Bonjour,
Voici mon rapport MBAM complet suite à l’effacage du soucis trouvé dans HijackThis
Rien de trouvé :
Malwarebytes' Anti-Malware 1.31
Version de la base de données: 1469
Windows 6.0.6001 Service Pack 1
07/12/2008 14:43:52
mbam-log-2008-12-07 (14-43-52).txt
Type de recherche: Examen complet (C:\|D:\|E:\|F:\|)
Eléments examinés: 607895
Temps écoulé: 2 hour(s), 56 minute(s), 29 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
Rapport Spyware Terminator :
Logfile of Spyware Terminator v2.5.0.567 (db:2.012.005.000)
Scan Time: 07/12/2008 14:56:37 length: 3503 s
Platform: VISTA (6.0.0.6001)
User: Admin
Boot Mode: Normal
Scan type: Full_Spyware_Scan
Scanned Objects: 94423 (Critical:5)
Filter: No System items, No Safe items, No Invalid items
Running Processes
nvvsvc.exe [NVIDIA Corporation] : C:\Windows\system32\nvvsvc.exe
SpyHunter3.exe [Enigma Software Group USA, LLC.] : C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.exe
egui.exe [ESET] : C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
smax4pnp.exe [Analog Devices, Inc.] : C:\Program Files\Analog Devices\Core\smax4pnp.exe
SoundTray.exe [Sonic Focus, Inc.] : C:\Program Files\Analog Devices\SoundMAX\SoundTray.exe
wmdSync.exe [Microsoft Corporation] : C:\Windows\WindowsMobile\wmdSync.exe
PrintScreen.exe [Gadwin Systems, Inc] : C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe
daemon.exe [DT Soft Ltd] : C:\Program Files\DAEMON Tools Lite\daemon.exe
EDICT.EXE [Microsoft Corporation] : C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE
SetPoint.exe [Logitech Inc.] : C:\Program Files\Logitech\SetPoint\SetPoint.exe
KHALMNPR.exe [Logitech Inc.] : C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.exe
ekrn.exe [ESET] : C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PnkBstrA.exe : C:\Windows\system32\PnkBstrA.exe
SbPFLnch.exe [Sunbelt Software, Inc.] : C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
SbPFSvc.exe [Sunbelt Software, Inc.] : C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
SbPFCl.exe [Sunbelt Software, Inc.] : C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
usnsvc.exe [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\usnsvc.exe
msnmsgr.exe [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msnmsgr.exe
PnkBstrB.exe : C:\Windows\system32\PnkBstrB.exe
Internet Settings
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = [go.microsoft.com...](http://go.microsoft.com/fwlink/?LinkId=69157)
R - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings, ProxyOverride = *.local
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName =
StartUps
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, Gadwin PrintScreen : [Gadwin Systems, Inc] : C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, MsnMsgr : [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msnmsgr.exe
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, DAEMON Tools Lite : [DT Soft Ltd] : C:\Program Files\DAEMON Tools Lite\daemon.exe
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, E09FXLRD_63747874 : [Microsoft Corporation] : C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, egui : [ESET] : C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, SoundMAXPnP : [Analog Devices, Inc.] : C:\Program Files\Analog Devices\Core\smax4pnp.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, SoundTray : [Sonic Focus, Inc.] : C:\Program Files\Analog Devices\SoundMAX\SoundTray.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, Windows Mobile-based device management : [Microsoft Corporation] : C:\Windows\WindowsMobile\wmdSync.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, AdobeCS4ServiceManager : [Adobe Systems Incorporated] : C:\Program Files\Common Files\ADOBE\CS4SERVICEMANAGER\CS4SERVICEMANAGER.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce, Malwarebytes' Anti-Malware : [Malwarebytes Corporation] : C:\Program Files\MALWAREBYTES' ANTI-MALWARE\MBAMGUI.EXE
04 - Startup: %STARTUPALL%\Logitech SetPoint.lnk [Logitech Inc.] : C:\Program Files\Logitech\SetPoint\SetPoint.exe
Shell Extensions
Eset Smart Security - Context Menu Shell Extension - {B089FE88-FB52-11D3-BDF1-0050DA34150D} - [ESET] : C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll
UIContextMenu Class - {AD392E40-428C-459F-961E-9B147782D099} - [EZB Systems, Inc.] : C:\Program Files\UltraISO\isoshell.dll
Mes dossiers de partage - {FC9FB64A-1EB2-4CCF-AF5E-1A497A9B5C2D} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\fsshext.8.5.1302.1018.dll
WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} - : C:\Program Files\WinRAR\rarext.dll
KbLogiExt Class - {DC70C4A5-2044-4c59-B806-DEFB9AE0DF7C} - [Logitech Inc.] : C:\Program Files\Logitech\SetPoint\kbcplext.dll
