
Analyse(s) terminée(s)
Logfile of Spyware Terminator v2.3.0.488 (db:2.009.005.000)
Scan Time: 08/09/2008 00:47:35 length: 82 s
Platform: WXP (5.1.0.2600)
User: Admin
Boot Mode: Normal
Scan type: Fast_Spyware_Scan
Scanned Objects: 38232 (Critical:1)
Filter: No System items, No Safe items, No Invalid items
Running Processes
Ati2evxx.exe [ATI Technologies Inc.] : C:\windows\system32\Ati2evxx.exe
aswUpdSv.exe [ALWIL Software] : C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
ashServ.exe [ALWIL Software] : C:\Program Files\Alwil Software\Avast4\ashServ.exe
Ati2evxx.exe [ATI Technologies Inc.] : C:\windows\system32\Ati2evxx.exe
raid_tool.exe [VIA Technologies] : C:\Program Files\VIA\RAID\raid_tool.exe
FixCamera.exe : C:\windows\FixCamera.exe
vsnpstd3.exe : C:\windows\vsnpstd3.exe
tsnpstd3.exe : C:\windows\tsnpstd3.exe
LClock.exe : C:\Program Files\LClock\LClock.exe
WinManager.exe : C:\Program Files\PC-TV\WinManager\WinManager.exe
LSSrvc.exe [Hewlett-Packard Company] : C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
RichVideo.exe : C:\Program Files\CyberLink\Shared files\RichVideo.exe
uTorrent.exe [BitTorrent, Inc.] : F:\uTorrent.exe
Internet Settings
R - HKCU\Software\Microsoft\Internet Explorer\Main, Search Bar =
R - HKLM\Software\Microsoft\Internet Explorer\Main, SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R - HKLM\Software\Microsoft\Internet Explorer\Main, CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant =
R - HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName =
BHO
02 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - [Microsoft Corporation] : C:\Program Files\Windows Live Toolbar\msntb.dll
Toolbars
03 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - [Microsoft Corporation] : C:\Program Files\Windows Live Toolbar\msntb.dll
StartUps
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, LClock : : C:\Program Files\LClock\LClock.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, LanguageShortcut : : C:\Program Files\CYBERLINK\POWERDVD\LANGUAGE\LANGUAGE.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, RaidTool : [VIA Technologies] : C:\Program Files\VIA\RAID\raid_tool.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, FixCamera : : C:\windows\FixCamera.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, snpstd3 : : C:\windows\vsnpstd3.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, tsnpstd3 : : C:\windows\tsnpstd3.exe
04 - Startup: %STARTUPALL%\WinManager.lnk : C:\Program Files\PC-TV\WinManager\WinManager.exe
Shell Extensions
WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} - : C:\Program Files\WinRAR\rarext.dll
Microsoft Office Outlook - {00020D75-0000-0000-C000-000000000046} - [Microsoft Corporation] : C:\Program Files\Microsoft Office\OFFICE11\MLSHEXT.DLL
