Infection trojan aider moi je suis un newbie
chilibro
Messages postés
6
Statut
Membre
-
salwa5 Messages postés 7552 Statut Contributeur -
salwa5 Messages postés 7552 Statut Contributeur -
Salut tout le monde!Voila quelque semaine que quand je demarre mon pc celui ci me dit enfin l anti virus que je suis infecté par un Trojan-Spy.Win32VBStat.h.
Alor je suis donc aller sur un site avec un telechargement de pc doctor ou un truc dans le genre pour guerir mon pc.Mais comme tout commerce celui ci était payant donc j ai ferme la fenetre.Il se trouve que des que j ouvre un page internet plusieur autre onglet s ouvre pour des antivirus ou pc doctor.D autre par je ne sais pas du tout comment suprimme ce virus sans formater.J ai essayer avec mon anti virus (sécuritoo) Il me dit qu il la effaccé avec succes mais le virus réaparai tout le temps.
MErci d avance et aider moi svp!
Merci
Alor je suis donc aller sur un site avec un telechargement de pc doctor ou un truc dans le genre pour guerir mon pc.Mais comme tout commerce celui ci était payant donc j ai ferme la fenetre.Il se trouve que des que j ouvre un page internet plusieur autre onglet s ouvre pour des antivirus ou pc doctor.D autre par je ne sais pas du tout comment suprimme ce virus sans formater.J ai essayer avec mon anti virus (sécuritoo) Il me dit qu il la effaccé avec succes mais le virus réaparai tout le temps.
MErci d avance et aider moi svp!
Merci
A voir également:
- Infection trojan aider moi je suis un newbie
- Trojan remover - Télécharger - Antivirus & Antimalwares
- Anti trojan - Télécharger - Antivirus & Antimalwares
- Csrss.exe trojan fr ✓ - Forum Virus
- Virus trojan al11 ✓ - Forum Virus
- Trojan win32 - Forum Virus
11 réponses
bonjour telecharge hijackthis et colle le resultat ici :
http://www.infos-du-net.com/telecharger/HijackThis.html
demo :
http://perso.orange.fr/rginformatique/section%20virus/demohijack.htm
a++++
http://www.infos-du-net.com/telecharger/HijackThis.html
demo :
http://perso.orange.fr/rginformatique/section%20virus/demohijack.htm
a++++
Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 13:57:23, on 09/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\FSGK32.EXE
C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fssm32.exe
C:\Program Files\Securitoo\av_fw\fswsclds.exe
C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\BackWeb-1044199.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Securitoo\av_fw\Common\FSMB32.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\Program Files\Securitoo\av_fw\Common\FCH32.EXE
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Securitoo\av_fw\Common\FAMEH32.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsav32.exe
C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\petit chat\Bureau\HiJackThis_v2.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {182B90A3-F372-438A-800C-6814B4DE417B} - C:\WINDOWS\system32\efcywxu.dll
O2 - BHO: (no name) - {1962B3EB-C3FB-4BC5-87C1-D63A0F750F5E} - C:\WINDOWS\system32\jkhfc.dll
O2 - BHO: (no name) - {57E218E6-5A80-4f0c-AB25-83598F25D7E9} - C:\WINDOWS\system32\gpdnqprm.dll (file missing)
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll (file missing)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {8E13DDE1-E013-47ec-9C4C-27C2F78BDD26} - C:\WINDOWS\system32\req.dll (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_18_0.dll
O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CFSServ.exe] CFSServ.exe -NoClient
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [SoundService] rundll32.exe "C:\WINDOWS\system32\tpcsgihb.dll",setvm
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?ba3018f86e414f57869995ad41f1d8e4
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?ba3018f86e414f57869995ad41f1d8e4
O8 - Extra context menu item: Télécharger en utilisant Download &Express - C:\Program Files\Download Express\Add_Url.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://jeuxvideo.wanadoo.fr/components/Metaboli.ocx
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O20 - Winlogon Notify: efcywxu - C:\WINDOWS\SYSTEM32\efcywxu.dll
O20 - Winlogon Notify: jkhfc - C:\WINDOWS\system32\jkhfc.dll
O20 - Winlogon Notify: req - C:\WINDOWS\system32\req.dll (file missing)
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Securitoo AntiVirus Firewall (BackWeb Client - 1044199) - Unknown owner - C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: F-Secure Gatekeeper Handler Starter - Unknown owner - C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Authentication Agent (FSAA) - Unknown owner - C:\Program Files\Securitoo\av_fw\Common\FSAA.EXE (file missing)
O23 - Service: fsbwsys - Unknown owner - C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
O23 - Service: F-Secure Distributed Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