LogiExt Class - {B9B9F083-2B04-452A-8691-83694AC1037B} - [Logitech Inc.] : C:\Program Files\Logitech\SetPoint\mcplext.dll
Protocol Handler
- {828030A1-22C1-4009-854F-8E305202313F} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
- {828030A1-22C1-4009-854F-8E305202313F} - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
Services
23 - [Analog Devices, Inc.] : C:\Windows\system32\drivers\ADIHdAud.sys
23 - [ESET] : C:\Windows\system32\DRIVERS\eamon.sys
23 - [ESET] : C:\Windows\system32\DRIVERS\easdrv.sys
23 - [ESET] : C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
23 - : C:\Windows\system32\DRIVERS\epfwtdir.sys
23 - [Logitech Inc.] : C:\Windows\system32\DRIVERS\L8042Kbd.sys
23 - [Logitech, Inc.] : C:\Windows\system32\DRIVERS\LHidFilt.Sys
23 - [Logitech, Inc.] : C:\Windows\system32\DRIVERS\LMouFilt.Sys
23 - [Logitech, Inc.] : C:\Windows\system32\Drivers\LUsbFilt.Sys
23 - : C:\Windows\system32\DRIVERS\ASACPI.sys
23 - [NVIDIA Corporation] : C:\Windows\system32\DRIVERS\nvlddmkm.sys
23 - [NVIDIA Corporation] : C:\Windows\system32\nvvsvc.exe
23 - : C:\Windows\system32\PnkBstrA.exe
23 - [Sunbelt Software, Inc.] : C:\Windows\system32\drivers\SbFw.sys
23 - [Sunbelt Software, Inc.] : C:\Windows\system32\DRIVERS\sbfwim.sys
23 - [Sunbelt Software, Inc.] : C:\Windows\system32\drivers\sbhips.sys
23 - [Sunbelt Software, Inc.] : C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
23 - [Sunbelt Software, Inc.] : C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
23 - : C:\Windows\system32\Drivers\sptd.sys
23 - [Microsoft Corporation] : C:\Program Files\Windows Live\Messenger\usnsvc.exe
23 - [Marvell] : C:\Windows\system32\DRIVERS\yk60x86.sys
23 - : C:\Windows\system32\PnkBstrB.exe
23 - [Crawler.com] : C:\Windows\system32\drivers\sp_rsdrv2.sys
Threat Files
<SPR.Moo.A> : d:\C#\VideoConverter\moo.dll
<SPR.Moo.A> : d:\IRC\moo.dll
<Client-IRC.mIRC.616> : d:\IRC\IRC 6.16\mirc616.exe
<Client-IRC.mIRC.616> : d:\Logiciels\mirc616.exe
<Monitor.OverSpy.k> : e:\ProgramData\dvbdream\rec_mng.dll
Advanced Files Report
%PROGRAMFILES%\Enigma Software Group\SpyHunter\SpyHunterMonitor.dll MD5=09209B6359F30FDDBFB00202C7097A1C SIZE=225280
%SYSDIR%\nvvsvc.exe [NVIDIA Corporation] [NVIDIA Driver Helper Service, Version 178.24] MD5=55CC673F72608CC569D696408A31D2B7 SIZE=203296
%SYSDIR%\SFFXSAPO.dll [Sonic Focus, Inc.] [Sonic Focus Effects] MD5=0DA361700E4F58ACBB8791BF05403A48 SIZE=66048
%SYSDIR%\NVSVC.DLL [NVIDIA Corporation] [NVIDIA Driver Helper Service, Version 178.24] MD5=38297A39A52112B10E6EFA38B287AF46 SIZE=612896
%SYSDIR%\nvapi.dll [NVIDIA Corporation] [NVIDIA Windows drivers] MD5=5C821135055304F29EEFEA346BECBA7B SIZE=483328
%SYSDIR%\EP0SLM00.DLL [SEIKO EPSON CORPORATION] [EPSON Printer Driver] MD5=4AB80A11CFB0FEEFAACFDB71B1DFEFE8 SIZE=62976
%SYSDIR%\udcpm.dll [fCoder Group, Inc.] [Universal Document Converter] MD5=47CDC7491A3DC236DDE63BC355D558C9 SIZE=5632
%SYSDIR%\spool\PRTPROCS\W32X86\EP0NPP01.DLL [SEIKO EPSON CORPORATION] [EPSON Print Processor ESC/P] MD5=1A2CB2A86A6C3F0571394A9BBC0FB805 SIZE=32768
%PROGRAMFILES%\Logitech\SetPoint\lgscroll.dll [Logitech Inc.] [Logitech SetPoint] MD5=9FDA03B009D3F745D09D9F18D1818815 SIZE=44544
%SYSDIR%\nvd3dum.dll [NVIDIA Corporation] [NVIDIA Windows Vista WDDM driver] MD5=D86256CB04C8C1162EEFEE85F71F5F8C SIZE=5963776
%PROGRAMFILES%\Enigma Software Group\SpyHunter\SpyHunter3.exe [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=08368049852736D6B1F166D032C38195 SIZE=864256
%PROGRAMFILES%\Enigma Software Group\SpyHunter\Common.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=2C1A9D9DFEEA55C0536695ACF9C31303 SIZE=651264
%PROGRAMFILES%\Enigma Software Group\SpyHunter\Options.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=8371140E6192BCD23128CF2738A43339 SIZE=315392
%PROGRAMFILES%\Enigma Software Group\SpyHunter\ActiveKill.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=7C131112C07B3BACAEA6CB5E501D2BFA SIZE=208896
%PROGRAMFILES%\Enigma Software Group\SpyHunter\Scanner.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=279FE921560A906F827F1F13AFB461C8 SIZE=925696
%PROGRAMFILES%\Enigma Software Group\SpyHunter\HelpDesk.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=57DFCB1C82138A8BA84A335621D9C5F3 SIZE=696320
%PROGRAMFILES%\Enigma Software Group\SpyHunter\ActiveXKill.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=19958FB4D45FCE40C702E3EE2146842D SIZE=405504
%PROGRAMFILES%\Enigma Software Group\SpyHunter\ProcessGuard.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=A6C6FAE7AB6C5DF30C1A3882761E6DD0 SIZE=724992
%PROGRAMFILES%\Enigma Software Group\SpyHunter\RegistryGuard.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=4D61258BB03DE4DEE5AEA7F315F805E5 SIZE=720896