Outlook File Icon Extension - {0006F045-0000-0000-C000-000000000046} - [Microsoft Corporation] : C:\Program Files\Microsoft Office\OFFICE11\OLKFSTUB.DLL
avast - {472083B0-C522-11CF-8763-00608CC02F24} - [ALWIL Software] : C:\Program Files\Alwil Software\Avast4\ashShell.dll
Services
23 - [Sensaura] : C:\windows\system32\drivers\ALCXSENS.SYS
23 - [Realtek Semiconductor Corp.] : C:\windows\system32\drivers\ALCXWDM.SYS
23 - [ALWIL Software] : C:\windows\system32\DRIVERS\aswFsBlk.sys
23 - [ALWIL Software] : C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
23 - [ATI Technologies Inc.] : C:\windows\system32\Ati2evxx.exe
23 - [ALWIL Software] : C:\Program Files\Alwil Software\Avast4\ashServ.exe
23 - [TwinHan Provide] : C:\windows\system32\DRIVERS\DtvAudio.sys
23 - [TwinHan Provide] : C:\windows\system32\DRIVERS\DtvVideo.sys
23 - [Hewlett-Packard Company] : C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
23 - : C:\Program Files\CyberLink\Shared files\RichVideo.exe
23 - [VIA Technologies inc,.ltd] : C:\windows\system32\DRIVERS\viamraid.sys
23 - [VIA Technologies, Inc.] : C:\windows\system32\Drivers\vulfnth.sys
23 - [VIA Technologies, Inc.] : C:\windows\system32\Drivers\vulfntr.sys
Winlogon Notify
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent, DLLName : [ATI Technologies Inc.] : C:\windows\system32\Ati2evxx.dll
Advanced Files Report
%SYSDIR%\Ati2evxx.dll [ATI Technologies Inc.] [ATI External Event Utility for NT, W2K and W9X] MD5=E9494846E51171DEC2FFEDEAA694E060 SIZE=46080
%SYSDIR%\Ati2evxx.exe [ATI Technologies Inc.] [ATI External Event Utility for WindowsNT and Windows9X] MD5=A8043EF14F9C02F67DEA00B7931A1DFD SIZE=376832
%SYSDIR%\Ati2edxx.dll [ATI Technologies, Inc.] [ATI External Device Utility] MD5=2463422B4252916676FD7CA936320D13 SIZE=39936
%PROGRAMFILES%\Alwil Software\Avast4\aswUpdSv.exe [ALWIL Software] [avast! Antivirus] MD5=E2323AD197689D607EBC52137B4DFB2E SIZE=16056
%PROGRAMFILES%\Alwil Software\Avast4\aswCmnS.dll [ALWIL Software] [avast! Antivirus] MD5=EE5868C228DACB015014DCB9810023C6 SIZE=192512
%PROGRAMFILES%\Alwil Software\Avast4\aswCmnOS.dll [ALWIL Software] [avast! Antivirus] MD5=0BC8734A59FC998B58F4515F57A719C4 SIZE=86016
%PROGRAMFILES%\Alwil Software\Avast4\aswCmnB.dll [ALWIL Software] [avast! Antivirus] MD5=1DC8FE93BE7598CD2CB7FB61087806BC SIZE=131072
%PROGRAMFILES%\Alwil Software\Avast4\ashServ.exe [ALWIL Software] [avast! Antivirus] MD5=58E57D723BD437049F74408016E1735D SIZE=147640
%PROGRAMFILES%\Alwil Software\Avast4\aswAux.dll [ALWIL Software] [avast! Antivirus] MD5=D863C000468302E4366A7976507848D3 SIZE=659456
%PROGRAMFILES%\Alwil Software\Avast4\aswEngin.dll [ALWIL Software] [avast! Antivirus] MD5=ED5313B3E140CAF8401645CE3C1913B3 SIZE=1245184
%PROGRAMFILES%\Alwil Software\Avast4\aswScan.dll [ALWIL Software] [avast! Antivirus] MD5=D3C726477CB93ED06171BD99CACE431A SIZE=81920