Scan saved at 13:57:23, on 09/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\FSGK32.EXE
C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fssm32.exe
C:\Program Files\Securitoo\av_fw\fswsclds.exe
C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\BackWeb-1044199.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Securitoo\av_fw\Common\FSMB32.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\Program Files\Securitoo\av_fw\Common\FCH32.EXE
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Securitoo\av_fw\Common\FAMEH32.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsav32.exe
C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\petit chat\Bureau\HiJackThis_v2.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {182B90A3-F372-438A-800C-6814B4DE417B} - C:\WINDOWS\system32\efcywxu.dll
O2 - BHO: (no name) - {1962B3EB-C3FB-4BC5-87C1-D63A0F750F5E} - C:\WINDOWS\system32\jkhfc.dll
O2 - BHO: (no name) - {57E218E6-5A80-4f0c-AB25-83598F25D7E9} - C:\WINDOWS\system32\gpdnqprm.dll (file missing)
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll (file missing)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {8E13DDE1-E013-47ec-9C4C-27C2F78BDD26} - C:\WINDOWS\system32\req.dll (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_18_0.dll
O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CFSServ.exe] CFSServ.exe -NoClient
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [SoundService] rundll32.exe "C:\WINDOWS\system32\tpcsgihb.dll",setvm
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?ba3018f86e414f57869995ad41f1d8e4
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?ba3018f86e414f57869995ad41f1d8e4
O8 - Extra context menu item: Télécharger en utilisant Download &Express - C:\Program Files\Download Express\Add_Url.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://jeuxvideo.wanadoo.fr/components/Metaboli.ocx
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O20 - Winlogon Notify: efcywxu - C:\WINDOWS\SYSTEM32\efcywxu.dll
O20 - Winlogon Notify: jkhfc - C:\WINDOWS\system32\jkhfc.dll
O20 - Winlogon Notify: req - C:\WINDOWS\system32\req.dll (file missing)
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Securitoo AntiVirus Firewall (BackWeb Client - 1044199) - Unknown owner - C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: F-Secure Gatekeeper Handler Starter - Unknown owner - C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Authentication Agent (FSAA) - Unknown owner - C:\Program Files\Securitoo\av_fw\Common\FSAA.EXE (file missing)
O23 - Service: fsbwsys - Unknown owner - C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
O23 - Service: F-Secure Distributed Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
bonjour t'es pas mal infecté pour commencer
1/Télécharge VundoFix.exe (par Atribune) sur ton Bureau.
http://www.atribune.org/ccount/click.php?id=4
>Double-clique VundoFix.exe afin de le lancer.
>Clique sur le bouton Scan for Vundo.
>Lorsque le scan est complété, clique sur le bouton Remove Vundo.
>Une invite te demandera si tu veux supprimer les fichiers, clique YES
>Après avoir cliqué "Yes", le Bureau disparaîtra un moment lors de la suppression des fichiers.
>Tu verras une invite qui t'annonce que ton PC va s'éteindre ("shutdown"); clique OK
>Démarre ton PC à nouveau.
>Copie/colle le contenu du rapport situé dans C:\vundofix.txt dans ta prochaine réponse.
a++
1/Télécharge VundoFix.exe (par Atribune) sur ton Bureau.
http://www.atribune.org/ccount/click.php?id=4
>Double-clique VundoFix.exe afin de le lancer.
>Clique sur le bouton Scan for Vundo.
>Lorsque le scan est complété, clique sur le bouton Remove Vundo.
>Une invite te demandera si tu veux supprimer les fichiers, clique YES
>Après avoir cliqué "Yes", le Bureau disparaîtra un moment lors de la suppression des fichiers.
>Tu verras une invite qui t'annonce que ton PC va s'éteindre ("shutdown"); clique OK
>Démarre ton PC à nouveau.
>Copie/colle le contenu du rapport situé dans C:\vundofix.txt dans ta prochaine réponse.
a++
VundoFix V6.3.19
Checking Java version...
Java version is 1.4.2.5
Old versions of java are exploitable and should be removed.
Scan started at 15:21:41 09/04/2007
Listing files found while scanning....
C:\WINDOWS\system32\bhigscpt.ini
C:\WINDOWS\system32\bmslpceg.exe
C:\WINDOWS\system32\cfhkj.bak1
C:\WINDOWS\system32\cfhkj.bak2
C:\WINDOWS\system32\cfhkj.ini
C:\WINDOWS\system32\efcywxu.dll
C:\WINDOWS\system32\gpdnqprm.dll
C:\WINDOWS\system32\ikwvregj.exe
C:\WINDOWS\system32\jkhfc.dll
C:\WINDOWS\system32\msofiyxs.exe
C:\WINDOWS\system32\mstenfaw.exe
C:\WINDOWS\system32\ohldswxs.exe
C:\WINDOWS\system32\req.dll
C:\WINDOWS\system32\rhvfcyuq.exe
C:\WINDOWS\system32\tpcsgihb.dll
C:\WINDOWS\system32\vrqoppoj.exe
C:\WINDOWS\system32\yaywtro.dll
C:\WINDOWS\system32\youfcihp.exe
Beginning removal...