%PROGRAMFILES%\Enigma Software Group\SpyHunter\NetworkSentry.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=B72D96C1373DAFCD2C08B479A925B64D SIZE=479232
%PROGRAMFILES%\Enigma Software Group\SpyHunter\HFMonitor.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=F76963DB90DF95DA15726F1F96D4A483 SIZE=401408
%PROGRAMFILES%\Enigma Software Group\SpyHunter\WSAMonitor.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=0052AFA35D102F110EE121B97E894082 SIZE=421888
%PROGRAMFILES%\Enigma Software Group\SpyHunter\Scheduler.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=3C0287552B80329589FE1F4444472B41 SIZE=294912
%PROGRAMFILES%\Enigma Software Group\SpyHunter\Language.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=FDFFFD7D89A1638FA16FDE5578BE0C3E SIZE=9596928
%SYSDIR%\XceedCry.dll [Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com] [Xceed Encryption Library] MD5=04325C424A6068534346A37C2234B4F2 SIZE=526184
%PROGRAMFILES%\Enigma Software Group\SpyHunter\Updater.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=FC6FC9FEB16824634E3C1E011E829F62 SIZE=454656
%PROGRAMFILES%\Enigma Software Group\SpyHunter\EnigmaUpdater.dll [Enigma Software Group USA, LLC.] [SpyHunter3] MD5=E06F5096736E3004D13150D7151C0CF2 SIZE=385024
%SYSDIR%\XceedZip.dll [Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com] [Xceed Zip Compression Library] MD5=820F9E947A0B3F58A12C96ACB99237FF SIZE=497496
%SYSDIR%\actskn43.ocx [ActiveSkin Module] MD5=958DD02D69DC43406810D62A607DFD1D SIZE=389120
%PROGRAMFILES%\WinSCP\DragExt.dll [Martin Prikryl] [WinSCP] MD5=F3FC8FA429EAF706F8FFABF5EA710C2E SIZE=72192
%COMMONFILES%\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll [Adobe Systems Incorporated] [Adobe Drive CS4] MD5=185D50DA1832A734DC9826037E82BE40 SIZE=79240
%COMMONFILES%\Adobe\Adobe Drive CS4\ADFSMenu.dll [Adobe Systems Incorporated] [Adobe Drive CS4] MD5=AB056F204BE2B2754E25AB1F4A98F021 SIZE=996720
%COMMONFILES%\Adobe\Adobe Drive CS4\BIB.dll [Adobe Systems Incorporated] [BIB 2008/06/03-17:36:12] MD5=87AF77718E3BFB5A7766F575609C057A SIZE=276992
%COMMONFILES%\Adobe\Adobe Version Cue CS4\Client\4.0.0\VersionCue.DLL [Adobe Systems, Incorporated] [Adobe VersionCue] MD5=A12F7C8E171E67E3D71358BF3AF10163 SIZE=1414496
%PROGRAMFILES%\Malwarebytes' Anti-Malware\mbamext.dll [Malwarebytes Corporation] [Malwarebytes' Anti-Malware] MD5=76C72E854A4A3772A195B50EF92B03B0 SIZE=73392
%PROGRAMFILES%\WinRAR\rarext.dll MD5=82F0E6886AD9774F4504FE24B4EE3A42 SIZE=121344
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\shellExt.dll [ESET] [ESET Smart Security] MD5=FDD589AC6992706D1A8068262C80DE03 SIZE=169216
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\eguiScan.dll [ESET] [ESET Smart Security] MD5=A12E8943B1517E16F02E25AA0FE946BE SIZE=275712
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\eguiAmon.dll [ESET] [ESET Smart Security] MD5=AE9EFFB0E00C6820FB864AE6AB3FF6F8 SIZE=103680
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\eguiEmon.dll [ESET] [ESET Smart Security] MD5=D23FD9BCC9867C6E7E7EBEFC7E0257DD SIZE=107776
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\eguiEpfw.dll [ESET] [ESET Smart Security] MD5=B66EE3953598BD6C780CD4D293B764E9 SIZE=771328
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\eguiUpdate.dll [ESET] [ESET Smart Security] MD5=1F20FE41B59BDB9FDB95B76B983A9CB9 SIZE=226560
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\eguiMailPlugins.dll [ESET] [ESET Smart Security] MD5=14DD319D560CA7AF28A19EB9DB13C2F8 SIZE=91392
%PROGRAMFILES%\Analog Devices\Core\SMWDMIF.dll [Analog Devices, Inc.] [Audio Driver Interface Module] MD5=4EEF762362BFEE5014BCC4A7AF69656E SIZE=462848
%SYSDIR%\SFFXComm.dll [Sonic Focus, Inc.] [Sonic Focus Effects] MD5=36324EB10A4A37C8070675A9BE1E33F8 SIZE=54784
%PROGRAMFILES%\DAEMON Tools Lite\DaemonPlugin.dll [DT Soft Ltd] [DAEMON Tools Lite] MD5=484BAF02E9F88095500992AAD39FE5A2 SIZE=1031624
%PROGRAMFILES%\DAEMON Tools Lite\daemon.dll [DT Soft Ltd.] [DAEMON Tools] MD5=11D0D5926B0FAFB19D4A39FCA6A6D9DA SIZE=683488
%PROGRAMFILES%\DAEMON Tools Lite\imgengine.dll [DT Soft Ltd.] [DAEMON Tools Image Engine] MD5=D536F721866AFC38BF67EFD4318FA7AB SIZE=282080
%PROGRAMFILES%\DAEMON Tools Lite\Lang\ENU.dll MD5=B7B530A56F66C13084E171FC752E5DD2 SIZE=81920
%PROGRAMFILES%\DAEMON Tools Lite\Lang\FRA.dll MD5=5806D19BAD96A15B6311EB03F30382E5 SIZE=103424
%PROGRAMFILES%\DAEMON Tools Lite\Plugins\ISOmaker.dll [DT Soft Ltd] [ISO Maker] MD5=0D390A91DE6A9E58CB4FFC48937356AD SIZE=80384
%PROGRAMFILES%\Logitech\SetPoint\SetPoint.exe [Logitech Inc.] [Logitech SetPoint] MD5=0450EC2579CF6CFD962D49878E0A9378 SIZE=688128