%PROGRAMFILES%\Alwil Software\Avast4\ashBase.dll [ALWIL Software] [avast! Antivirus] MD5=1B3B652ECD4B2C282088BA15BC5D2487 SIZE=229376
%PROGRAMFILES%\Alwil Software\Avast4\ashTask.dll [ALWIL Software] [avast! Antivirus] MD5=BE93124A24A7A837470433C7CBC99B73 SIZE=118784
%PROGRAMFILES%\Alwil Software\Avast4\aswInteg.dll [ALWIL Software] [avast! Antivirus] MD5=362372D8BCCA1B4B729146C17EC1A837 SIZE=22528
%PROGRAMFILES%\Alwil Software\Avast4\aswIdle.dll [ALWIL Software] [avast! Antivirus] MD5=DBE791D6555444145732F6886DEDA4FC SIZE=8888
%PROGRAMFILES%\Alwil Software\Avast4\Aavm4h.dll [ALWIL Software] [avast! Antivirus] MD5=2DB5AAF0474202C9A99BD7135FE56540 SIZE=221184
%PROGRAMFILES%\Alwil Software\Avast4\AavmRpch.dll [ALWIL Software] [avast! Antivirus] MD5=62C82FCE08A754D4D07696D69F71F091 SIZE=20992
%PROGRAMFILES%\Alwil Software\Avast4\French\Base.dll [ALWIL Software] [avast! Antivirus] MD5=056DECD877CD89F32EFDF65BD21AD3CD SIZE=98304
%PROGRAMFILES%\Alwil Software\Avast4\AhResMai.dll [ALWIL Software] [avast! Antivirus] MD5=8126A86FF9804C334310D9A3DE0B1710 SIZE=35840
%PROGRAMFILES%\Alwil Software\Avast4\ahResMes.dll [ALWIL Software] [avast! Antivirus] MD5=A00E4B36F115DB6CCF9DCBD9C365117A SIZE=32768
%PROGRAMFILES%\Alwil Software\Avast4\AhResNS.dll [ALWIL Software] [avast! Antivirus] MD5=27A0A86B093A77A59147D44B0181F61F SIZE=31744
%PROGRAMFILES%\Alwil Software\Avast4\AhResOut.dll [ALWIL Software] [avast! Antivirus] MD5=AEA39A3D680C7252FC72973284661AEF SIZE=29696
%PROGRAMFILES%\Alwil Software\Avast4\ahResP2P.dll [ALWIL Software] [avast! Antivirus] MD5=4694638E7FD2813D5E67E348B66CA54B SIZE=33280
%PROGRAMFILES%\Alwil Software\Avast4\AhResStd.dll [ALWIL Software] [avast! Antivirus] MD5=AF4F229D6B3BD322F1487D0AA5F159D4 SIZE=43008
%PROGRAMFILES%\Alwil Software\Avast4\AhResWS.dll [ALWIL Software] [avast! Antivirus] MD5=6C413DD6E2614281D70C2DDE48F9621B SIZE=53248
%PROGRAMFILES%\Alwil Software\Avast4\ashSSqlt.dll [ALWIL Software] [avast! Antivirus] MD5=78608D4A2E163D5F4F428019786171E0 SIZE=233472
%PROGRAMFILES%\LClock\LC.dll MD5=7E9EEA54A977C52859F3A80627CD0779 SIZE=69632
%COMMONFILES%\Adobe\Acrobat\ActiveX\PDFShell.FRA [Adobe Systems, Inc.] [Adobe PDF Shell Extension] MD5=17C964594AC92EE0B67D9EA08F8A8FD0 SIZE=311296
%PROGRAMFILES%\Alwil Software\Avast4\ashShell.dll [ALWIL Software] [avast! Antivirus] MD5=6B418CD914E9580BDAEBA17D62A19198 SIZE=73912
%PROGRAMFILES%\WinRAR\rarext.dll MD5=3B42317C8A22B82B04BF8C4E13B27CF0 SIZE=125440
%PROGRAMFILES%\CyberLink\PowerDVD\CLRCEngine3.dll [CyberLink Corp.] [Cyberlink PowerCinema] MD5=ACD326014941167733074BFBF77296E1 SIZE=69632
%PROGRAMFILES%\VIA\RAID\drvInterface.dll [Build_2K Dynamic Link Library] MD5=B2B3847C6A02F85E911559134758EEFD SIZE=184320
%PROGRAMFILES%\Alwil Software\Avast4\French\Lang.dll [ALWIL Software] [avast! Antivirus] MD5=02FDA873282D5EA52492327363E2AE16 SIZE=2568192