Attempting to delete C:\WINDOWS\system32\bhigscpt.ini
C:\WINDOWS\system32\bhigscpt.ini Has been deleted!
Attempting to delete C:\WINDOWS\system32\bmslpceg.exe
C:\WINDOWS\system32\bmslpceg.exe Has been deleted!
Attempting to delete C:\WINDOWS\system32\cfhkj.bak1
C:\WINDOWS\system32\cfhkj.bak1 Has been deleted!
Attempting to delete C:\WINDOWS\system32\cfhkj.bak2
C:\WINDOWS\system32\cfhkj.bak2 Has been deleted!
Attempting to delete C:\WINDOWS\system32\cfhkj.ini
C:\WINDOWS\system32\cfhkj.ini Has been deleted!
Attempting to delete C:\WINDOWS\system32\efcywxu.dll
C:\WINDOWS\system32\efcywxu.dll Has been deleted!
Attempting to delete C:\WINDOWS\system32\ikwvregj.exe
C:\WINDOWS\system32\ikwvregj.exe Has been deleted!
Attempting to delete C:\WINDOWS\system32\jkhfc.dll
C:\WINDOWS\system32\jkhfc.dll Has been deleted!
Attempting to delete C:\WINDOWS\system32\msofiyxs.exe
C:\WINDOWS\system32\msofiyxs.exe Has been deleted!
Attempting to delete C:\WINDOWS\system32\mstenfaw.exe
C:\WINDOWS\system32\mstenfaw.exe Has been deleted!
Attempting to delete C:\WINDOWS\system32\ohldswxs.exe
C:\WINDOWS\system32\ohldswxs.exe Has been deleted!
Attempting to delete C:\WINDOWS\system32\rhvfcyuq.exe
C:\WINDOWS\system32\rhvfcyuq.exe Has been deleted!
Attempting to delete C:\WINDOWS\system32\tpcsgihb.dll
C:\WINDOWS\system32\tpcsgihb.dll Has been deleted!
Attempting to delete C:\WINDOWS\system32\vrqoppoj.exe
C:\WINDOWS\system32\vrqoppoj.exe Has been deleted!
Attempting to delete C:\WINDOWS\system32\yaywtro.dll
C:\WINDOWS\system32\yaywtro.dll Has been deleted!
Attempting to delete C:\WINDOWS\system32\youfcihp.exe
C:\WINDOWS\system32\youfcihp.exe Has been deleted!
Performing Repairs to the registry.
Done!
Checking Java version...
Java version is 1.4.2.5
Old versions of java are exploitable and should be removed.
Scan started at 15:21:41 09/04/2007
Listing files found while scanning....
C:\WINDOWS\system32\bhigscpt.ini
C:\WINDOWS\system32\bmslpceg.exe
C:\WINDOWS\system32\cfhkj.bak1
C:\WINDOWS\system32\cfhkj.bak2
C:\WINDOWS\system32\cfhkj.ini
C:\WINDOWS\system32\efcywxu.dll
C:\WINDOWS\system32\gpdnqprm.dll
C:\WINDOWS\system32\ikwvregj.exe
C:\WINDOWS\system32\jkhfc.dll
C:\WINDOWS\system32\msofiyxs.exe
C:\WINDOWS\system32\mstenfaw.exe
C:\WINDOWS\system32\ohldswxs.exe
C:\WINDOWS\system32\req.dll
C:\WINDOWS\system32\rhvfcyuq.exe
C:\WINDOWS\system32\tpcsgihb.dll
C:\WINDOWS\system32\vrqoppoj.exe
C:\WINDOWS\system32\yaywtro.dll
C:\WINDOWS\system32\youfcihp.exe
Beginning removal...
Attempting to delete C:\WINDOWS\system32\bhigscpt.ini
C:\WINDOWS\system32\bhigscpt.ini Has been deleted!
Attempting to delete C:\WINDOWS\system32\bmslpceg.exe
C:\WINDOWS\system32\bmslpceg.exe Has been deleted!
Attempting to delete C:\WINDOWS\system32\cfhkj.bak1
C:\WINDOWS\system32\cfhkj.bak1 Has been deleted!
Attempting to delete C:\WINDOWS\system32\cfhkj.bak2
C:\WINDOWS\system32\cfhkj.bak2 Has been deleted!
Attempting to delete C:\WINDOWS\system32\cfhkj.ini
C:\WINDOWS\system32\cfhkj.ini Has been deleted!
Attempting to delete C:\WINDOWS\system32\efcywxu.dll
C:\WINDOWS\system32\efcywxu.dll Has been deleted!
Attempting to delete C:\WINDOWS\system32\ikwvregj.exe
C:\WINDOWS\system32\ikwvregj.exe Has been deleted!