%SYSDIR%\KemUtil.dll [Logitech Inc.] [Logitech SetPoint] MD5=1495D6531182CE95DFE717730627B46B SIZE=135168
%PROGRAMFILES%\Logitech\SetPoint\SetPointCOM.dll [Logitech Inc.] [Logitech SetPoint] MD5=3B59356DF3E34A2CDCD25DA145EE5E31 SIZE=25600
%SYSDIR%\kemutb.dll [Logitech Inc.] [Logitech SetPoint] MD5=9CBD535B5BCD6BB659B5F5300553B8F4 SIZE=163840
%SYSDIR%\KemWnd.dll [Logitech Inc.] [Logitech SetPoint] MD5=6D6E39714AE85EA8C279B0A762DD1CCB SIZE=110592
%SYSDIR%\KemXML.dll [Logitech Inc.] [Logitech SetPoint] MD5=D7A55EAE8DDC13A83C02A6B9CFAB2736 SIZE=69632
%PROGRAMFILES%\Logitech\SetPoint\Macros\MacroCore.dll [Logitech Inc.] [Logitech SetPoint] MD5=C5613AF19DA414C6A6351F54E0D0D2A4 SIZE=929792
%PROGRAMFILES%\Logitech\SetPoint\WebBrowserSupport.dll [Logitech Inc.] [Logitech SetPoint] MD5=541A5BAA9A9E54A1A83B157C1EAA6035 SIZE=151552
%PROGRAMFILES%\Logitech\SetPoint\IMHook.dll [Logitech Inc.] [Logitech SetPoint] MD5=849AB534867A838FF4184035DDEBC5E6 SIZE=10240
%COMMONFILES%\Logitech\khalshared\KhalApi.dll [Logitech Inc.] [Logitech SetPoint] MD5=007BBF9CAA026AB33137AC503D86EFF1 SIZE=401408
%PROGRAMFILES%\Logitech\SetPoint\kgame.dll [Logitech Inc.] [Logitech SetPoint] MD5=11A083A14DF756087D814BBC5CA2C803 SIZE=69632
%PROGRAMFILES%\Logitech\SetPoint\GameHook.dll [Logitech Inc.] [Logitech SetPoint] MD5=FB9924C1C6D9F8DD7A3C388DBA4B04F5 SIZE=57344
%PROGRAMFILES%\Logitech\SetPoint\LCabHandler.dll [Logitech Inc.] [Logitech SetPoint] MD5=7AB94F06E26C393D72F8575CF8CC1A25 SIZE=122880
%COMMONFILES%\Logitech\khalshared\KHALMNPR.exe [Logitech Inc.] [Logitech SetPoint] MD5=CD746E8C320A2A163589BBA7F4FC570A SIZE=101136
%COMMONFILES%\Logitech\khalshared\KHALITCH.DLL [Logitech Inc.] [Logitech SetPoint] MD5=595614A0876D032E3CB334CF8DC1DF03 SIZE=249856
%COMMONFILES%\Logitech\khalshared\KHALMW.DLL [Logitech Inc.] [Logitech SetPoint] MD5=E014789A230C8F58FC290065F7564772 SIZE=286720
%COMMONFILES%\Logitech\khalshared\KHALHPP.DLL [Logitech Inc.] [Logitech SetPoint] MD5=93AC6891E6E6C23AACC4A8285E965014 SIZE=405504
%COMMONFILES%\Logitech\khalshared\KHALMOU.DLL [Logitech Inc.] [Logitech SetPoint] MD5=6229EA00338F14B44F32AA5F0C709C2C SIZE=344064
%COMMONFILES%\Logitech\khalshared\KHALHID.DLL [Logitech Inc.] [Logitech SetPoint] MD5=F8E3ED4BB899CFBBF7829E1F31FB4AA6 SIZE=315392
%COMMONFILES%\Logitech\khalshared\KHALUSB.DLL [Logitech Inc.] [Logitech SetPoint] MD5=44C94518FC62B22768931368F7E06AC4 SIZE=311296
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\ekrn.exe [ESET] [ESET Smart Security] MD5=DE0542189B2853E6118C42A9D6B7C2A7 SIZE=468224
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\ekrnScan.dll [ESET] [ESET Smart Security] MD5=E75BB6BD4D0F052656AD88E194C118D5 SIZE=156928
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\ekrnAmon.dll [ESET] [ESET Smart Security] MD5=9E0F456A0F37C6B20C41C1CBB85DD09C SIZE=136448
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\ekrnEmon.dll [ESET] [ESET Smart Security] MD5=7B0D3EBDC967DAABB3121FEE3A74A45D SIZE=103680
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\ekrnEpfw.dll [ESET] [ESET Smart Security] MD5=92D520B1FBAAE90B1346AC1DE37E8C3C SIZE=259328
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\ekrnUpdate.dll [ESET] [ESET Smart Security] MD5=BA241EBE0BD7C6825A4487CCD17D83F0 SIZE=140544
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\updater.dll [ESET] [ESET Smart Security] MD5=393C6AD015EF8B8FDA814F438727CBF1 SIZE=173312
%PROGRAMFILES%\ESET\ESET NOD32 Antivirus\ekrnMailPlugins.dll [ESET] [ESET Smart Security] MD5=D6BFF4F0A9F01A117D1A5ADAA3283AAE SIZE=103680
%SYSDIR%\PnkBstrA.exe MD5=831883B107684301F48ACE752C963984 SIZE=66872
%PROGRAMFILES%\Sunbelt Software\Personal Firewall\SbPFLnch.exe [Sunbelt Software, Inc.] [Sunbelt Personal Firewall] MD5=87CDF3330768BD122112CE6D43462E15 SIZE=95528
%PROGRAMFILES%\Sunbelt Software\Personal Firewall\SbPFSvc.exe [Sunbelt Software, Inc.] [Sunbelt Personal Firewall] MD5=A75C076E29B93C951A7E4B9BEF1E169A SIZE=1357096
%PROGRAMFILES%\Sunbelt Software\Personal Firewall\kticonv.dll [Free Software Foundation] [libiconv: character set conversion library] MD5=EADF6E67D2F2B445E07B55073264B4FF SIZE=888832
%PROGRAMFILES%\Sunbelt Software\Personal Firewall\PocoFoundation.dll MD5=8342EA2FB9B9DED9634D5E684A81AF0A SIZE=859648
%PROGRAMFILES%\Sunbelt Software\Personal Firewall\PocoXml.dll MD5=668AAB2221F2C588A2200543CCF14FEA SIZE=470016
%PROGRAMFILES%\Sunbelt Software\Personal Firewall\PocoExt.dll MD5=50764019F146982007AC5DEF44971708 SIZE=18432
%PROGRAMFILES%\Sunbelt Software\Personal Firewall\LibEay32.dll MD5=96373C802D27D4F942B3D8E24F1CBDCE SIZE=827392
%PROGRAMFILES%\Sunbelt Software\Personal Firewall\SSLeay32.dll MD5=E4DF774312A6C2215D36F42E2CE8D4D8 SIZE=155648