%PROGRAMFILES%\alwil software\avast4\ahruimai.dll [ALWIL Software] [avast! Antivirus] MD5=58574CB26DA6A03683A48B85B4AB508A SIZE=65536
%PROGRAMFILES%\Alwil Software\Avast4\ashUInt.dll [ALWIL Software] [avast! Antivirus] MD5=DE8EA5B6B0D9A1BBCFC2FFAEC2E79C6F SIZE=319488
%PROGRAMFILES%\Alwil Software\Avast4\XT1922.dll [Codejock Software] [XTToolkit Dynamic Link Library] MD5=92ACEE03566D4B37788084D4C497E2D8 SIZE=917504
%PROGRAMFILES%\alwil software\avast4\ahruimes.dll [ALWIL Software] [avast! Antivirus] MD5=60F84A8EECFC7FE642B52C3FF52262BC SIZE=36864
%PROGRAMFILES%\alwil software\avast4\ahruins.dll [ALWIL Software] [avast! Antivirus] MD5=640D325DFFBD7EFC166C53A02076BFC0 SIZE=36864
%PROGRAMFILES%\alwil software\avast4\ahruiout.dll [ALWIL Software] [avast! Antivirus] MD5=2E375BD719CDA445A69E05212322823B SIZE=90112
%PROGRAMFILES%\alwil software\avast4\ahruip2p.dll [ALWIL Software] [avast! Antivirus] MD5=4FAF7AD13C5D8326BB982ED0A1E1A83D SIZE=22528
%PROGRAMFILES%\alwil software\avast4\ahruistd.dll [ALWIL Software] [avast! Antivirus] MD5=FF98D5D450484BF787A60AF84DEB1017 SIZE=57344
%PROGRAMFILES%\alwil software\avast4\ahruiws.dll [ALWIL Software] [avast! Antivirus] MD5=CD6F5B7087D7A452FF531D66AA7FDC71 SIZE=49152
%PROGRAMFILES%\LClock\Calendar.dll MD5=E76C5C230BD0549BED486FDF12044F95 SIZE=81920
%PROGRAMFILES%\PC-TV\WinManager\WinManager.exe [WinManager Application] MD5=986517F64D0E145CAD144F09D1E81C4B SIZE=69632
%PROGRAMFILES%\PC-TV\WinManager\thdise.dll MD5=B2CE9DC4E0134D45DE31235FEC5D3BC1 SIZE=77824
%COMMONFILES%\LightScribe\LSSrvc.exe [Hewlett-Packard Company] [LightScribe] MD5=AB8134127F786C9603817B5318DCEEAA SIZE=73728
%PROGRAMFILES%\CyberLink\Shared files\RichVideo.exe [RichVideo Module] MD5=BD517C7FB119997EFFBE39D5E4B37B05 SIZE=167936
%PROGRAMFILES%\Alwil Software\Avast4\French\langmai.dll [ALWIL Software] [avast! Antivirus] MD5=6FAAE58EEC511FAF39603F809B9FC7BD SIZE=61440
%PROGRAMFILES%\Alwil Software\Avast4\ashWsFtr.dll [ALWIL Software] [avast! Antivirus] MD5=C2D83820FB57B7B11EBE6C61BFC66D3C SIZE=61440
D:\ProgDVB\Filters\elaudec.ax [Elecard Ltd] [Elecard Audio Decoder] MD5=65BC164691324846B73009B2343293A5 SIZE=808496
D:\ProgDVB\Filters\LC.dll [MainConcept AG] [Licence Control] MD5=6316C4082CACF8F3F4F22DAEF56CB15C SIZE=77824
%PROGRAMFILES%\K-Lite Codec Pack\filters\ac3filter.ax [AC3Filter] MD5=CD8208BCF97CA4DD4E35D4D50451ACB9 SIZE=516096
%PROGRAMFILES%\K-Lite Codec Pack\ffdshow\ffdshow.ax [ffdshow] MD5=D136374BD215EB864ECC947C6D719C3D SIZE=2183168
%PROGRAMFILES%\K-Lite Codec Pack\filters\vsfilter.dll [Gabest] [VSFilter] MD5=9FB7AA32D307712398A7EFE576DABA8D SIZE=958464
%PROGRAMFILES%\Ahead\WMPBurn\NeroBurnPlugin.dll [Ahead Software AG] [Nero Fast CD-Burning Plug-in] MD5=4400C6F12B411727D19B3D00287475D5 SIZE=331776