Attempting to delete C:\WINDOWS\system32\jkhfc.dll
C:\WINDOWS\system32\jkhfc.dll Has been deleted!
Attempting to delete C:\WINDOWS\system32\msofiyxs.exe
C:\WINDOWS\system32\msofiyxs.exe Has been deleted!
Attempting to delete C:\WINDOWS\system32\mstenfaw.exe
C:\WINDOWS\system32\mstenfaw.exe Has been deleted!
Attempting to delete C:\WINDOWS\system32\ohldswxs.exe
C:\WINDOWS\system32\ohldswxs.exe Has been deleted!
Attempting to delete C:\WINDOWS\system32\rhvfcyuq.exe
C:\WINDOWS\system32\rhvfcyuq.exe Has been deleted!
Attempting to delete C:\WINDOWS\system32\tpcsgihb.dll
C:\WINDOWS\system32\tpcsgihb.dll Has been deleted!
Attempting to delete C:\WINDOWS\system32\vrqoppoj.exe
C:\WINDOWS\system32\vrqoppoj.exe Has been deleted!
Attempting to delete C:\WINDOWS\system32\yaywtro.dll
C:\WINDOWS\system32\yaywtro.dll Has been deleted!
Attempting to delete C:\WINDOWS\system32\youfcihp.exe
C:\WINDOWS\system32\youfcihp.exe Has been deleted!
Performing Repairs to the registry.
Done!
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 16:21:44, on 09/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\FSGK32.EXE
C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fssm32.exe
C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\BackWeb-1044199.exe
C:\Program Files\Securitoo\av_fw\fswsclds.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
C:\Program Files\Securitoo\av_fw\Common\FSMB32.EXE
C:\Program Files\Securitoo\av_fw\Common\FCH32.EXE
C:\Program Files\Securitoo\av_fw\Common\FAMEH32.EXE
C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsav32.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\petit chat\Bureau\HiJackThis_v2.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1962B3EB-C3FB-4BC5-87C1-D63A0F750F5E} - C:\WINDOWS\system32\jkhfc.dll (file missing)
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll (file missing)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_18_0.dll
O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CFSServ.exe] CFSServ.exe -NoClient
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [SoundService] rundll32.exe "C:\WINDOWS\system32\tpcsgihb.dll",setvm
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?ba3018f86e414f57869995ad41f1d8e4
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?ba3018f86e414f57869995ad41f1d8e4
O8 - Extra context menu item: Télécharger en utilisant Download &Express - C:\Program Files\Download Express\Add_Url.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://jeuxvideo.wanadoo.fr/components/Metaboli.ocx
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O20 - Winlogon Notify: req - C:\WINDOWS\system32\req.dll (file missing)
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Securitoo AntiVirus Firewall (BackWeb Client - 1044199) - Unknown owner - C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: F-Secure Gatekeeper Handler Starter - Unknown owner - C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Authentication Agent (FSAA) - Unknown owner - C:\Program Files\Securitoo\av_fw\Common\FSAA.EXE (file missing)
O23 - Service: fsbwsys - Unknown owner - C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
O23 - Service: F-Secure Distributed Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
Scan saved at 16:21:44, on 09/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\FSGK32.EXE
C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fssm32.exe
C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\BackWeb-1044199.exe
C:\Program Files\Securitoo\av_fw\fswsclds.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
C:\Program Files\Securitoo\av_fw\Common\FSMB32.EXE
C:\Program Files\Securitoo\av_fw\Common\FCH32.EXE
C:\Program Files\Securitoo\av_fw\Common\FAMEH32.EXE
C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsav32.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\petit chat\Bureau\HiJackThis_v2.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1962B3EB-C3FB-4BC5-87C1-D63A0F750F5E} - C:\WINDOWS\system32\jkhfc.dll (file missing)
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll (file missing)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_18_0.dll
O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CFSServ.exe] CFSServ.exe -NoClient
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [SoundService] rundll32.exe "C:\WINDOWS\system32\tpcsgihb.dll",setvm
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?ba3018f86e414f57869995ad41f1d8e4
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?ba3018f86e414f57869995ad41f1d8e4
O8 - Extra context menu item: Télécharger en utilisant Download &Express - C:\Program Files\Download Express\Add_Url.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://jeuxvideo.wanadoo.fr/components/Metaboli.ocx
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O20 - Winlogon Notify: req - C:\WINDOWS\system32\req.dll (file missing)
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Securitoo AntiVirus Firewall (BackWeb Client - 1044199) - Unknown owner - C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: F-Secure Gatekeeper Handler Starter - Unknown owner - C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Authentication Agent (FSAA) - Unknown owner - C:\Program Files\Securitoo\av_fw\Common\FSAA.EXE (file missing)
