Rapport de Spyware TerminatorFermé

Question

Bonjour, j'ai telechargé ce super Log sur CCM et apparement il m'a trouver un trojan pas gentil ...
Je poste donc le rapport en esperant qu'une personne pourra m'aider a l'eradiquer !!
Merci d'avance pour laide 




Logfile of Spyware Terminator v2.0.1.224 (db:1.0.113.878)
Scan Time: 16/02/2008 09:06:21  length: 480 s
Platform: Windows XP Home Service Pack 2 (WINNT 5.1.2600)
User: Limited
Boot Mode: Normal
Scan type: Fast_Spyware_Scan
Scanned Objects: 30383 (Critical:1)
Filter: No System items, No Safe items

Running Processes
btwdins.exe [Broadcom Corporation.] : C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
HPZipm12.exe [HP] : C:\WINDOWS\system32\HPZipm12.exe
BTTray.exe [Broadcom Corporation.] : C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe
RocketDock.exe : C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
YzToolBar.exe [Y'z@Home] : C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe
rambxpfr.exe [Gildas LE BOURNAULT] : C:\Program Files\RamBoost XP\rambxpfr.exe
livecall.exe [Microsoft Corporation] : C:\Program Files\MSN Messenger\livecall.exe

Internet Settings
R - HKCU\Software\Microsoft\Internet Explorer\Main, Search Bar = http://www.google.com/toolbar/ie8/sidebar.html
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant = http://www.google.com/toolbar/ie8/sidebar.html
R - HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain = 
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName = 

BHO
02 - BHO:  - {7E853D72-626A-48EC-A868-BA8D5E23E045} - File not found
02 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -  [Google Inc.] : C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
02 - BHO:  - {85d1f590-48f4-11d9-9669-0800200c9a66} - File not found
02 - BHO:  - {CCA281CA-C863-46ef-9331-5C8D4460577F} - File not found
02 - BHO:  - {e2e2dd38-d088-4134-82b7-f2ba38496583} - File not found
02 - BHO:  - {FB5F1910-F110-11d2-BB9E-00C04F795683} - File not found

StartUps
04 - Startup: %START_PROGRAMS%\Démarrage\RocketDock.lnk : C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
04 - Startup: %START_PROGRAMS%\Démarrage\Y'z Toolbar.lnk [Y'z@Home] : C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe
04 - Startup: %START_PROGRAMSALL%\Démarrage\BTTray.lnk [Broadcom Corporation.] : C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe

Shell Extensions
Extension Affichage Panorama du Panneau de configuration - {42071714-76d4-11d1-8b24-00a0c9068ff3} -  : deskpan.dll
 - {764BF0E1-F219-11ce-972D-00AA00A14F56} - File not found
 - {853FE2B1-B769-11d0-9C4E-00C04FB6C6FA} - File not found
Barre des tâches et menu Démarrer - {0DF44EAA-FF21-4412-828E-260A8728E7F1} - File not found
Comptes d'utilisateurs - {7A9D77BD-5403-11d2-8785-2E0420524153} - File not found
WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} -  : C:\Program Files\WinRAR\rarext.dll
 - {C52AF81D-F7A0-4AAB-8E87-F80A60CCD396} -  [Sun Microsystems, Inc.] : C:\Program Files\OpenOffice.org 2.0\program\shlxthdl.dll
 - {087B3AE3-E237-4467-B8DB-5A38AB959AC9} -  [Sun Microsystems, Inc.] : C:\Program Files\OpenOffice.org 2.0\program\shlxthdl.dll
 - {63542C48-9552-494A-84F7-73AA6A7C99C1} -  [Sun Microsystems, Inc.] : C:\Program Files\OpenOffice.org 2.0\program\shlxthdl.dll
 - {3B092F0C-7696-40E3-A80F-68D74DA84210} -  [Sun Microsystems, Inc.] : C:\Program Files\OpenOffice.org 2.0\program\shlxthdl.dll
Favoris Bluetooth - {6af09ec9-b429-11d4-a1fb-0090960218cb} -  [Broadcom Corporation.] : C:\WINDOWS\system32\btneighborhood.dll
CMenuExtender - {ABC70703-32AF-11d4-90C4-D483A70F4825} -  [Revenger inc.] : C:\WINDOWS\BricoPacks\Crystal Clear\iColorFolder\CMExt.dll