%PROGRAMFILES%\Sunbelt Software\Personal Firewall\CurlLib.dll [The cURL library, []curl.haxx.se...](http://curl.haxx.se/) [The cURL library] MD5=8156230FCFFADDB2A6B4623D64CE8282 SIZE=290816
%PROGRAMFILES%\Sunbelt Software\Personal Firewall\SbPFWsc.dll [Sunbelt Software, Inc.] [Sunbelt Personal Firewall] MD5=D6AEE19386A291E94A4816F871F234EF SIZE=79144
%PROGRAMFILES%\Sunbelt Software\Personal Firewall\SbFwe.dll [Sunbelt Software, Inc.] [Sunbelt Personal Firewall] MD5=AE67C16B002357489D69E12A04D20ACD SIZE=275752
%PROGRAMFILES%\Sunbelt Software\Personal Firewall\SbFw.dll [Sunbelt Software, Inc.] [Sunbelt Personal Firewall] MD5=98C7C959AE8BF88DEA33AB08DFB9C8A7 SIZE=95528
%PROGRAMFILES%\Sunbelt Software\Personal Firewall\SbFwIm.dll [Sunbelt Software, Inc.] [Sunbelt Personal Firewall] MD5=7AB2E1FE7DF367526F9955F2B34F3935 SIZE=91432
%SYSDIR%\escwiad.dll [SEIKO EPSON CORP.] [EPSON WIA Driver] MD5=42757589964CF971682215E33F34878B SIZE=61952
%PROGRAMFILES%\Sunbelt Software\Personal Firewall\SbPFCl.exe [Sunbelt Software, Inc.] [Sunbelt Personal Firewall] MD5=6C31956255BF3371E5A7A7A1A242C38C SIZE=1705256
%PROGRAMFILES%\Windows Live\Messenger\usnsvc.exe [Microsoft Corporation] [Messenger] MD5=9D19B042A4FD5C02195071EA2FE0C821 SIZE=98328
%PROGRAMFILES%\Windows Live\Messenger\MSIMG32.dll [Patchou] [Messenger Plus! Live] MD5=67DE23C7D320590168DAD1B59CF59F3A SIZE=59728
%PROGRAMFILES%\Messenger Plus! Live\MsgPlusLive.dll [Patchou] [Messenger Plus! Live] MD5=2F90405B21686A8A81B77B2824D95521 SIZE=3379024
%PROGRAMFILES%\Messenger Plus! Live\Detoured.dll MD5=6256684495C499B22DCDBA266E4F2494 SIZE=4096
%PROGRAMFILES%\Messenger Plus! Live\MsgPlusLiveRes.dll [Patchou] [Messenger Plus! Live] MD5=68262E065949567D7B38F4EC757B09E7 SIZE=1831248
%SYSDIR%\Macromed\Flash\Flash10a.ocx [Adobe Systems, Inc.] [Shockwave Flash] MD5=466C1355934925768822E380DA6E6E4A SIZE=3789728
%PROGRAMFILES%\Messenger Plus! Live\libsndfile.dll MD5=00742B11F1492D15A0A8FF25E36AB9BE SIZE=370688
%PROGRAMFILES%\Messenger Plus! Live\lame_enc.dll MD5=75430D2F8B2E204814247D62D9445CE4 SIZE=390656
%SYSDIR%\PnkBstrB.exe MD5=D27C75A9690CAEE8B29CFEC2274CB6FE SIZE=202040
%SYSDIR%\Macromed\Flash\NPSWF32.dll [Adobe Systems, Inc.] [Shockwave Flash] MD5=72B7F936C68B8B9A1944753702E1F1FF SIZE=2889088
%PROGRAMFILES%\UltraISO\isoshell.dll [EZB Systems, Inc.] [ISOShell] MD5=9C9E7DD001B69E4E4A70F8DADF454867 SIZE=53248
%PROGRAMFILES%\Windows Live\Messenger\fsshext.8.5.1302.1018.dll [Microsoft Corporation] [Messenger] MD5=8BDE1F61DFBAAE7A2916170E8B75FE0F SIZE=329240
%PROGRAMFILES%\Logitech\SetPoint\kbcplext.dll [Logitech Inc.] [Logitech SetPoint] MD5=0D1D2F409FCD064B6035778BD0F1D32A SIZE=102400
%PROGRAMFILES%\Logitech\SetPoint\mcplext.dll [Logitech Inc.] [Logitech SetPoint] MD5=168B20323B4B0FC40A2637FA67427ABE SIZE=102400
%SYSDIR%\drivers\ADIHdAud.sys [Analog Devices, Inc.] [SoundMAX Digital HD Audio Driver] MD5=D7D7B88BC75220A67B8E9C9FD0D39951 SIZE=342528
%SYSDIR%\svchost.exe -k netsvcs
%SYSDIR%\svchost.exe -k LocalSystemNetworkRestricted
%SYSDIR%\svchost.exe -k LocalServiceNetworkRestricted
%SYSDIR%\svchost.exe -k LocalServiceNoNetwork
%SYSDIR%\svchost.exe -k NetworkService
%SYSDIR%\svchost.exe -k DcomLaunch
%SYSDIR%\DRIVERS\eamon.sys [ESET] [ESET Smart Security] MD5=9307BB1B5C3ED19517056E1F122D8C77 SIZE=39944
%SYSDIR%\DRIVERS\easdrv.sys [ESET] [ESET Smart Security] MD5=DF91159321C0991A2E2EB97C84DC4110 SIZE=53256
%SYSDIR%\DRIVERS\epfwtdir.sys MD5=62787D051E9CE5DD6217C21468177AA0 SIZE=34312
%SYSDIR%\svchost.exe -k LocalService
%SYSDIR%\DRIVERS\L8042Kbd.sys [Logitech Inc.] [Logitech SetPoint] MD5=58759156A6918913EDD368F995BE3E53 SIZE=20496
%SYSDIR%\DRIVERS\LHidFilt.Sys [Logitech, Inc.] [Logitech SetPoint(TM)] MD5=C91206CA84684057118265E8377C77B6 SIZE=34576
%SYSDIR%\DRIVERS\LMouFilt.Sys [Logitech, Inc.] [Logitech SetPoint(TM)] MD5=9F03720FA5E6D14CD4DFEA610F2C1A7C SIZE=33296
%SYSDIR%\Drivers\LUsbFilt.Sys [Logitech, Inc.] [Logitech SetPoint(TM)] MD5=9BC5A8F08CC4770C95F9C55D992DE929 SIZE=28176
%SYSDIR%\DRIVERS\ASACPI.sys [ATK0110 ACPI Utility] MD5=DCDAAB8697A47894A554050CE18D0B56 SIZE=7680
%SYSDIR%\DRIVERS\nvlddmkm.sys [NVIDIA Corporation] [NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 178.24] MD5=9A87BBA2307B0F16FAB141A2EE664E4D SIZE=7380896
%SYSDIR%\svchost.exe -k NetworkServiceNetworkRestricted
%SYSDIR%\svchost.exe -k WindowsMobile
%SYSDIR%\svchost.exe -k rpcss
%SYSDIR%\drivers\SbFw.sys [Sunbelt Software, Inc.] [Sunbelt Personal Firewall] MD5=8FD0B55C7C800754FD83C6C270830071 SIZE=269736
%SYSDIR%\DRIVERS\sbfwim.sys [Sunbelt Software, Inc.] [Sunbelt Personal Firewall] MD5=F01B8409A11C319E3C5B9DD418676D2C SIZE=65576
%SYSDIR%\drivers\sbhips.sys [Sunbelt Software, Inc.] [Sunbelt Personal Firewall] MD5=31CA701F26EA66468AD3C3C6498755CE SIZE=66600