O23 - Service: fsbwsys - Unknown owner - C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
O23 - Service: F-Secure Distributed Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
ok ouvre hijacthis coches ces lignes puis clic sur fix checked
O2 - BHO: (no name) - {1962B3EB-C3FB-4BC5-87C1-D63A0F750F5E} - C:\WINDOWS\system32\jkhfc.dll (file missing)
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [SoundService] rundll32.exe "C:\WINDOWS\system32\tpcsgihb.dll",setvm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://jeuxvideo.wanadoo.fr/components/Metaboli.ocx
O20 - Winlogon Notify: req - C:\WINDOWS\system32\req.dll (file missing)
redemare en mode sans echec (redemarrage + tapotte sans arret sur la touche F8 desque l'ordi s'allume)
cherches et supprime le fichiers en gras :
C:\WINDOWS\system32\tpcsgihb.dll
vide la corbeille
redemare en mode normal
telecharge et executes
AVG anti spyware
https://www.01net.com/telecharger/
(n'oublie pas de le mettre a jour avant de lancer le scan)
Relance AVG AS puis choisis l'onglet "Analyse"
Puis l'onglet "Paramètres"
Sous la question "Comment réagir ?", clique sur "Actions recommandées" et choisis "Quarantaine"
Re-clique sur l'onglet "Analyse" puis réalise une "Analyse complète du système"
/!\ Si un fichier est infecté en fin d'analyse /!\
Clique sur "Appliquer toutes les actions "
Clique sur "Enregistrer le rapport" puis sur "Enregistrer le rapport sous"
Enregistre ce fichier texte sur ton bureau ensuite colle le raport ici
supprime les fichiers inutiles (fichiers temporaire , cookies .. ect avec ceci
Ccleaner
https://www.malekal.com/tutoriel-ccleaner/
bon courage :)
a++++
O2 - BHO: (no name) - {1962B3EB-C3FB-4BC5-87C1-D63A0F750F5E} - C:\WINDOWS\system32\jkhfc.dll (file missing)
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [SoundService] rundll32.exe "C:\WINDOWS\system32\tpcsgihb.dll",setvm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://jeuxvideo.wanadoo.fr/components/Metaboli.ocx
O20 - Winlogon Notify: req - C:\WINDOWS\system32\req.dll (file missing)
redemare en mode sans echec (redemarrage + tapotte sans arret sur la touche F8 desque l'ordi s'allume)
cherches et supprime le fichiers en gras :
C:\WINDOWS\system32\tpcsgihb.dll
vide la corbeille
redemare en mode normal
telecharge et executes
AVG anti spyware
https://www.01net.com/telecharger/
(n'oublie pas de le mettre a jour avant de lancer le scan)
Relance AVG AS puis choisis l'onglet "Analyse"
Puis l'onglet "Paramètres"
Sous la question "Comment réagir ?", clique sur "Actions recommandées" et choisis "Quarantaine"
Re-clique sur l'onglet "Analyse" puis réalise une "Analyse complète du système"
/!\ Si un fichier est infecté en fin d'analyse /!\
Clique sur "Appliquer toutes les actions "
Clique sur "Enregistrer le rapport" puis sur "Enregistrer le rapport sous"
Enregistre ce fichier texte sur ton bureau ensuite colle le raport ici
supprime les fichiers inutiles (fichiers temporaire , cookies .. ect avec ceci
Ccleaner
https://www.malekal.com/tutoriel-ccleaner/
bon courage :)
a++++
+ Créé à: 01:14:25 10/04/2007
+ Résultat de l'analyse:
C:\Program Files\Common Files\Companion Wizard\WapCHK.dll -> Adware.Companion : Nettoyé et sauvegardé (mise en quarantaine).
C:\Program Files\Common Files\Companion Wizard\compwiz.exe -> Adware.Companion : Nettoyé et sauvegardé (mise en quarantaine).
C:\Program Files\Fichiers communs\WinAntiVirus Pro 2006\WapCHK.dll -> Adware.Companion : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP297\A0141906.dll -> Adware.Virtumonde : Nettoyé et sauvegardé (mise en quarantaine).
C:\VundoFix Backups\yaywtro.dll.bad -> Adware.Virtumonde : Nettoyé et sauvegardé (mise en quarantaine).
C:\Program Files\WinAntiVirus Pro 2006 -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
C:\Program Files\WinAntiVirus Pro 2006\history.db -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SYSTEM\CurrentControlSet\Services\vspf -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SYSTEM\CurrentControlSet\Services\vspf\Security -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk\Security -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
HKU\S-1-5-21-786877540-229635723-4252397867-1006\Software\WinAntiVirus Pro 2006 -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
HKU\S-1-5-21-786877540-229635723-4252397867-1006\Software\WinAntiVirus Pro 2006\Settings -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\petit chat\Local Settings\Temp\IOXFKFRT.0LL -> Logger.VBStat.h : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\petit chat\Local Settings\Temp\IXGPHHMB.0LL -> Logger.VBStat.h : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\petit chat\Local Settings\Temp\OQDPHPAB.0LL -> Logger.VBStat.h : Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.99:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.384:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.420:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@www.abcsearch[1].txt -> TrackingCookie.Abcsearch : Nettoyé.