Services
23 - [Sensaura Ltd] : C:\WINDOWS\system32\drivers\ALCXSENS.SYS
23 - [Realtek Semiconductor Corp.] : C:\WINDOWS\system32\drivers\ALCXWDM.SYS
23 - [Broadcom Corporation.] : C:\WINDOWS\system32\DRIVERS\btkrnl.sys
23 - [Broadcom Corporation.] : C:\WINDOWS\system32\DRIVERS\BTSERIAL.SYS
23 - [Broadcom Corporation.] : C:\WINDOWS\system32\DRIVERS\BTSLBCSP.SYS
23 - [Broadcom Corporation.] : C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
23 - [HP] : C:\WINDOWS\system32\HPZipm12.exe
23 - [Silicon Integrated Systems Corporation] : C:\WINDOWS\system32\DRIVERS\sisgrp.sys
23 - [Silicon Integrated Systems Corporation] : C:\WINDOWS\system32\DRIVERS\SISAGPX.sys
23 - [Silicon Integrated Systems Corporation] : C:\WINDOWS\system32\DRIVERS\srvkp.sys

Threat Files
<Trojan/Back-PO> : C:\WINDOWS\system32\geeby.dll

Advanced Files Report
%SYSDIR%\hpzjrd01.dll [Hewlett Packard] [Hewlett Packard Rediscovery Library] MD5=16FC2C309998C6D55C182652D6A1C5B1 SIZE=139264
%SYSDIR%\hpzsnt12.dll [HP] [HP DeskJet] MD5=A2973A14FD05F6A5BD61F3528DFAE922 SIZE=180315
%SYSDIR%\bthcrp.dll [Broadcom Corporation.] [Bluetooth Software 4.0.1.2500] MD5=156B38F1236AA2604AFE2DD479605F5E SIZE=106496
%SYSDIR%\WidcommSdk.dll [Broadcom Corporation.] [Bluetooth Software 4.0.1.2500] MD5=E5376277206D18B2C4150557633BF614 SIZE=557056
%SYSDIR%\wbtapi.dll [Broadcom Corporation.] [Bluetooth Software 4.0.1.2500] MD5=71EC8093D221B3BF2E7F2CE84D3D79EB SIZE=565309
%PROGRAMFILES%\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe [Broadcom Corporation.] [Bluetooth Software 4.0.1.2500] MD5=4927F97CEE4F2EB1A64A24498A0EBE9C SIZE=258103
%SYSDIR%\HPZipm12.exe [HP] [HP PML] MD5=9D84376931440F3679BEEF2A414FA493 SIZE=69632
%WINDIR%\BricoPacks\Crystal Clear\RocketDock\MouseHook2.dll [] MD5=39966E32921371C5F1C18884515F48C4 SIZE=3584
%WINDIR%\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.dll [] [Y'z ToolBar DLL] MD5=BF2097E965B5AF983D6DE8FD19B80C7D SIZE=57344
%PROGRAMFILES%\WIDCOMM\Logiciel Bluetooth\btkeyind.dll [] MD5=6FF2AA4878B3F0BFCA3EE3907DCDA857 SIZE=53248
%PROGRAMFILES%\K-Lite Codec Pack\filters\vsfilter.dll [Gabest] [VSFilter] MD5=7EBC6A5975CB2EE36F8989B6F473E2D6 SIZE=974848
%PROGRAMFILES%\K-Lite Codec Pack\Real\RealMediaSplitter.ax [Gabest] [RealMedia Splitter] MD5=9AB79581FEC605387CBADD83E7229866 SIZE=434176
%PROGRAMFILES%\K-Lite Codec Pack\ffdshow\ffdshow.ax [] [ffdshow] MD5=5E3C6975060CC71B4666BEB1A66CCDFC SIZE=2236416
%PROGRAMFILES%\K-Lite Codec Pack\filters\divxdec.ax [DivX, Inc.] [DivX® Decoder Filter] MD5=2C7C7B74C3BD99FACCF0857D4E945DA5 SIZE=679936
%PROGRAMFILES%\K-Lite Codec Pack\filters\FLVSplitter.ax [Gabest] [FLV Splitter] MD5=48ACCD7A5A70380F6DDC83556153EE31 SIZE=409600
%PROGRAMFILES%\Sonic Foundry\Shared Plug-Ins\File Formats\MCMPEG\mcspmpeg.ax [MainConcept GmbH] [MPEG I/II Splitter] MD5=1A89DD1EC8147FA8624C79EDD17A3B90 SIZE=94208
%PROGRAMFILES%\Sonic Foundry\Shared Plug-Ins\File Formats\MCMPEG\mpegin.dll [MainConcept GmbH] [MainConcept® MPEG File Decoder] MD5=4CA877BD5880D38596D48D0156FAE632 SIZE=163840