%SYSDIR%\Drivers\sptd.sys SIZE=717296
%SYSDIR%\svchost.exe -k imgsvc
%SYSDIR%\svchost.exe -k WerSvcGroup
%SYSDIR%\svchost.exe -k secsvcs
%SYSDIR%\SearchIndexer.exe \Embedding
%SYSDIR%\DRIVERS\yk60x86.sys [Marvell] [Marvell Yukon Ethernet Controller] MD5=2D07E65ED0023BB10B13A912B27DFB1A SIZE=246784
%SYSDIR%\drivers\sp_rsdrv2.sys [Crawler.com] [Spyware Terminator] MD5=8831252BCF05FCFB5ABD116A22E552D8 SIZE=142592
%PROGRAMFILES%\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll [Microsoft Corporation] [Messenger] MD5=56319E6B4D190A2DEB4463A9CE4D4F74 SIZE=66072
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\ACE.dll [Adobe Systems Incorporated] [ACE] MD5=CC954BD96AC969F9CDCC34E0349570DE SIZE=845824
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\AGM.dll [Adobe Systems Incorporated] [AGM] MD5=0B6A7C548C07EE28AFE05E6ABB96CD2E SIZE=5345280
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\Adobe DNG Converter.exe [Adobe Systems Incorporated] [Adobe DNG Converter] MD5=740F204E91A64455C60C7866664E742F SIZE=6183088
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\AdobeLM_libFNP.dll [Macrovision Europe Ltd.] [FLEXnet Publisher (32 bit)] MD5=1D6BFFBC5CDDA17E4812288FC5C5CE22 SIZE=2531328
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\AdobeUpdater.dll [Adobe Systems Incorporated] [Adobe Updater Library] MD5=88EAB5C445EB10829513D076B4E3675A SIZE=496128
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\BIB.dll [Adobe Systems Incorporated] [BIB] MD5=AF000DDB9802F88C3E40FA8378B835F7 SIZE=276480
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\FNP_Act_Installer.dll [Macrovision Europe Ltd.] [FLEXnet Publisher (32 bit)] MD5=6F2E09108202E5EB008C69488FAFD27C SIZE=934400
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\MPS.dll [Adobe Systems Incorporated] [MPS] MD5=63FFF89A754FC2B2D9DC37320B04547B SIZE=3798016
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\OperaMgr.dll [Adobe Systems Incorporated] [Adobe Opera Manager] MD5=DE0C3BB21AA525F07786BD748D6BD6DB SIZE=73728
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\Photodownloader.exe [Adobe Systems Incorporated] [Adobe Photo Downloader] MD5=47714AEAFFAB5A29DE9EA08CB4A74C04 SIZE=4937904
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\Plug-Ins\ASEFormat.8bi MD5=B13A5EBEEDF948B99F4817A7E4750579 SIZE=290816
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\Plug-Ins\Cineon.8bi [Adobe Systems, Incorporated] [Adobe Photoshop CS3] MD5=81F9ACB9E9C30B6766CF21B775D51EB2 SIZE=29184
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\Plug-Ins\MMXCore.8BX [Adobe Systems, Incorporated] [Adobe Photoshop CS3] MD5=6E5259852ACB4E964FEBD7FA5B5F9216 SIZE=245760
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\adobe_personalization.dll [Adobe Systems Incorporated] [Adobe EPIC Personalization] MD5=157E5B28440B22797106EC574805E10B SIZE=346624
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\libagli18n28.dll [IBM Corporation and others] [International Components for Unicode] MD5=E110D3350932FD8F193AB3D8A75F51D4 SIZE=671744
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\libagluc28.dll [IBM Corporation and others] [International Components for Unicode] MD5=B9460E79EC16BE1416869EB13CE68D2C SIZE=589824
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\libmmd.dll [Intel Corporation] [Intel(r) C Compiler, Intel(r) C++ Compiler, Intel(r) Fortran Compiler] MD5=A8E9F6ED6912CE1B03A172DB99CC1823 SIZE=2797660
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\libmysqld.dll MD5=6A9DC6FB11A6BF111171AF8FADDC2809 SIZE=2748416
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\ols.dll [Adobe Systems Incorporated] [Adobe Online Services] MD5=EC903FC197E43A61EC1B7B3B3C025584 SIZE=290816
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\pspluginsupport.dll [Adobe Systems Incorporated] [Adobe Photo Downloader 4.0 component] MD5=AC6417E173833D9B0E6738CE1485F783 SIZE=114688
%PROGRAMFILES%\Adobe\Adobe Bridge CS3\zlib.dll [ZLib.DLL] MD5=038F501695724FF0A44A0129DE8279DE SIZE=618496
%PROGRAMFILES%\Adobe\Adobe Device Central CS3\SCL.dll [Adobe Systems Incorporated] [Adobe SCL] MD5=70C98B718A3C72922A212C5762DC9F2A SIZE=1410048
%PROGRAMFILES%\Adobe\Adobe Stock Photos CS3\adobe_caps.dll [Adobe Systems Incorporated] [Adobe CAPS] MD5=C4A9FBE8B7D32E29880AE41738166C4B SIZE=220856
%COMMONFILES%\Adobe\Adobe Asset Services CS3\ARE.dll [Adobe Systems Incorporated] [ARE] MD5=8B507D67731B1C6244BD61E0E92621CD SIZE=319160
%COMMONFILES%\Adobe\Adobe Asset Services CS3\AXE8SharedExpat.dll [Adobe Systems Incorporated] [AXE8SharedExpat] MD5=EF6873EF162288CD053C31EFAAF366AD SIZE=167936