:mozilla.387:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.390:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.605:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@www.adbrite[2].txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.640:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Adocean : Nettoyé.
:mozilla.641:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Adocean : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@my.adocean[1].txt -> TrackingCookie.Adocean : Nettoyé.
:mozilla.176:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.177:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.47:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.48:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.49:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.50:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.51:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.154:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\petit chat\Local Settings\Temp\Cookies\petit chat@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.759:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Bfast : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@bfast[2].txt -> TrackingCookie.Bfast : Nettoyé.
:mozilla.34:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.815:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.816:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.817:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.825:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.828:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Clickbank : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@clickbank[1].txt -> TrackingCookie.Clickbank : Nettoyé.
:mozilla.914:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Clickhype : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@ad1.clickhype[1].txt -> TrackingCookie.Clickhype : Nettoyé.
:mozilla.893:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.894:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.895:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.921:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Cpvfeed : Nettoyé.
:mozilla.922:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Cpvfeed : Nettoyé.
:mozilla.923:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Cpvfeed : Nettoyé.
:mozilla.924:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Cpvfeed : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@cpvfeed[3].txt -> TrackingCookie.Cpvfeed : Nettoyé.
:mozilla.22:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@enhance[2].txt -> TrackingCookie.Enhance : Nettoyé.
:mozilla.111:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.415:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Etracker : Nettoyé.
:mozilla.416:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Etracker : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@www.etracker[2].txt -> TrackingCookie.Etracker : Nettoyé.
:mozilla.206:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.207:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.208:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.209:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.772:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Gemius : Nettoyé.
:mozilla.773:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Gemius : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@hit.gemius[1].txt -> TrackingCookie.Gemius : Nettoyé.
:mozilla.118:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.145:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.178:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.182:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.183:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.291:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.855:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.856:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.857:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.858:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.743:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.788:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.810:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@ehg-hollywood.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@ehg-hollywoodmedia.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.738:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.739:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.803:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Ivwbox : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@ivwbox[2].txt -> TrackingCookie.Ivwbox : Nettoyé.
:mozilla.286:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.502:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Myaffiliateprogram : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@www.myaffiliateprogram[1].txt -> TrackingCookie.Myaffiliateprogram : Nettoyé.
:mozilla.104:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.105:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.358:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Paypal : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@www.paypal[1].txt -> TrackingCookie.Paypal : Nettoyé.
:mozilla.800:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.804:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.805:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.806:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@questionmarket[2].txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.386:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Real : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@real[2].txt -> TrackingCookie.Real : Nettoyé.
:mozilla.204:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.
:mozilla.205:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.
:mozilla.247:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.248:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.249:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.250:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.251:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.252:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.253:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.254:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.255:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.256:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.257:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.258:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.259:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.260:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.261:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.262:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.263:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.264:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.265:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.266:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.267:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.268:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.269:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.270:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.271:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.272:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.273:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.274:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.219:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.220:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.221:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@revsci[1].txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.92:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.93:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.94:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.95:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.96:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.97:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.785:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.878:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.10:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.11:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.7:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.8:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.9:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.465:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.466:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.549:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Toplist : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@toplist[2].txt -> TrackingCookie.Toplist : Nettoyé.
:mozilla.129:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.130:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.133:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.134:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.12:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.14:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.15:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.16:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.17:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\petit chat\Local Settings\Temp\Cookies\petit chat@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.18:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.307:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yadro : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@yadro[1].txt -> TrackingCookie.Yadro : Nettoyé.
:mozilla.35:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.39:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.40:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.41:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.42:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.43:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.44:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.45:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.479:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.480:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.495:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@zedo[2].txt -> TrackingCookie.Zedo : Nettoyé.
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP281\A0128136.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP282\A0131131.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP283\A0131189.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP284\A0132232.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP284\A0133215.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP285\A0133279.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP286\A0133363.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP297\A0141908.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E13DDE1-E013-47EC-9C4C-27C2F78BDD26} -> Trojan.Conhook.c : Nettoyé et sauvegardé (mise en quarantaine).
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E13DDE1-E013-47EC-9C4C-27C2F78BDD26} -> Trojan.Conhook.c : Nettoyé et sauvegardé (mise en quarantaine).
HKU\S-1-5-21-786877540-229635723-4252397867-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E13DDE1-E013-47EC-9C4C-27C2F78BDD26} -> Trojan.Conhook.c : Nettoyé et sauvegardé (mise en quarantaine).
C:\Program Files\eMule\LinkCreator.exe -> Worm.Luder.a : Nettoyé et sauvegardé (mise en quarantaine).