%PROGRAMFILES%\Sonic Foundry\Shared Plug-Ins\File Formats\MCMPEG\mcmpgdec.dll [MainConcept AG] [MainConcept® MPEG Stream Decoder] MD5=C7518734708EAB96C388FD87CFCC7B39 SIZE=499200
%PROGRAMFILES%\OpenOffice.org 2.0\program\shlxthdl.dll [Sun Microsystems, Inc.] MD5=1C21B0B726B8C545850401179F6A7EAF SIZE=311296
%PROGRAMFILES%\OpenOffice.org 2.0\program\uwinapi.dll [Sun Microsystems, Inc.] MD5=232FE1474FB87CAEA1A3438407D6F2A6 SIZE=98304
%PROGRAMFILES%\OpenOffice.org 2.0\program\stlport_vc7145.dll [STLport Consulting, Inc.] [STLport Standard ANSI C++ Libarary] MD5=2F062C7E342D027EEE9F0619F2210BAE SIZE=577536
%PROGRAMFILES%\WinRAR\rarext.dll [] MD5=7801791108C9FA442DD48BCD98869F21 SIZE=126464
%SYSDIR%\btncopy.dll [Broadcom Corporation.] [Bluetooth Software 4.0.1.2500] MD5=DFBA2A9F952E2F7A03A16F8BD3EA03DD SIZE=65536
%WINDIR%\BricoPacks\Crystal Clear\iColorFolder\CMExt.dll [Revenger inc.] MD5=66CD17BEC14AD29C957FC77B797723E8 SIZE=46592
%PROGRAMFILES%\WIDCOMM\Logiciel Bluetooth\BTTray.exe [Broadcom Corporation.] [Bluetooth Software 4.0.1.2500] MD5=B34B8C66BF32C1B30356F68641A44F2F SIZE=577597
%SYSDIR%\btosif.dll [Broadcom Corporation.] [Bluetooth Software 4.0.1.2500] MD5=2D34030AA695B68E7FF5B022824BAB0F SIZE=118784
%SYSDIR%\btwhidcs.DLL [Broadcom Corporation.] [Bluetooth Software 4.0.1.2500] MD5=C3AA3D02C58FBF27E98E099EFE3A7703 SIZE=225280
%PROGRAMFILES%\WIDCOMM\Logiciel Bluetooth\BtBalloon.dll [Broadcom Corporation.] [Bluetooth Software 4.0.1.2500] MD5=20913B9D303AB4FAA1CE0E8C77EAFC27 SIZE=49152
%SYSDIR%\btrez.dll [Broadcom Corporation.] [Bluetooth Software 4.0.1.2500] MD5=B248F9F3456CAC284BB9D846347BA8BE SIZE=3133440
%SYSDIR%\CSH.dll [Blue Sky Software Corporation] [What's This? Help Composer] MD5=26AA1984EC4E50E4D91C25EC46E11AA8 SIZE=50176
%WINDIR%\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe [] MD5=E6D9D561DC70442E1371C6A90F0CABCD SIZE=344064
%WINDIR%\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe [Y'z@Home] [Y'z ToolBar] MD5=B63A4CFCEF280F4CACF0A17E6C484D56 SIZE=90112
%WINDIR%\BricoPacks\Crystal Clear\YzToolbar\Languages\English.lang [] MD5=449EB7ED0056B5D2DE7EFE1151C4E7AA SIZE=53248
%PROGRAMFILES%\RamBoost XP\rambxpfr.exe [Gildas LE BOURNAULT] [Ramboost XP] MD5=FBCA1D167C4A47B7503BEAF37593662E SIZE=1542144
%PROGRAMFILES%\MSN Messenger\livecall.exe [Microsoft Corporation] [Windows Live Call] MD5=7C4313105E0E459CE97DFFD40C17A39E SIZE=297752
%PROGRAMFILES%\Winamp\Plugins\in_cdda.dll [] MD5=6794EBCACF76BBBB9BD3718ED640EB31 SIZE=73216
%PROGRAMFILES%\Winamp\Plugins\in_dshow.dll [] MD5=733C65509EEB2CD5D8E6D2A6F5A91870 SIZE=74752
%PROGRAMFILES%\Winamp\Plugins\in_midi.dll [] MD5=7FCC1DB7983F204188CAC76665A3B648 SIZE=102400
%PROGRAMFILES%\Winamp\Plugins\read_file.dll [] MD5=74A7DD8DA036C8FC73BDBC948BE43488 SIZE=84480
%PROGRAMFILES%\Winamp\Plugins\in_mod.dll [] MD5=4D3C44A1D1687F3ABB269E56A7ED58D7 SIZE=163328
%PROGRAMFILES%\Winamp\Plugins\in_mp3.dll [] MD5=208D267F1C33D6230106195D2E0693D7 SIZE=644608
%PROGRAMFILES%\Winamp\Plugins\in_mp4.dll [] MD5=38B3D545469A6308C8B2ADD6F20DF222 SIZE=22528
%PROGRAMFILES%\Winamp\Plugins\in_nsv.dll [] MD5=9997666DC5CC286A055E77E2860CE73A SIZE=179200