%COMMONFILES%\Adobe\Adobe Asset Services CS3\AdobeXMPFiles.dll [Adobe XMP Files] MD5=456D65C2543902E768CF6105386ABCBE SIZE=339968
%COMMONFILES%\Adobe\Adobe Asset Services CS3\BIB.dll [Adobe Systems Incorporated] [BIB] MD5=A864913759544CB26093B792206C0894 SIZE=282816
%COMMONFILES%\Adobe\Adobe Asset Services CS3\BIBUtils.dll [Adobe Systems Incorporated] [BIBUtils] MD5=2BD9F80EF217317935D9513320CF9CA6 SIZE=249552
%COMMONFILES%\Adobe\Adobe Asset Services CS3\Plug-Ins\Cineon.8bi [Adobe Systems, Incorporated] [Adobe Photoshop CS3] MD5=81F9ACB9E9C30B6766CF21B775D51EB2 SIZE=29184
%COMMONFILES%\Adobe\Adobe Asset Services CS3\Plug-Ins\FastCore.8BX [Adobe Systems, Incorporated] [Adobe Photoshop CS3] MD5=EA820925DED97BF9EDACD6A0FCBFD05C SIZE=32768
%COMMONFILES%\Adobe\Adobe Asset Services CS3\Plug-Ins\PCX.8BI [Adobe Systems, Incorporated] [Adobe Photoshop CS3] MD5=65CFE9BE2452FC842B8EF107107972FC SIZE=22528
%COMMONFILES%\Adobe\Linguistics\Providers\Plugins\WRLiloPlugin1.0\NFTWin_MacEnc.dll [Winsoft SA - NeuroSoft SA] [NFTWin_MacEnc.dll Dynamic Link Library] MD5=167FC2C88CB8366C2189E82A70281162 SIZE=221184
%COMMONFILES%\Adobe\Updater5\AdobeUpdater.ar_AE [Adobe Systems Incorporated] [Adobe Updater] MD5=37C241539946B96B1C3C83AE06F43079 SIZE=60608
%COMMONFILES%\Adobe\Updater5\AdobeUpdater.bg_BG [Adobe Systems Incorporated] [Adobe Updater] MD5=9E888FA177852B86278AAC34B8D0FDDF SIZE=64704
%COMMONFILES%\Adobe\Updater5\AdobeUpdater.et_EE [Adobe Systems Incorporated] [Adobe Updater] MD5=8973BF847409AE84191BBE8A24A4B167 SIZE=63168
%COMMONFILES%\Adobe\Updater5\AdobeUpdater.lt_LT [Adobe Systems Incorporated] [Adobe Updater] MD5=310EAE4D478D85DD6FBE0F05F42F2B2B SIZE=63168
%COMMONFILES%\Adobe\Updater5\AdobeUpdater.uk_UA [Adobe Systems Incorporated] [Adobe Updater] MD5=7766741BF52B87D901453EC62AE9EFCF SIZE=63680
%SYSDIR%\vxblock.dll [Sonic Solutions] MD5=454CB3FCA343B5612E808ABA75311273 SIZE=39672
%SYSDIR%\MFC71DEU.DLL [Microsoft Corporation] [Microsoft® Visual Studio .NET] MD5=C94D9D5B96D385586063093BAAD8F206 SIZE=65536
%COMMONFILES%\Microsoft Shared\GRPHFLT\CGMIMP32.FLT [Microsoft Corporation] [2007 Microsoft Office system] MD5=ED6FD771408178CECC82E1D84BEBF196 SIZE=290680
%COMMONFILES%\Microsoft Shared\OFFICE12\ACECORE.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=77B7089D98E0CFABBB2EE56B8579CF18 SIZE=1754536
%COMMONFILES%\Microsoft Shared\OFFICE12\ACEES.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=9584476B8082C208B6206D9B5B810538 SIZE=193992
%COMMONFILES%\Microsoft Shared\OFFICE12\ACEODDBS.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=63D501D1AAF0B91BF66CF7DD203AC5D3 SIZE=17800
%COMMONFILES%\Microsoft Shared\OFFICE12\ACEODEXL.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=6014430D5B1406BE794AA8FD6EE756C9 SIZE=17800
%COMMONFILES%\Microsoft Shared\OFFICE12\ACEODTXT.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=E41A3724A30C92353FD9151A8F687DEC SIZE=17800
%COMMONFILES%\Microsoft Shared\OFFICE12\ACEPDE.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=3569A008EF6EA8A713E37C2AE508FFAF SIZE=394688
%COMMONFILES%\Microsoft Shared\OFFICE12\ACER2X.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=C9EA14E222E1193AD172838EE493D601 SIZE=263616
%COMMONFILES%\Microsoft Shared\OFFICE12\ACEREP.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=9C82A5B565FFEB99F98F85370BF13124 SIZE=554440
%COMMONFILES%\Microsoft Shared\OFFICE12\ACEWDAT.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=B574E857BA27BD814D4B1DCD76A8375B SIZE=826232
%COMMONFILES%\Microsoft Shared\OFFICE12\ACEWSS.DLL [Microsoft Corporation] [Microsoft Office System 2007] MD5=FA7748447F93D72F4DC5A0F12AD9C452 SIZE=201664
%COMMONFILES%\Microsoft Shared\OFFICE12\MSOMSE.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=7D03DEF7CD3597DAF8EA663DC4F3B463 SIZE=66368
%COMMONFILES%\Microsoft Shared\OFFICE12\MSSH.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=7F8223AE42E47C9EAD7B1EDEE3806DEE SIZE=43832
%COMMONFILES%\Microsoft Shared\OFFICE12\MSSOAP30.DLL [Microsoft Corporation] [Microsoft Office Soap SDK] MD5=8E72F01D9B2C5F120486B3A8C5491D93 SIZE=507768
%COMMONFILES%\Microsoft Shared\OFFICE12\WISC30.DLL [Microsoft Corporation] [Microsoft Office Soap SDK 3.0] MD5=9E8A7DABAF456A67798929A4C4F06218 SIZE=123720
%COMMONFILES%\Microsoft Shared\PROOF\MSHY3ES.DLL [Spanish Hyphenation Engine] MD5=E6B933E95B55D65A64FB8AFF60FD42E9 SIZE=919696
%COMMONFILES%\Microsoft Shared\Smart Tag\FPERSON.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=F1D0AF8645A1B9AB82470F409F42CE6E SIZE=149816
%COMMONFILES%\System\Ole DB\msmgdsrv.dll [Microsoft Corporation] [Microsoft SQL Server Analysis Services] MD5=30982CC1E54A6D33C84010415289007F SIZE=6040432