Fin du rapport
+ Résultat de l'analyse:
C:\Program Files\Common Files\Companion Wizard\WapCHK.dll -> Adware.Companion : Nettoyé et sauvegardé (mise en quarantaine).
C:\Program Files\Common Files\Companion Wizard\compwiz.exe -> Adware.Companion : Nettoyé et sauvegardé (mise en quarantaine).
C:\Program Files\Fichiers communs\WinAntiVirus Pro 2006\WapCHK.dll -> Adware.Companion : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP297\A0141906.dll -> Adware.Virtumonde : Nettoyé et sauvegardé (mise en quarantaine).
C:\VundoFix Backups\yaywtro.dll.bad -> Adware.Virtumonde : Nettoyé et sauvegardé (mise en quarantaine).
C:\Program Files\WinAntiVirus Pro 2006 -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
C:\Program Files\WinAntiVirus Pro 2006\history.db -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SYSTEM\CurrentControlSet\Services\vspf -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SYSTEM\CurrentControlSet\Services\vspf\Security -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
HKLM\SYSTEM\CurrentControlSet\Services\vspf_hk\Security -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
HKU\S-1-5-21-786877540-229635723-4252397867-1006\Software\WinAntiVirus Pro 2006 -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
HKU\S-1-5-21-786877540-229635723-4252397867-1006\Software\WinAntiVirus Pro 2006\Settings -> Adware.WinAntiVirus : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\petit chat\Local Settings\Temp\IOXFKFRT.0LL -> Logger.VBStat.h : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\petit chat\Local Settings\Temp\IXGPHHMB.0LL -> Logger.VBStat.h : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\petit chat\Local Settings\Temp\OQDPHPAB.0LL -> Logger.VBStat.h : Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.99:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.384:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.420:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@www.abcsearch[1].txt -> TrackingCookie.Abcsearch : Nettoyé.
:mozilla.387:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.390:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.605:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@www.adbrite[2].txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.640:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Adocean : Nettoyé.
:mozilla.641:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Adocean : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@my.adocean[1].txt -> TrackingCookie.Adocean : Nettoyé.
:mozilla.176:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.177:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.47:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.48:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.49:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.50:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.51:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.154:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\petit chat\Local Settings\Temp\Cookies\petit chat@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.759:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Bfast : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@bfast[2].txt -> TrackingCookie.Bfast : Nettoyé.
:mozilla.34:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.815:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.816:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.817:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.825:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.828:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Clickbank : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@clickbank[1].txt -> TrackingCookie.Clickbank : Nettoyé.
:mozilla.914:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Clickhype : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@ad1.clickhype[1].txt -> TrackingCookie.Clickhype : Nettoyé.
:mozilla.893:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.894:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.895:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.921:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Cpvfeed : Nettoyé.
:mozilla.922:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Cpvfeed : Nettoyé.
:mozilla.923:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Cpvfeed : Nettoyé.
:mozilla.924:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Cpvfeed : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@cpvfeed[3].txt -> TrackingCookie.Cpvfeed : Nettoyé.
:mozilla.22:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@enhance[2].txt -> TrackingCookie.Enhance : Nettoyé.
:mozilla.111:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.415:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Etracker : Nettoyé.
:mozilla.416:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Etracker : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@www.etracker[2].txt -> TrackingCookie.Etracker : Nettoyé.
:mozilla.206:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.207:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.208:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.209:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.772:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Gemius : Nettoyé.
:mozilla.773:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Gemius : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@hit.gemius[1].txt -> TrackingCookie.Gemius : Nettoyé.
:mozilla.118:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.145:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.178:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.182:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.183:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.291:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.855:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.856:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.857:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.858:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.743:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.788:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.810:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@ehg-hollywood.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@ehg-hollywoodmedia.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.738:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.739:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.803:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Ivwbox : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@ivwbox[2].txt -> TrackingCookie.Ivwbox : Nettoyé.
:mozilla.286:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.502:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Myaffiliateprogram : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@www.myaffiliateprogram[1].txt -> TrackingCookie.Myaffiliateprogram : Nettoyé.
:mozilla.104:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.105:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.358:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Paypal : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@www.paypal[1].txt -> TrackingCookie.Paypal : Nettoyé.
:mozilla.800:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.804:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.805:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.806:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@questionmarket[2].txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.386:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Real : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@real[2].txt -> TrackingCookie.Real : Nettoyé.
:mozilla.204:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.
:mozilla.205:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.
:mozilla.247:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.248:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.249:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.250:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.251:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.252:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.253:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.254:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.255:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.256:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.257:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.258:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.259:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.260:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.261:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.262:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.263:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.264:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.265:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.266:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.267:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.268:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.269:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.270:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.271:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.272:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.273:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.274:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Reliablestats : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.219:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.220:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.221:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@revsci[1].txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.92:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.93:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.94:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.95:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.96:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.97:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.785:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.878:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.10:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.11:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.7:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.8:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.9:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.465:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.466:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.549:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Toplist : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@toplist[2].txt -> TrackingCookie.Toplist : Nettoyé.