%PROGRAMFILES%\Winamp\Plugins\in_vorbis.dll [] MD5=8416898AE71F22810909A4F152B2FBCF SIZE=231424
%PROGRAMFILES%\Winamp\Plugins\in_wave.dll [] MD5=AF801FAF4E347DD736617E1F86CCCD77 SIZE=31232
%PROGRAMFILES%\Winamp\Plugins\in_wm.dll [] MD5=05AE6C6A29DF95DD778E348E81EDEB92 SIZE=290304
%PROGRAMFILES%\Winamp\Plugins\out_disk.dll [] MD5=BC1169E54FA9B299F9C8936BCC509747 SIZE=15360
%PROGRAMFILES%\Winamp\Plugins\out_ds.dll [] MD5=9C97253EA69127A06BAB7387C5885AB7 SIZE=44032
%PROGRAMFILES%\Winamp\Plugins\out_wave.dll [] MD5=9C6B60D2460D99367031EDEE048E9036 SIZE=14336
%PROGRAMFILES%\Winamp\Plugins\gen_ff.dll [] MD5=9D1BB5EA0167DDF67F2D6E5EC4DF6905 SIZE=2167296
%PROGRAMFILES%\Winamp\Plugins\freeform\wacs\jpgload\jpgload.wac [] MD5=D95A6836AF5014A7670D47968225E5EC SIZE=57344
%PROGRAMFILES%\Winamp\Plugins\gen_hotkeys.dll [] MD5=9605C2A966B8719AF27D07879706BE64 SIZE=18944
%PROGRAMFILES%\Winamp\Plugins\gen_jumpex.dll [] MD5=1879BC73A38B6FD9424733726AF5E04D SIZE=81920
%PROGRAMFILES%\Winamp\Plugins\gen_ml.dll [] MD5=C14E25F8A252C2E4487FE7789120DA78 SIZE=457216
%PROGRAMFILES%\Winamp\Plugins\gen_MSN.dll [] MD5=350A4934B5616346EED6447A30901965 SIZE=5120
%PROGRAMFILES%\Winamp\Plugins\gen_tray.dll [] MD5=5756E5D8EF78CD7954387A0F3CDA3839 SIZE=11264
deskpan.dll []
%SYSDIR%\btneighborhood.dll [Broadcom Corporation.] [Bluetooth Software 4.0.1.2500] MD5=9DBE0A2DB1A3989BD75B353A8342BE66 SIZE=1019981
%SYSDIR%\drivers\ALCXSENS.SYS [Sensaura Ltd] MD5=A9355A51698F6901B362EF738B15631D SIZE=404736
%SYSDIR%\drivers\ALCXWDM.SYS [Realtek Semiconductor Corp.] [Windows (R) WDM driver for Realtek AC'97 Audio] MD5=B191753B1AA2E7B11A18D5FDE8248AA2 SIZE=462684
%SYSDIR%\DRIVERS\btkrnl.sys [Broadcom Corporation.] [Bluetooth Software 4.0.1.2500] MD5=03664BB96504C81B02F58C0EADE8A464 SIZE=1341466
%SYSDIR%\DRIVERS\BTSERIAL.SYS [Broadcom Corporation.] [Bluetooth Software 4.0.1.2500] MD5=873F58C0FDE879B53B468B65E39549C5 SIZE=23271
%SYSDIR%\DRIVERS\BTSLBCSP.SYS [Broadcom Corporation.] [Bluetooth Software 4.0.1.2500] MD5=DF810D392AF466FF76CB6BF55C6C86AF SIZE=222876
%SYSDIR%\DRIVERS\sisgrp.sys [Silicon Integrated Systems Corporation] [SiS (R) Compatible Super VGA Miniport Driver for Windows XP] MD5=4A45B541306097BC06FED9EA36C8E3BE SIZE=238080
%SYSDIR%\DRIVERS\SISAGPX.sys [Silicon Integrated Systems Corporation] [SiS AGPv3.5 Filter for Windows XP] MD5=61CA562DEF09A782D26B3E7EDEC5369A SIZE=36992
%SYSDIR%\DRIVERS\srvkp.sys [Silicon Integrated Systems Corporation] [SiS (R) WindowsXP Display Manager] MD5=96AD556979FB5D5E56141219772A9EC9 SIZE=13184
%SYSDIR%\systray.exe []

End of Report

alex37190 · Answer

Personne ne peut m'aider à decrypter ce rapport SVP ???

alex37190 · Answer

Une âme charitable est elle dans le coin SVP ??

alex37190 · Answer

Apparement ce trojan est pas cool , Lol y'a quelqu'un dans le coin SVP ??

Ownageme1 · Answer

Télécharge antiMalwareBythes et supprime le avec, si ta pas encore réglé ton problème après 2 ans.

kalimusic · Answer

Salut

antiMalwareBythes:p

si ta pas encore réglé ton problème après 2 ansnon il t'attendait^^

Je sors...

Rapport de Spyware Terminator

5 réponses

Discussions similaires

Newsletters