%PROGRAMFILES%\Windows Live Toolbar\Components\fr-fr\SmaMenRes.dll.mui [Microsoft Corporation.] [Windows Live Toolbar] MD5=53822A2A6D2DCE9218913546DE323676 SIZE=3072
%PROGRAMFILES%\Windows Live Toolbar\Components\SmaMenRes.dll [Microsoft Corporation.] [Windows Live Toolbar] MD5=5EC59DA09F30A7FC692F1CEA1E13AE4D SIZE=4096
%PROGRAMFILES%\Windows Live Toolbar\Components\smamen.dll [Microsoft Corporation.] [Windows Live Toolbar] MD5=C5C792723F991957D11CEEF64C2BEFDC SIZE=505856
%PROGRAMFILES%\Windows Live Toolbar\Components\COMCRF\COMCRF.dll [Microsoft Corporation.] [Windows Live Toolbar] MD5=B3E017D5E68400529BA351F4C07EA632 SIZE=140288
%SYSDIR%\Macromed\Flash\Flash9f.ocx [Adobe Systems, Inc.] [Shockwave Flash] MD5=48FDF435B8595604E54125B321924510 SIZE=2991488
F:\uTorrent.exe [BitTorrent, Inc.] [µTorrent] MD5=4ADD7DAE19AE850B29BF5F1B631BDA8A SIZE=267056
%PROGRAMFILES%\Windows Live Toolbar\msntb.dll [Microsoft Corporation] [Windows Live Toolbar] MD5=3D97244F1254E41036458BCACB8FDA4F SIZE=544032
deskpan.dll
%PROGRAMFILES%\Microsoft Office\OFFICE11\MLSHEXT.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=2C52103F83C6AF5617DC574888582D76 SIZE=29272
%PROGRAMFILES%\Microsoft Office\OFFICE11\OLKFSTUB.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=96EA89DA972DD842910AA9AA80BC013E SIZE=232536
%SYSDIR%\drivers\ALCXSENS.SYS [Sensaura] MD5=BA88534A3CEB6161E7432438B9EA4F54 SIZE=400384
%SYSDIR%\drivers\ALCXWDM.SYS [Realtek Semiconductor Corp.] [Windows (R) WDM driver for Realtek AC'97 Audio] MD5=69CBB79CCCCB7AB08F5E00109E9703BD SIZE=611820
%SYSDIR%\DRIVERS\aswFsBlk.sys [ALWIL Software] [avast! Antivirus System] MD5=976E2AD5A62044629C2DE2CA8563722A SIZE=20560
%SYSDIR%\svchost.exe -k netsvcs
%SYSDIR%\svchost -k DcomLaunch
%SYSDIR%\svchost.exe -k NetworkService
%SYSDIR%\DRIVERS\DtvAudio.sys [TwinHan Provide] [DTVAudio] MD5=5A4B065D01E98EC0936A9BF1D358A13D SIZE=10330
%SYSDIR%\DRIVERS\DtvVideo.sys [TwinHan Provide] [DTV Video Controller.] MD5=89BCC026EBEFE8D866378755E9E1330C SIZE=25600
%SYSDIR%\svchost.exe -k LocalService
%SYSDIR%\svchost -k rpcss
%SYSDIR%\svchost.exe -k imgsvc
%SYSDIR%\DRIVERS\viamraid.sys [VIA Technologies inc,.ltd] [VIA RAID driver] MD5=0363E216E4EB5052969C96608934DBDE SIZE=60928
%SYSDIR%\Drivers\vulfnth.sys [VIA Technologies, Inc.] [VIA USB Host Controller Lower Filter Driver] MD5=C0F55CC0903CFDC819F6D857402B697C SIZE=6912
%SYSDIR%\Drivers\vulfntr.sys [VIA Technologies, Inc.] [VIA USB Roothub Lower Filter Driver] MD5=AE838ADDFC733455464C87BE0697A810 SIZE=11264
%COMMONFILES%\Adobe\Updater5\AdobeUpdater.es_ES [Adobe Systems Incorporated] [Adobe Updater] MD5=9CD71F31D3D66802F41CB85FC40E351B SIZE=65728
%COMMONFILES%\Microsoft Shared\GRPHFLT\CGMIMP32.FLT [Microsoft Corporation] [Microsoft Office 2003] MD5=43C35B628DC652662C3F592C7EC15CCD SIZE=284760
%COMMONFILES%\Microsoft Shared\PROOF\MSHY3ES.DLL [SIGNUM Cía. Ltda.