:mozilla.129:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.130:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.133:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.134:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.12:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.14:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.15:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.16:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.17:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\petit chat\Local Settings\Temp\Cookies\petit chat@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.18:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.307:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yadro : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@yadro[1].txt -> TrackingCookie.Yadro : Nettoyé.
:mozilla.35:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.39:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.40:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.41:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.42:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.43:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.44:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.45:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.479:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.480:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.495:C:\Documents and Settings\petit chat\Application Data\Mozilla\Firefox\Profiles\89mr62ey.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
C:\Documents and Settings\petit chat\Cookies\petit chat@zedo[2].txt -> TrackingCookie.Zedo : Nettoyé.
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP281\A0128136.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP282\A0131131.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP283\A0131189.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP284\A0132232.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP284\A0133215.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP285\A0133279.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP286\A0133363.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{069A78BC-5732-4E07-8151-B308B596388F}\RP297\A0141908.dll -> Trojan.Agent.acl : Nettoyé et sauvegardé (mise en quarantaine).
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E13DDE1-E013-47EC-9C4C-27C2F78BDD26} -> Trojan.Conhook.c : Nettoyé et sauvegardé (mise en quarantaine).
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E13DDE1-E013-47EC-9C4C-27C2F78BDD26} -> Trojan.Conhook.c : Nettoyé et sauvegardé (mise en quarantaine).
HKU\S-1-5-21-786877540-229635723-4252397867-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E13DDE1-E013-47EC-9C4C-27C2F78BDD26} -> Trojan.Conhook.c : Nettoyé et sauvegardé (mise en quarantaine).
C:\Program Files\eMule\LinkCreator.exe -> Worm.Luder.a : Nettoyé et sauvegardé (mise en quarantaine).
Fin du rapport
Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 23:37:25, on 10/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\FSGK32.EXE
C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
C:\Program Files\Securitoo\av_fw\fswsclds.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fssm32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
C:\Program Files\Securitoo\av_fw\Common\FSMB32.EXE
C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\BackWeb-1044199.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Securitoo\av_fw\Common\FCH32.EXE
C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE
C:\Program Files\Securitoo\av_fw\Common\FAMEH32.EXE
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsav32.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Soulseek\slsk.exe
C:\Program Files\Azureus\Azureus.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\petit chat\Bureau\HiJackThis_v2.exe
C:\WINDOWS\system32\NOTEPAD.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_18_0.dll
O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CFSServ.exe] CFSServ.exe -NoClient
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?ba3018f86e414f57869995ad41f1d8e4
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?ba3018f86e414f57869995ad41f1d8e4
O8 - Extra context menu item: Télécharger en utilisant Download &Express - C:\Program Files\Download Express\Add_Url.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - https://onedrive.live.com/
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Securitoo AntiVirus Firewall (BackWeb Client - 1044199) - Unknown owner - C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: F-Secure Gatekeeper Handler Starter - Unknown owner - C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Authentication Agent (FSAA) - Unknown owner - C:\Program Files\Securitoo\av_fw\Common\FSAA.EXE (file missing)
O23 - Service: fsbwsys - Unknown owner - C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
O23 - Service: F-Secure Distributed Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
Scan saved at 23:37:25, on 10/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\FSGK32.EXE
C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
C:\Program Files\Securitoo\av_fw\fswsclds.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fssm32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
C:\Program Files\Securitoo\av_fw\Common\FSMB32.EXE
C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\BackWeb-1044199.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Securitoo\av_fw\Common\FCH32.EXE
C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE
C:\Program Files\Securitoo\av_fw\Common\FAMEH32.EXE
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsav32.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Soulseek\slsk.exe
C:\Program Files\Azureus\Azureus.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\petit chat\Bureau\HiJackThis_v2.exe
C:\WINDOWS\system32\NOTEPAD.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_18_0.dll
O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CFSServ.exe] CFSServ.exe -NoClient
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?ba3018f86e414f57869995ad41f1d8e4
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?ba3018f86e414f57869995ad41f1d8e4
O8 - Extra context menu item: Télécharger en utilisant Download &Express - C:\Program Files\Download Express\Add_Url.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_05\bin\npjpi142_05.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - https://onedrive.live.com/
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Securitoo AntiVirus Firewall (BackWeb Client - 1044199) - Unknown owner - C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: F-Secure Gatekeeper Handler Starter - Unknown owner - C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Authentication Agent (FSAA) - Unknown owner - C:\Program Files\Securitoo\av_fw\Common\FSAA.EXE (file missing)
O23 - Service: fsbwsys - Unknown owner - C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
O23 - Service: F-Secure Distributed Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