%PROGRAMFILES%\Microsoft Office\Office12\ACCVDT.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=CCA024C8B032EFEE7E8AC932ED1BA63D SIZE=3135304
%PROGRAMFILES%\Microsoft Office\Office12\CDLMSO.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=BA9EC8513C365E999FA1E9F823D2FA68 SIZE=402784
%PROGRAMFILES%\Microsoft Office\Office12\GREN50.OLB [Microsoft Corporation] [Microsoft Graph] MD5=998732254D8D7E19EB75083657756635 SIZE=57344
%PROGRAMFILES%\Microsoft Office\Office12\MLCFG32.CPL [Microsoft Corporation] [Microsoft Office Outlook] MD5=CD2E930E206F5D6647C12C0BCB614101 SIZE=83264
%PROGRAMFILES%\Microsoft Office\Office12\MSCAL.OCX [Microsoft Corporation] [Contrôle Calendrier Microsoft] MD5=C76EC546CB449D19D2EBEE8E4BDFF728 SIZE=113024
%PROGRAMFILES%\Microsoft Office\Office12\MSODCW.DLL [Microsoft Corporation] [Microsoft Office Disk Cleanup Wizard] MD5=AED71BD7CFE150290A53B8E3B6F3E0D1 SIZE=431456
%PROGRAMFILES%\Microsoft Office\Office12\MSPST32.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=4909A838F2BD9C4ED7CF7EFFDF3F1E15 SIZE=1110112
%PROGRAMFILES%\Microsoft Office\Office12\NAME.DLL [Microsoft Corporation] [2007 Microsoft Office system] MD5=1C7A4288196FE72EF9AB885CF047C67C SIZE=68464
%PROGRAMFILES%\Microsoft Office\Office12\OIS.EXE [Microsoft Corporation] [Microsoft Office Picture Manager] MD5=34331352E23FE6219F517C1709E63C61 SIZE=277384
%PROGRAMFILES%\Microsoft Office\Office12\OUTLPH.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=F63AD09A21D6FD6E1E14D6666799380D SIZE=180800
%PROGRAMFILES%\Microsoft Office\Office12\RECALL.DLL [Microsoft Corporation] [Microsoft Office Outlook] MD5=4F296FD5CF0F0790E221CFBFCAD800E2 SIZE=39208
%PROGRAMFILES%\Microsoft Office\Office12\VPREVIEW.EXE [Microsoft Corporation] [2007 Microsoft Office system] MD5=16110CC8422078F4707895CAAB470BFE SIZE=33080
%PROGRAMFILES%\Microsoft Office\Office12\VVIEWDWG.DLL [Microsoft Corporation] [Microsoft® Office Visio® 2007] MD5=46C669646C7BE721D1C73D08FC70772A SIZE=1846160
%PROGRAMFILES%\Microsoft Office\Office12\WINWORD.EXE [Microsoft Corporation] [2007 Microsoft Office system] MD5=55A949AB657322ED818F8BFD786D8573 SIZE=349720
%PROGRAMFILES%\Microsoft Office\Office12\XLCALL32.DLL [Microsoft Corporation] [Microsoft Office Excel] MD5=F1446D85469492DEEC3D4E91C7028911 SIZE=13368
%PROGRAMFILES%\Microsoft Office\Office12\nlsdata0000.dll [Microsoft Corporation] [Natural Language Components] MD5=4BE858FC7835BEFE6A5A6AB669805016 SIZE=1512304
%PROGRAMFILES%\Microsoft Works\ltkrn13n.dll [LEAD Technologies, Inc.] [LEADTOOLS(r) DLL for Win32] MD5=9F55BFD2C68DDD94F261B4E7A177042B SIZE=468568
%SYSDIR%\SCP32.DLL [Microsoft Corporation] [Microsoft Visual Basic for Applications] MD5=F0283069C1B8E0A65A97F08186BFC9B2 SIZE=39728
End of Report
Nouveau Scan HijackThis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:12:39, on 07/12/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\rundll32.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Windows\system32\svchost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\AEADISRV.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Windows\system32\PnkBstrA.exe
C:\Windows\system32\PnkBstrB.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Analog Devices\SoundMAX\SoundTray.exe
C:\Windows\System32\rundll32.exe
C:\Windows\WindowsMobile\wmdSync.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.Exe
C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [go.microsoft.com...](http://go.microsoft.com/fwlink/?LinkId=54896)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [go.microsoft.com...](http://go.microsoft.com/fwlink/?LinkId=69157)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [go.microsoft.com...](http://go.microsoft.com/fwlink/?LinkId=54896)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [go.microsoft.com...](http://go.microsoft.com/fwlink/?LinkId=54896)
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [go.microsoft.com...](http://go.microsoft.com/fwlink/?LinkId=69157)
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundTray] C:\Program Files\Analog Devices\SoundMAX\SoundTray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [Gadwin PrintScreen] C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [E09FXLRD_63747874] "C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" -m
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: Logitech SetPoint.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - [C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE...](res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O13 - Gopher Prefix:
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\Windows\system32\AEADISRV.EXE
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
--
End of file - 8131 bytes