Quito, Ecuador] [Spanish Hyphenation Engine] MD5=48233DD3DABD301D1CE79F8F2C09CFDD SIZE=753664
%COMMONFILES%\Microsoft Shared\Smart Tag\FPERSON.DLL [Microsoft Corporation] [Microsoft Office 2003] MD5=B88AECBFC7434B37D6921199D9C47947 SIZE=179768
%PROGRAMFILES%\Microsoft Works\ltkrn13n.dll [LEAD Technologies, Inc.] [LEADTOOLS(r) DLL for Win32] MD5=6D853FA6843DF479F456D0B498D654FE SIZE=446976
End of Report
Suppression:
Préparation…
Création d'un point de restauration
Supprimer MessenPass
Suppression de la clé registre : HKCU\Software\NirSoft\MessenPass
Supprimer Affiliate tracking cookie
Le fichier sélectionné pour la suppression n'existe pas: C:\Documents and Settings\maxi\cookies\maxi@advertising[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\maxi\cookies\maxi@apmebf[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\maxi\cookies\maxi@doubleclick[1].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\maxi\cookies\maxi@fastclick[2].txt
Le fichier sélectionné pour la suppression n'existe pas: C:\Documents and Settings\maxi\cookies\maxi@mediaplex[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\maxi\cookies\maxi@serving-sys[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\maxi\cookies\maxi@statcounter[2].txt
Les fichiers sélectionnés ont été supprimés.: C:\Documents and Settings\maxi\cookies\maxi@zedo[1].txt
Fermeture du point de restauration système
Analyse(s) terminée(s)
8 sept. 2008 à 00:42
Scan saved at 00:41:36, on 08/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\Ati2evxx.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\windows\system32\Ati2evxx.exe
C:\windows\Explorer.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\windows\SOUNDMAN.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe
C:\windows\FixCamera.exe
C:\windows\vsnpstd3.exe
C:\windows\tsnpstd3.exe
C:\windows\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\windows\system32\spoolsv.exe
C:\Program Files\LClock\LClock.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\PC-TV\WinManager\WinManager.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\windows\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
F:\uTorrent.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live Toolbar\msn_sl.exe
C:\Program Files\Trend Micro\HijackThis\HJT.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.doctissimo.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Barre d'outils &Crawler - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RaidTool] C:\Program Files\VIA\RAID\raid_tool.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [FixCamera] C:\windows\FixCamera.exe
O4 - HKLM\..\Run: [snpstd3] C:\windows\vsnpstd3.exe
O4 - HKLM\..\Run: [tsnpstd3] C:\windows\tsnpstd3.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\windows\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [LClock] C:\Program Files\LClock\LClock.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: WinManager.lnk = C:\Program Files\PC-TV\WinManager\WinManager.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?c3df952cc4ca4ba687954bd61dcaa41a
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?c3df952cc4ca4ba687954bd61dcaa41a
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{0C528D89-8CA2-4910-BE0C-7EBAD15F9E2D}: NameServer = 41.221.20.4 208.67.222.222
O17 - HKLM\System\CS1\Services\Tcpip\..\{0C528D89-8CA2-4910-BE0C-7EBAD15F9E2D}: NameServer = 41.221.20.4 208.67.222.222
O17 - HKLM\System\CS2\Services\Tcpip\..\{0C528D89-8CA2-4910-BE0C-7EBAD15F9E2D}: NameServer = 41.221.20.4 208.67.222.222
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\windows\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe